- psa-crypto - lists.trustedfirmware.org

Invitation: MBed TLS Technical Forum - Asia @ Every 4 weeks from 3am to 3:50am on Monday 17 times (MST) (psa-crypto@lists.trustedfirmware.org)

by don.harbin＠linaro.org

You have been invited to the following event. Title: MBed TLS Technical Forum - Asia Trusted Firmware is inviting you to a scheduled Zoom meeting. Topic: MBed TLS Technical Forum - Asia Time: Nov 8, 2021 10:00 AM London Every 4 weeks on Mon, 20 occurrence(s) Nov 8, 2021 10:00 AM Dec 6, 2021 10:00 AM Jan 3, 2022 10:00 AM Jan 31, 2022 10:00 AM Feb 28, 2022 10:00 AM Mar 28, 2022 10:00 AM Apr 25, 2022 10:00 AM May 23, 2022 10:00 AM Jun 20, 2022 10:00 AM Jul 18, 2022 10:00 AM Aug 15, 2022 10:00 AM Sep 12, 2022 10:00 AM Oct 10, 2022 10:00 AM Nov 7, 2022 10:00 AM Dec 5, 2022 10:00 AM Jan 2, 2023 10:00 AM Jan 30, 2023 10:00 AM Feb 27, 2023 10:00 AM Mar 27, 2023 10:00 AM Apr 24, 2023 10:00 AM Please download and import the following iCalendar (.ics) files to your calendar system. Weekly: https://linaro-org.zoom.us/meeting/tJ0kc-GsqDktHNGa8CWl6wJ7je6CKD-5zgh8/ics… Join Zoom Meeting https://linaro-org.zoom.us/j/99948462765?pwd=SGlHYlF1Z2owUDNFWWppaGlSRDh5UT… Meeting ID: 999 4846 2765 Passcode: 196117 One tap mobile +12532158782,,99948462765# US (Tacoma) +13462487799,,99948462765# US (Houston) Dial by your location +1 253 215 8782 US (Tacoma) +1 346 248 7799 US (Houston) +1 669 900 9128 US (San Jose) +1 301 715 8592 US (Washington DC) +1 312 626 6799 US (Chicago) +1 646 558 8656 US (New York) 888 788 0099 US Toll-free 877 853 5247 US Toll-free Meeting ID: 999 4846 2765 Find your local number: https://linaro-org.zoom.us/u/anpWWkRdt When: Every 4 weeks from 3am to 3:50am on Monday 17 times Mountain Standard Time - Phoenix Joining info: Join with Google Meet https://meet.google.com/fwh-srqw-rgf?hs=224 Join by phone (US) +1 304-397-0314 (PIN: 358348986) More phone numbers: https://tel.meet/fwh-srqw-rgf?pin=6539665554630&hs=0 Calendar: psa-crypto(a)lists.trustedfirmware.org Who: * Don Harbin - creator * psa-crypto(a)lists.trustedfirmware.org * mbed-tls(a)lists.trustedfirmware.org Event details: https://calendar.google.com/calendar/event?action=VIEW&eid=MmU4dm1iNzJ0dmV1… Invitation from Google Calendar: https://calendar.google.com/calendar/ You are receiving this courtesy email at the account psa-crypto(a)lists.trustedfirmware.org because you are an attendee of this event. To stop receiving future updates for this event, decline this event. Alternatively you can sign up for a Google account at https://calendar.google.com/calendar/ and control your notification settings for your entire calendar. Forwarding this invitation could allow any recipient to send a response to the organizer and be added to the guest list, or invite others regardless of their own invitation status, or to modify your RSVP. Learn more at https://support.google.com/calendar/answer/37135#forwarding

