FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

ANSSI certification for STM32U5

Jouni_S
Associate II

‎2024-06-20 03:22 AM - last edited on ‎2024-06-20 10:08 AM by

Hi, I'm quite familiar with STM32 trustzone features. Also I know due to there's a random number generator it should be ANSSI capable. But I can't find anywhere a text "ANSSI". Have you as a ST already applied a ANSSI certificate for STM32U545 or any plan to apply?

Labels:
0 Kudos
6 REPLIES 6
Jouni_S
Associate II

‎2024-06-26 05:50 AM

Maybe my question wasn't precise enough and maybe ANSSI certification is not familiar to you. In a case ANSSI certification is not applied by you do you think you could confirm and prove a random number generator in -U5 is NIST SP 800-90c compliant with NIST SPA800-90A/B/c and BSI AIS 20/31 specifications.

∗ A functional description must be provided.

∗ The output must be continually tested. The specifications must explicitly explain what is tested and how the tests are performed.

0 Kudos
Jocelyn RICARD
ST Employee

‎2024-06-26 06:30 AM

Hello @Jouni_S ,

is this what you are looking for ?

Cryptographic Module Validation Program | CSRC (nist.gov)

The STM32U545 should arrive soon in this list.

Best regards

Jocelyn

0 Kudos
Jouni_S
Associate II
In response to Jocelyn RICARD

‎2024-06-27 05:12 AM

Thanks Jocelyn, I think that is the one event though not yet got a confirmation from our security engineer. Document inside a certification anyway "referenced as STM32U5x", but maybe likes to see -U54x on a table as well.

Also just noted a good list about RNG features from one of  your AN (chapter 5.4/page 25): Migration from STM32L5 series to STM32U5 series microcontrollers - Application note

0 Kudos
Jocelyn RICARD
ST Employee

‎2024-06-28 01:35 AM

Hello @Jouni_S ,

This STM32U54x RNG certification should come soon. It is a matter of update.

I guess this document can also be useful

Best regards

Jocelyn

0 Kudos
Jouni_S
Associate II

‎2024-08-29 06:23 AM

Hello @Jocelyn RICARD , documentation itself was clear but how about the RNG certification is it already completed?

0 Kudos
Jocelyn RICARD
ST Employee

‎2024-08-29 09:56 AM

Hello  @Jouni_S ,

The AN4230 is not yet published with update because it is waiting for other inputs for other STM32.

Now, certification documents are available.

You can find here the list of certifications available.

Here is a capture

JocelynRICARD_0-1724950282654.png

Then from this page you can access to certification documents.

For the U545 this is this page

From this you can access to the associated document by clicking on Public Use Document.

In this document you will find the RNG configuration used.

I hope this answers your question

Best regards

Jocelyn

 

0 Kudos
Top