IP Catalog
FortiCrypt

FortiCrypt Library – Advanced DPA- and FIA-Resistant Software Library

Intro

The FortiCrypt software library provides ultra-strong protection against SCA and FIA while preserving performance so exceptional that it enables encryption/decryption of FHD video streams even on low-end CPUs. In this aspect, it is a unique solution in the market.

The Forticrypt library implements the AES block cipher in numerous modes of operation with various padding conventions while protecting it against side-channel attacks using the RAMBAM protection scheme. Other block ciphers and other padding conventions can be added to the library. In addition to the library, a command-line interface is available for quick encryption/decryption tasks.

The FortiCrypt software library, as well as all the FortiCrypt products, is based on RAMBAM – the next-generation purely algorithmic, implementation-agnostic protection scheme of AES. It is designed to provide the highest level of protection against side-channel attacks (SCA) and fault injection attacks (FIA), including SIFA.

The RAMBAM protection scheme utilizes masking methods based on finite field arithmetic that implement attack resistance without incurring extra latency costs.

The core protection mechanism was verified using the rigorous Test Vector Leakage Assessment (TVLA) methodology at 1B traces, both by FortifyIQ and by a third-party Common Criteria lab. Resistance to attacks was validated analytically and on a physical device. The cores are fully synthesizable and do not require custom cells or special place & route handling.

  FortifyIQ  Competitors
High Security
High Performance

* We compare only against solutions with uncompromised security 

Deliverables
  • The folder with the command-line application (optional)
  • The folder with the public header files of the library
  • The folder with the library with which to link
  • The folder with the integration rules for the Cmake build system
  • Technical support and assistance
Tech Specs
  • Part Number

AES-DPA-FIA SW library

  • Short description

Advanced DPA- and FIA-resistant FortiCrypt AES SW library

  • Compliant standard

FIPS-197

  • Provider

FortifyIQ, Inc.

  • Availability

Now

Request Library Access 

Features
  • Ultra-strong side-channel and SIFA protection at high performance
  • NIST FIPS-197 compliant
  • AES-128/192/256 encryption and decryption
  • Tunable protection level
  • Supports all chaining modes: ECB, CBC, CFB, OFB, CTR, XTS
  • Portable to popular CPUs: ARM, RISC-V, Intel, etc.
Benefits
  • Can fix unprotected/vulnerable HW solutions already in the field
  • Ultra-strong SCA and FIA protection, including SIFA
  • Performance so exceptional that it enables encryption/decryption of FHD video streams even on low-end CPUs
Applications
  • IoT devices
  • Communications
  • Automotive
  • Secure internet protocols (SSL/TLS, IPSec)
  • Content protection (Set-Top Boxes, SoCs)
  • Virtual Private Networks (VPN)
  • Storage, disk encryption