Table of Contents
Advertisement
Security Engine (SEC) 2.2
14.4.3.9.1
Context for CBC Mode
Within the Context register, for use in CBC mode, are two 64-bit context data registers that allow the host
to read/write the contents of the initialization vector (IV):
•
IV1 holds the most significant bytes of the initialization vector (bytes 1–8).
•
IV2 holds the least significant bytes of the initialization vector (bytes 9–16).
The IV must be written prior to the message data. If the IV registers are written during message processing,
or the CBC mode bit is not set, a context error will be generated.
The IV registers may only be read after processing has completed, as indicated by the assertion of Interrupt
Done DONE in the AESU status register as shown in
(AESUSR)."
If the IV registers are read prior to assertion of Interrupt Done, an early read error will be
generated.
The IV registers must be read when changing context and restored to resume processing an interrupted
message (CBC mode only).
14.4.3.9.2
Context for Counter Mode
In counter mode, a random 128-bit initial counter value is incremented modulo 2
processed. The running counter is encrypted and eXclusive-ORed with the plaintext to derive the
ciphertext, or with the ciphertext to recover the plaintext. The modulus exponent M can be set between 8
and 128 in multiples of 8. The value of M is specified by writing to context register 3 as described in
Figure
14-34.
14.4.3.9.3
Context for SRT Mode
As was noted in the AESU mode register, SRT is not a new AES mode, it is an AESU method of
performing AES-CTR mode with reduced context loading overhead specifically for performing SRTP. It
should be used with descriptor type 0010_0 'srtp'. As with counter mode, a random 128-bit initial counter
value is incremented modulo 2
eXclusive-ORed with the plaintext to derive the ciphertext, or with the ciphertext to recover the plaintext.
The modulus exponent M can be set between 8 and 128 in multiples of 8. The value of M is specified by
writing to context register 3 as described in
The only difference between SRT mode and CTR mode is in SRT mode, the AES Context is loaded and
read through context registers 1–3, with no requirement to access context registers 4–7. In CTR mode,
context registers 1–4 must be loaded with zeros, with the Counter and Modulus being loaded into and read
from context registers 5–7.
14.4.3.9.4
Context for CCM Mode
The SEC AESU is capable of performing single pass encryption and MAC generation. The host is required
to order the CCM context is such a way that the context can be fetched as a contiguous string into the
context registers, prior to encryption/MAC generation or decryption/MAC validation. The context register
contents for CCM mode is summarized in
MPC8313E PowerQUICC II Pro Integrated Processor Family Reference Manual, Rev. 3
14-50
M
with each block processed. The running counter is encrypted and
Figure
14-34.
Figure 14-35
Section 14.4.3.5, "AESU Status Register
and further described below.
M
with each block
Freescale Semiconductor
Advertisement
Chapters
Table of Contents