3 years, 5 months

1
0
0 0

Invitation: MBed TLS Technical Forum @ Every 4 weeks from 9:30am to 10:30am on Monday 17 times (MST) (psa-crypto@lists.trustedfirmware.org)

by don.harbin＠linaro.org

You have been invited to the following event. Title: MBed TLS Technical Forum Trusted Firmware is inviting you to a scheduled Zoom meeting. Topic: MBed TLS Technical Forum Time: Oct 25, 2021 04:30 PM London Every 4 weeks on Mon, 20 occurrence(s) Oct 25, 2021 04:30 PM Nov 22, 2021 04:30 PM Dec 20, 2021 04:30 PM Jan 17, 2022 04:30 PM Feb 14, 2022 04:30 PM Mar 14, 2022 04:30 PM Apr 11, 2022 04:30 PM May 9, 2022 04:30 PM Jun 6, 2022 04:30 PM Jul 4, 2022 04:30 PM Aug 1, 2022 04:30 PM Aug 29, 2022 04:30 PM Sep 26, 2022 04:30 PM Oct 24, 2022 04:30 PM Nov 21, 2022 04:30 PM Dec 19, 2022 04:30 PM Jan 16, 2023 04:30 PM Feb 13, 2023 04:30 PM Mar 13, 2023 04:30 PM Apr 10, 2023 04:30 PM Please download and import the following iCalendar (.ics) files to your calendar system. Weekly: https://linaro-org.zoom.us/meeting/tJEkceuurT4sGdaksikbUn6FARB9Kuk3ac2o/ics… Join Zoom Meeting https://linaro-org.zoom.us/j/95962635632?pwd=STFkQVltejAzRDJ6NmoxZjhmZC9RUT… Meeting ID: 959 6263 5632 Passcode: 018366 One tap mobile +13462487799,,95962635632# US (Houston) +16699009128,,95962635632# US (San Jose) Dial by your location +1 346 248 7799 US (Houston) +1 669 900 9128 US (San Jose) +1 253 215 8782 US (Tacoma) +1 312 626 6799 US (Chicago) +1 646 558 8656 US (New York) +1 301 715 8592 US (Washington DC) 877 853 5247 US Toll-free 888 788 0099 US Toll-free Meeting ID: 959 6263 5632 Find your local number: https://linaro-org.zoom.us/u/aewUpnQu5y When: Every 4 weeks from 9:30am to 10:30am on Monday 17 times Mountain Standard Time - Phoenix Joining info: Join with Google Meet https://meet.google.com/ofy-jxph-boy?hs=224 Join by phone (US) +1 704-705-7047 (PIN: 141276187) More phone numbers: https://tel.meet/ofy-jxph-boy?pin=3695767709143&hs=0 Calendar: psa-crypto(a)lists.trustedfirmware.org Who: * Don Harbin - creator * psa-crypto(a)lists.trustedfirmware.org * mbed-tls(a)lists.trustedfirmware.org Event details: https://calendar.google.com/calendar/event?action=VIEW&eid=NWdhMWpuZ2ZpdWNp… Invitation from Google Calendar: https://calendar.google.com/calendar/ You are receiving this courtesy email at the account psa-crypto(a)lists.trustedfirmware.org because you are an attendee of this event. To stop receiving future updates for this event, decline this event. Alternatively you can sign up for a Google account at https://calendar.google.com/calendar/ and control your notification settings for your entire calendar. Forwarding this invitation could allow any recipient to send a response to the organizer and be added to the guest list, or invite others regardless of their own invitation status, or to modify your RSVP. Learn more at https://support.google.com/calendar/answer/37135#forwarding

3 years, 5 months

1
0
0 0

Adding lists to the MBed TLS Tech Forum invite

by Don Harbin

Hi All, FYI, per Shebu, I'm adding both mbed-tls(a)lists.trustedfirmware.org and psa-crypto(a)lists.trustedfirmware.org to the MBed TLS Tech Forum invites. Please look for this in your inbox and accept it if you would like the series added to your calendar. - Note that this is a monthly meeting but you will see two invites, one that is for Asia timezones and one for Europe/US. Just delete the series that isn't timezone friendly for you. - FYI, recall that this and other tech forums can be found in the meeting calendar on the TF website <https://www.trustedfirmware.org/meetings/>. If you see a meeting in that calendar, click on the entry and an option comes up saying "copy to my calendar." It will import that single instance into your personal calendar from there if you wish. I wasn't able to test this feature with outlook, but it worked fine for google calendar. Please let me know if you have any questions. Best regards, Don Harbin TrustedFirmware Community Manager don.harbin(a)linaro.org

