Figure 503. Ccm Encryption And Authentication Principle - ST STM32G4 Series Reference Manual

Advanced arm-based 32-bit mcus

Hide thumbs Also See for STM32G4 Series:

Reference manual (2126 pages)

Programming manual (262 pages)

Application note (56 pages)

page of 2083

/ 2083
Contents
Table of Contents
Bookmarks

Table of Contents

AES hardware accelerator (AES)

GMAC is similar to GCM, except that it is applied on a message composed only by plaintext

authenticated data (that is, only header, no payload).

Counter with CBC-MAC (CCM) principle

In Counter with cipher block chaining-message authentication code (CCM) mode, the

plaintext message is encrypted while a message authentication code (MAC) is computed in

parallel, thus generating the corresponding ciphertext and the corresponding MAC (also

known as tag). It is described by NIST in Special Publication 800-38C, Recommendation for

Block Cipher Modes of Operation - The CCM Mode for Authentication and Confidentiality.

CCM mode is based on AES in counter mode for confidentiality and it uses CBC for

computing the message authentication code. It requires an initial value.

Like GCM, the CCM chaining mode can be applied on a message composed only by

plaintext authenticated data (that is, only header, no payload). Note that this way of using

CCM is not called CMAC (it is not similar to GCM/GMAC), and its usage is not

recommended by NIST.

AES procedure to perform a cipher operation

Introduction

A typical cipher operation is explained below. Detailed information is provided in sections

starting from

The flowcharts shown in

library implements the AES algorithm. AES accelerates the execution of the AES-128 and

AES-256 cryptographic algorithms in ECB, CBC, CTR, CCM, and GCM operating modes.

For more details on the cryptographic library, refer to the UM1924 user manual "STM32

crypto library" available from www.st.com.