The CC2674P10 device comes with a wide set of modern cryptography-related hardware accelerators, drastically reducing code footprint and execution time for cryptographic operations. It also has the benefit of being lower power and improves availability and responsiveness of the system because the cryptography operations runs in a background hardware thread.
Together with a large selection of open-source cryptography libraries provided with the Software Development Kit (SDK), this allows for secure and future proof IoT applications to be easily built on top of the platform. The hardware accelerator modules are:
- True Random Number Generator (TRNG) module provides a true,
nondeterministic noise source for the purpose of generating keys,
initialization vectors (IVs), and other random number requirements. The TRNG
is built on 24 ring oscillators that create unpredictable output to feed a
complex nonlinear-combinatorial circuit
- Secure Hash Algorithm 2 (SHA-2) with support for SHA224, SHA256, SHA384, and SHA512
- Advanced Encryption Standard (AES) with 128, 192 and 256 bit key
lengths
- Public Key Accelerator - Hardware accelerator supporting mathematical
operations needed for elliptic curves up to 512 bits
Through use of these modules and the TI provided cryptography drivers, the following capabilities are available for an application or stack:
- Key Agreement Schemes
- Elliptic Curve Diffie–Hellman with static or ephemeral keys (ECDH and
ECDHE)
- Elliptic curve Password Authenticated Key Exchange by Juggling (ECJ-PAKE)
- Signature Processing
- Elliptic curve Diffie-Hellman Digital Signature
Algorithm (ECDSA)
- Edwards-curve Digital Signature Algorithm (EdDSA)
- Curve Support
- Short Weierstrass form, such as:
- NIST-P224 (secp224r1), NIST-P256
(secp256r1), NIST-P384 (secp384r1), NIST-P521
(secp521r1)
- Brainpool-256R1, Brainpool-384R1,
Brainpool-512R1
- Montgomery form, such as:
- Twisted Edwards form,
such as:
- Message Authentication Codes
- AEC CBC-MAC
- AES CMAC
- HMAC with SHA224, SHA256, SHA384 and SHA512
- Block cipher mode of operation
- AES CCM and AES CCM-Star
- AES GCM
- AES ECB
- AES CBC
- AES CTR
- Hash Algorithm
- SHA224
- SHA256
- SHA384
- SHA512
- True random number generation
Other capabilities, such as RSA encryption and
signatures (using keys as large as 2048 bits) as well as other ECC curves such as
Curve1174, can be implemented using the provided public key accelerator but are not
part of the TI SimpleLink SDK for the CC2674P10 device.