3 years, 5 months

1
0
0 0

PSA Key Attestation APIs

by Cedric Neveux

Hello, Working on a Secure SW architecture requiring to support key attestation, I would like to know if there is a plan to add APIs to do Asymmetric key attestation in the same manner there are API to attest a token? We would like to propose the following APIs: Calculate the size of a Key Attestation buffer. psa_status_t psa_attest_key_get_size(psa_key_id_t key, size_t auth_challenge_size, size_t *cert_size) Retrieve the Key Attestation buffer. psa_status_t psa_attest_key(psa_key_id_t key, const uint8_t *auth_challenge, size_t auth_challenge_size, uint8_t *cert_buf, size_t cert_buf_size, size_t *cert_size) Concerning the certificate buffer, we are thinking about a TLV format containing metadata + public key buffer + signature but in order to standardize these APIs like the PSA initial attestation token, we are open to any advice. Do you think that adding it in the Attestation API standard is possible or do we have to add it as custom API? Thanks and Regards, Cedric Neveux

3 years, 8 months

3
2
0 0

Re: [psa-crypto] What are the rules for driver calls to the PSA crypto interface?

by Gilles Peskine

Hi Beat, This is still an open point in the design. It's clear that some back-and-forth is needed. An accelerator needing a source of randomness is a good example. In some cases, it's possible to have the core call a deterministic function in the driver, for example accelerated RSA-PSS can often be broken down into the RSA exponentiation (accelerated) and PSS padding (unaccelerated except maybe for the hash calculations, done by the core). This kind of scenario calls for additional entry points in the driver, which has the advantage of not requiring any control inversion. These additional entry points are evoked under “substitution points” in the specification draft. However, other cases cannot be done this way, for example if a driver needs a random generator to perform blinding. Other examples include an opaque driver using a local cipher to encrypt communication with a secure element over an insecure bus, or a driver loading an auxiliary firmware image and verifying its signature. These cases are varied enough that I think it must be possible for drivers to call any API function. But as you note this may cause reentrancy problems, so there should be some limitations. It's not clear to me at this stage what the limitations should be. For example, what rules would facilitate static bounds on stack usage? Can the rules be enforced cheaply at runtime, and are violations likely to be detected by unit tests? Can the rules realistically be validated by static analysis? The exact manner in which drivers might call core functions is also open. Are there additional auxiliary functions that the core should expose (for example, might a driver prefer to have the core expose rsa_pss_pad())? The functions that the driver sees are not necessarily the same that the functions that applications see (at the very least, they're different on platforms where applications run in their own memory space and PSA API calls are remote procedure calls, whereas drivers live in the crypto service's memory space). So they can't be guaranteed to have the same symbol name. Types like psa_key_id_t and psa_key_attributes_t may be different in applications and in drivers as well. I expect it's going to take a while to converge on all of these open questions. As the use cases are diverse, feedback is very welcome. -- Gilles Peskine PSA Crypto architect and Mbed TLS developer On 07/05/2021 10:55, Beat Heeb via psa-crypto wrote: > Hi, > > It is unclear whether drivers are allowed to call functions of the outer PSA crypto interface. > If this is allowed, strict rules are needed to avoid hard to find recursive invocation and reentrancy problems. > Such problems are not necessarily detected at development time because they may be caused by a combination of several drivers developed by different vendors. > The easiest and most secure way would be to prohibit such calls completely. > However, at least in one case they are unavoidable: > Several driver functions need a source of randomness to fill some random values (cipher_encrypt, RSA_PSS, non-deterministic ECDSA, ..). > Getting randomness is non-trivial and involves special hardware in most cases which is usually not accessible to any driver (in particular accelerators). > So drivers must be allowed to call at least psa_generate_random(). > The only alternative would be to split up all affected functions to separate randomness generation from cryptographic calculations. > Regards > Beat >

