AES 128 and 256 issue

mikeasa · ‎12-07-2011

Can we start this with a serious (un-secure!) question?

Imx Cpus have a AES128 engine. but I keep reading different places that AES256 should be used. Is that mean for OpenSSL or HTTPS, ...; we can't use on chip security Co-Processor?

What kind is on imx53? isn't it AES128?

thanks.

DavidHartley · ‎12-07-2011

An AES-128 accelerator cannot be used for AES-256.

mikeasa · ‎12-07-2011

I am sure aes128 is good enough for what we need. the problem is the marketing gimiks of competitors. They use power hugary intel cpus and produce aes256 even if users don't need it.

Just from top of my head; with use of software; can the AES128 accellerator be used for AES256? or the aes256 has to be done all in software?

thanks for your response.

David Hartley said:

For a comprehensive summary of key length recommendations in various countries, have a look at http://www.keylength.com. The documents linked from there give detailed reasoning for the recommendations. AES-128 is considered secure enough for current commercial applications, although particular products or standards may have their own requirements.
i.MX53 includes an AES-128 accelerator.

DavidHartley · ‎12-07-2011

For a comprehensive summary of key length recommendations in various countries, have a look at http://www.keylength.com. The documents linked from there give detailed reasoning for the recommendations. AES-128 is considered secure enough for current commercial applications, although particular products or standards may have their own requirements.

i.MX53 includes an AES-128 accelerator.