FAQs
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

STM32F439 + LWIP + SNMPv3 + mbedTLS – Hardware AES/SHA1 slower than software?

pmachura
Associate

‎2025-10-30 5:34 AM

Hello,

I'm using STM32F439 with LWIP, SNMPv3, and mbedTLS, without FreeRTOS. I've encountered a performance issue when using the hardware acceleration for AES and SHA1 provided by ST (aes_alt.c, sha1_alt.c).

Specifically, when decoding SNMPv3 messages, the software implementation of AES128 + SHA1 from mbedTLS is significantly faster than the hardware-accelerated version. I measured the execution time of snmp_receive() using a timer:

- mbedTLS software AES128 + SHA1: ~800 µs

- mbedTLS + ST-provided hardware AES (aes_alt.c) + SHA1: ~2.4 ms

This is a 3x slowdown when using the hardware path.

Can anyone explain why the hardware implementation is slower? Is this expected behavior due to HAL overhead, lack of DMA, or something else?

Thanks in advance for any insights!

Best regards, Piotr

Labels:
0 Kudos
1 REPLY 1
Jocelyn RICARD
ST Employee

‎2025-11-11 6:58 AM

Hello @pmachura ,

It all depends on the ratio between setup time and actual HW crypto execution time.

The HAL used for AES is very generic as it addresses all the modes and configurations.

For small buffer size it may not be worth it.

Best regards

Jocelyn

 

0 Kudos
Top