Hi @Kishore_14
You don’t need anything special for SecOC. As long as the hardware can do AES‑128 CMAC, it’s sufficient. That’s the only crypto primitive SecOC actually uses. CSEc (SHE‑based) on the S32K is fully enough - it gives you HW‑accelerated AES‑CMAC and protected key slots, which is exactly what SecOC needs.
All the other CSEc features (secure boot MAC, key derivation, random number, etc.) is nice to have but SecOC doesn’t depend on it. Freshness values and anti‑replay counters are handled completely in software by the FVM. Hardware doesn’t provide any special counter for this. CSEc provides only features given by SHE specification.
Regards,
Lukas