2024-12-19 10:58 AM
Hello,
I’m working on a project using the STM32WLxx MCU and need guidance on implementing asymmetric cryptography (encryption, decryption, and key management). The MCU supports AES for symmetric encryption, but I’m looking for a solution for asymmetric cryptography.
Additionally, how can I ensure the private key remains secure? If this is not feasible on the MCU, are there external crypto chips that support direct asymmetric encryption and key generation?
Thanks in advance for any advice!
Best regards,
Anubrata.
2024-12-19 11:26 AM - edited 2024-12-19 11:30 AM
Some support PKA in hardware, otherwise you can do it in software. Check the libraries you want to use will fit in an MCU, or need an MPU for speed/size.
ST has ST-SAFE parts
https://www.st.com/en/secure-mcus/stsafe-a110.html
ATMEL/MICROCHIP has ATECC parts
https://www.microchip.com/en-us/product/atecc608a
You can hide keys in those, and have them confirm/verify signing, do the signing
>>Additionally, how can I ensure the private key remains secure?
Don't have it on the device? For validating signing you typically don't need it.
Have it in a secure area that's not accessible unless runing signed code.
For some of the AES implementations the keying into the HW is write-only, although there's some quite efficient attacks against that.