Intro
FortifyIQ’s high-performance software library, FortiCrypt, provides ultra-strong protection against SCA and FIA for already deployed field devices from SCA and FIA by a simple software download. They are based on the same security proven algorithm as FortifyIQ’s ultra-low power IP cores, and are silicon proven. They have extremely high performance such that even on a low-end processor the performance is high enough for Ultra HD (3840×2160) video streaming.
The Forticrypt library implements the AES block cipher in numerous modes of operation with various padding conventions while protecting it against side-channel attacks using the RAMBAM protection scheme. Other block ciphers and other padding conventions can be added to the library. In addition to the library, a command-line interface is available for quick encryption/decryption tasks.
The FortiCrypt software library, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.
The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.
The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) methodology at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.
| FortifyIQ | Competitors | |
| High Security |  |  |
| High Performance | |  |
* We compare only against solutions with uncompromised security
Deliverables
- The folder with the command-line application (optional)
- The folder with the public header files of the library
- The folder with the library with which to link
- The folder with the integration rules for the Cmake build system
- Technical support and assistance
Tech Specs
- Part Number
AES-DPA-FIA SW library
- Short description
Advanced DPA- and FIA-resistant FortiCrypt AES SW library
- Compliant standard
FIPS-197
- Provider
FortifyIQ, Inc.
- Availability
Now
Request Library Access
Features
- Ultra-strong side-channel and SIFA protection at high performance
- NIST FIPS-197 compliant
- AES-128/192/256 encryption and decryption
- Tunable protection level
- Supports all chaining modes: ECB, CBC, CFB, OFB, CTR, XTS
- Portable to popular CPUs: ARM, RISC-V, Intel, etc.
Benefits
- Can fix unprotected/vulnerable HW solutions already in the field
- Ultra-strong SCA and FIA protection, including SIFA
- Performance so exceptional that it enables encryption/decryption of Ultra HD video streams even on low-end CPUs
Applications
- IoT devices
- Communications
- Automotive
- Secure internet protocols (SSL/TLS, IPSec)
- Content protection (Set-Top Boxes, SoCs)
- Virtual Private Networks (VPN)
- Storage, disk encryption