4 years, 2 months

1
0
0 0

What are the rules for driver calls to the PSA crypto interface?

by Beat Heeb

Hi, It is unclear whether drivers are allowed to call functions of the outer PSA crypto interface. If this is allowed, strict rules are needed to avoid hard to find recursive invocation and reentrancy problems. Such problems are not necessarily detected at development time because they may be caused by a combination of several drivers developed by different vendors. The easiest and most secure way would be to prohibit such calls completely. However, at least in one case they are unavoidable: Several driver functions need a source of randomness to fill some random values (cipher_encrypt, RSA_PSS, non-deterministic ECDSA, ..). Getting randomness is non-trivial and involves special hardware in most cases which is usually not accessible to any driver (in particular accelerators). So drivers must be allowed to call at least psa_generate_random(). The only alternative would be to split up all affected functions to separate randomness generation from cryptographic calculations. Regards Beat

4 years, 2 months

1
0
0 0

Re: [psa-crypto] Which checks are needed in a driver?

by Gilles Peskine

Hello, There is no security boundary between the crypto core and drivers, so you can assume that all pointers are valid (including the fact that they're non-null, except possibly for 0-size buffers). You can also assume that the multipart operations follow a valid sequence (setup-update-update...-finish, or whatever is suitable for the operation type), and that every operation is eventually finished or aborted. Do however keep in mind that different operations can be interspersed (setup(op1); setup(op2); update(op1); update(op2); ...). The validity of buffer sizes and cryptographic data is less clear-cut. It's definitely one of the areas that needs to be clarified before this specification reaches a final stage. In general, it's better if the core validates everything it can: it saves effort overall since there are far fewer core implementers than driver implementers, it allows the validation to be tested generically, it guarantees that the behavior is the same everywhere. However, there are also integration reasons to have the driver do validation. If the core is responsible for validation then yo can't have a driver for an algorithm that the core doesn't support, which is useful especially with secure elements. There's also some validation that benefits from acceleration, for example checking that the public key is a curve point before performing an ECDH operation. The driver specification should be explicit as to who checks what (we definitely must not end up with each side thinking that the other side will do it). But at this stage I don't know yet where the limit must be. Best regards, -- Gilles Peskine PSA crypto architect and Mbed TLS developer On 06/05/2021 13:39, Beat Heeb via psa-crypto wrote: > Hi, > > The Unified Driver Specification should state which precondition checks are needed in a driver function. > It would be redundant to do all validity checks in both the core and the drivers. > From the samples it seems to be safe to assume all pointer arguments are non-null. > What about sizes? > Is it safe to assume only valid key sizes are delivered to a driver? > (For instance only 192, 224, 256, 384 or 521 for PSA_ECC_CURVE_SECP_R1.) > Is it guaranteed that the key_length is always correct for the given bit size of the key? > (For instance key_length is always 32 for a 256 bit SECP_R1 secret key.) > What about the sequence of function calls for a multi-part interface? > Is a driver expected to check for out-of-sequence calls and return PSA_ERROR_BAD_STATE? > > Thanks for clarifications. > Regards > Beat Heeb

4 years, 2 months

1
0
0 0

Which checks are needed in a driver?

by Beat Heeb

Hi, The Unified Driver Specification should state which precondition checks are needed in a driver function. It would be redundant to do all validity checks in both the core and the drivers. >From the samples it seems to be safe to assume all pointer arguments are non-null. What about sizes? Is it safe to assume only valid key sizes are delivered to a driver? (For instance only 192, 224, 256, 384 or 521 for PSA_ECC_CURVE_SECP_R1.) Is it guaranteed that the key_length is always correct for the given bit size of the key? (For instance key_length is always 32 for a 256 bit SECP_R1 secret key.) What about the sequence of function calls for a multi-part interface? Is a driver expected to check for out-of-sequence calls and return PSA_ERROR_BAD_STATE? Thanks for clarifications. Regards Beat Heeb

