Intro
The FortiCrypt software library provides ultra-strong protection against SCA and FIA while preserving exceptional performance enabling encryption/decryption of HD video streams on low-end CPUs. In this aspect, it is a unique solution in the market.
The Forticrypt library implements the AES block cipher in numerous modes of operation with various padding conventions while protecting it against side-channel attacks using the RAMBAM protection scheme. Other block ciphers and other padding conventions can be added to the library. In addition to the library, a command-line interface is available for quick encryption/decryption tasks.
The FortiCrypt software library, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.
The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.
The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) test at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.
FortifyIQ | Competitors | |
High Security | ![]() | ![]() |
High Performance | ![]() | ![]() |
* We compare only against solutions with uncompromised security
Deliverables
- The folder with the command-line application (optional)
- The folder with the public header files of the library
- The folder with the library with which to link
- The folder with the integration rules for the Cmake build system
- Technical support and assistance
Tech Specs
- Part Number
AES-DPA-FIA SW library
- Short description
Advanced DPA- and FIA-resistant FortiCrypt AES SW library
- Compliant standard
FIPS-197
- Provider
FortifyIQ, Inc.
- Availability
Now
Request Library Access
Features
- Ultra-strong side-channel and SIFA protection at high performance
- NIST FIPS-197 compliant
- AES-128/192/256 encryption and decryption
- Tunable protection level
- Supports all chaining modes: ECB, CBC, CFB, OFB, CTR, XTS
- Portable to popular CPUs: ARM, RISC-V, Intel, etc.
Benefits
- Can fix unprotected/vulnerable HW solutions already in the field
- Ultra-strong SCA and FIA protection, including SIFA
- Exceptional performance, enabling encryption/decryption of HD video streams on low-end CPUs
Applications
- IoT devices
- Communications
- Automotive
- Secure internet protocols (SSL/TLS, IPSec)
- Content protection (Set-Top Boxes, SoCs)
- Virtual Private Networks (VPN)
- Storage, disk encryption