Embedded cryptographic libraries

Give us the instruction set and architectural features of your microcontroller with or without crypto-processor and we do the rest.

We have more than 16 years of experience in developing and delivering cycle-accurate optimized cryptographic libraries. Our software can be declined on a variety of hardware platforms (smartcards, USB tokens, HSMs, Terminals, Smart Phones) and typically supports the following functions:

RSA (Rivest-Shamir-Adleman):

  • Verification/Encryption, public operation in standard mode,
  • Signature/Decryption, private operation in either standard or CRT mode,
  • RSA paddings, ISO/IEC 9796-3, PKCS#1 v1.5, v2.0/2.1 for both encryption (OAEP) and signature (PSS/PSS-R).

RSA OBKG (On-board Key Generation):

  • Random prime number generation: incremental (ISO/IEC 18032) or modular search sequences (Joye-Paillier), strong primes (ANSI X9.31), Rabin-Williams primes (ISO/IEC 9796-3).
  • Generation of RSA key pairs in standard or CRT formats.

ECC (Elliptic Curve Cryptography):

  • ECDSA, Signature, Verification, Key Generation,
  • ECDH (Diffie-Hellman), key agreement protocol,
  • Bilinear Maps (aka Pairings), on ordinary or super-singular pairing-friendly curves over prime fields.

AES (FIPS PUB 197, ISO/IEC 18033-3):

  • 128/192/256-bit core encryption/decryption algorithms,
  • Modes of operation for encryption: ECB, CBC, OFB, CTR, GCM
  • Modes of operation for MACs: CBC-MAC (ISO/IEC 9797-1), CMAC (SP 800-38B), GMAC (SP 800-38D).

DES, 3DES (FIPS PUB 46-3, SP 800-67, ISO/IEC 18033-3):

  • core encryption/decryption algorithms,
  • Modes of operation for encryption: ECB, CBC, OFB, CTR
  • Modes of operation for MACs: CBC-MAC (FIPS PUB 113), CMAC (SP 800-38B).

DRNG (Deterministic Random Number Generation):

  • ANSI X9.31, X9.17 based on an approved block cipher,
  • ISO/IEC 18031 random bit generators,
  • SP 800-90 random bit generation (EC DRBG)

Hash Functions:

  • SHA-1, SHA-224/256/384/512 (FIPS 180)
  • SHA-3 (upcoming incorporation in FIPS 180)
  • MD5 (RFC 1321)
  • Initialization, compression rounds and finalization/blank rounds

MAC (Message Authentication Code):

  • Modes of operation based on a block cipher: CBC-MAC, CMAC, GMAC
  • Modes of operation based on a hash function: HMAC (ISO/IEC 9797-2, FIPS PUB 198, MD5/RFC 6151), NMAC

2G/3G/LTE Algorithms for authentication, encryption or key generation:

  • All 2G Authentication and key generation algorithms (COMP128-v1, v2/3, v4)
  • All 3G algorithms for authentication and key generation (Milenage, etc.)
  • CDMA voice encryption (CAVE)
    •  

And any other cryptographic primitive on demand.

Our humanly developed low-level APIs rely on finely tuned arithmetic algorithms designed to best suit the given microarchitecture and its hardware computational features at the assembly level. Our libraries are faster by orders of magnitude than C code compiled with general-purpose compilers. Challenge us and compare.

Hardware Design. You are a chip manufacturer or design house and want the best crypto-processing architecture? We synchronize with you and provide our world-class experience in cryptographic algorithms to identify innovative and cost-effective (silicon area, number of gates, power consumption, critical paths, etc.) design solutions to support the native operations required in crypto-enabled security products. Our stand-alone, simulation-based benchmarking tools allow us to accurately evaluate the performances of optimized cryptographic software on your target architecture before the first sample chips or emulators are even made available.

Security against Physical Attacks. Our cryptographic APIs are guaranteed to embed the most efficient countermeasures against physical attacks and successfully pass in-lab security evaluations (FIPS 140-2, CC EAL, CAST, EMVco, etc.). We implement customized countermeasures that efficiently thwart all kinds of power and electromagnetic attacks (SPA/SEMA, DPA/DEMA, HO-DPA, template attacks, etc.), fault-injection attacks (FA, DFA, etc.), or cache and timing attacks. We evaluate the latest cryptanalytic attacks based on side-channel information leakage and fault injection and integrate cost-effective software countermeasures in our libraries, so you don’t have to worry about physical security anymore: our certification-ready APIs can be used in a transparent way by your high-level application.

Our Expertise. Accredited evaluation labs keep an eye on the latest advances in side-channel analysis and fault-based attacks, attend all major security related scientific conferences and workshops (CHES, FDTC, JHAS, ICCC, eSmart, etc.) and collaborate with academic partners to sharpen their attacking skills. So do we. CryptoExperts was co-founded by 3 internationally recognized experts who have served as program chairs of CHES. Our R&D staff of 7 PhDs totalizes more than 60 patents and 50 scientific publications in the field of embedded cryptography and maintains beyond-state-of-the-art knowledge to secure smart card products. Let word-class experts develop or evaluate your embedded cryptographic libraries.

Dr Matthieu Rivain

Security Expert at CryptoExperts

P: +33(0) 679 834 096

Contact Matthieu!

Related projects

Marshal+, Eclipses, ABC4Trust