The FortiMac library belongs to the FortiMac product family. This software library provides ultra-strong protection against SCA, FIA, and cache attacks.
This is the only pure SW solution in the market.
The underlying protection is purely algorithmic and implementation-agnostic. Resistance to attacks was validated analytically and on a physical device. The protection is based on the Threshold Implementation (TI) approach, the security of which has been proven.
Advanced HMAC SHA2 DPA- and FIA-Resistant Software Library
Overview
Key Features
- Ultra-strong side-channel and SIFA protection
- NIST FIPS 180-4 compliant
- Supports SHA-224, SHA-256, SHA-384, SHA-512, SHA-512/224 and SHA-512/256 schemes
- Supports HMAC based on any one of these schemes
- Portable to popular CPUs: ARM, RISC-V, Intel, etc.
Benefits
- Countermeasures against power and electromagnetic analysis attacks by pure SW means
- Can fix unprotected/vulnerable HW solutions already in the field
- Excellent performance
Applications
- IoT devices
- Communications
- Automotive
- Secure internet protocols (SSL/TLS, IPSec)
- Content protection (Set-Top Boxes, SoCs)
- Virtual Private Networks (VPN)
Deliverables
- The folder with the public header files of the library
- The folder with the library with which to link
- The pkg-config file with the library metadata for integration with build systems
Technical Specifications
Availability
Now
Related IPs
- Advanced DPA- and FIA-resistant FortiMac HMAC SHA2 IP core
- Advanced DPA- and FIA-resistant FortiCrypt AES SW library
- DPA Resistant Software Library
- Secure software implementation of SHA-1, SHA-2 and HMAC-SHA-256
- HMAC Accelerator with SHA-3, SHA-2, SHA-1
- 28nm Wirebond IO library with dynamically switchable 1.8V/ 3.3V GPIO, 5V I2C open-drain, 1.8V & 3.3V analog, OTP program cell, and HDMI & LVDS protection macros - featured across a variety of metal stack and pad configuration options