2024-06-20 03:22 AM - last edited on 2024-06-20 10:08 AM by SofLit
Hi, I'm quite familiar with STM32 trustzone features. Also I know due to there's a random number generator it should be ANSSI capable. But I can't find anywhere a text "ANSSI". Have you as a ST already applied a ANSSI certificate for STM32U545 or any plan to apply?
2024-06-26 05:50 AM
Maybe my question wasn't precise enough and maybe ANSSI certification is not familiar to you. In a case ANSSI certification is not applied by you do you think you could confirm and prove a random number generator in -U5 is NIST SP 800-90c compliant with NIST SPA800-90A/B/c and BSI AIS 20/31 specifications.
∗ A functional description must be provided.
∗ The output must be continually tested. The specifications must explicitly explain what is tested and how the tests are performed.
2024-06-26 06:30 AM
Hello @Jouni_S ,
is this what you are looking for ?
Cryptographic Module Validation Program | CSRC (nist.gov)
The STM32U545 should arrive soon in this list.
Best regards
Jocelyn
2024-06-27 05:12 AM
Thanks Jocelyn, I think that is the one event though not yet got a confirmation from our security engineer. Document inside a certification anyway "referenced as STM32U5x", but maybe likes to see -U54x on a table as well.
Also just noted a good list about RNG features from one of your AN (chapter 5.4/page 25): Migration from STM32L5 series to STM32U5 series microcontrollers - Application note
2024-06-28 01:35 AM
Hello @Jouni_S ,
This STM32U54x RNG certification should come soon. It is a matter of update.
I guess this document can also be useful
Best regards
Jocelyn