4 years, 2 months

1
0
0 0

Proposed random generator driver interface

by Gilles Peskine

Hello, Arm is soliciting feedback on a proposed interface to random generator drivers for a PSA cryptography library or service. In a nutshell, this is the interface between portable code that implements cryptographic operations and keystore functionality, and drivers for hardware that provide an entropy source, acceleration of a random generation algorithm, or both. The current specification draft is attached to this email in markdown and HTML formats. Comments are welcome through the following venues: * Public email to the psa-crypto list at TrustedFirmware. * Private email to <mbed-crypto(a)arm.com>. These emails will only be shared inside Arm. We may use your feedback to influence the design of PSA Crypto, but your identity and the specifics will be kept confidential. We would appreciate it if any major issues were raised before 31 January 2021. Best regards, -- Gilles Peskine Mbed TLS developer and PSA crypto architect

4 years, 6 months

1
0
0 0

Re: [psa-crypto] [mbed-tls] Questions about PSA Crypto API and mbed TLS

by Gilles Peskine

Hello, On 05/11/2020 17:49, François Beerten via mbed-tls wrote: > Hi, > > Thank you Gilles for the detailed reply. > > Do you prefer that discussion about PSA Crypto API spec go on mailing > list instead of here ? Is there some room for evolution or is the spec > already in a frozen released state ? Please use the psa-crypto list since there may be participants there who don't care about Mbed TLS. Version 1.0 of the PSA Crypto API is official so we won't make incompatible changes unless there is a compelling reason. We can, and will, add features in 1.x versions of the specification. Among planned features are: more algorithm declarations, key wrapping, key stretching, and a better treatment of key establishment (including password-based key establishment). > > For new algorithms, it's of course preferable that they're defined in > the spec itself. But does the mbedtls project want to supports all > algorithms that will be used with PSA Crypto API ? Mbed TLS intends to be a reference implementation of the PSA crypto API. However it isn't clear whether this means that Mbed TLS will eventually support all algorithms that the API declares: we intend to support all methods, but not necessarily all algorithms. A conforming implementation of the API is allowed to support any subset of the algorithms. We (here meaning Arm, not Mbed TLS) don't have a formal policy to decide whether to include a declaration for an algorithm, but here are some criteria that we're likely to follow: * There should be a public specification. (This can be a document that's only for purchase, such as an ISO standard.) * The algorithm should either be in good standing, or in current use in legacy protocols. * The bar is low for adding an algorithm that just requires a #define. It's a lot higher if a new function is needed. * Availability in Mbed TLS is not required. > > For pure ED25519 and ED448 with scattered data, there's one big > gotcha. You need to generate twice a hash that includes the message. > Thus the implementation needs to be able to access the buffers of the > message twice. With a piece of the message given only once as in the > init-update-finish scheme, that does not work well. > > From reading the document on the PSA Crypto driver API, a transparent > driver benefits from the management of keys done by the mbedtls > implementation. But what benefit is there for a driver working with > opaque keys which has to fully handle the protections and restrictions > of keys internally ? > One of the driving goals of PSA is to make security unobtrusive, and to facilitate security improvements. A unified interface to key management makes it easy to upgrade from having all keys inside, to using a single-chip application separation technology (MMU, MPU, secure enclave, …), to wrapping keys in a secure element and storing the wrapped key externally, to storing keys in a secure element (which protects against undeletion). When an application uses a key, it doesn't need to care where the key is stored. Best regards, -- Gilles Peskine > Best, > > François. > > > On 11/2/20 11:01 PM, Gilles Peskine via mbed-tls wrote: >> Hello, >> >> Thank you for your interest in the PSA crypto API. >> >> On 28/10/2020 15:20, François Beerten via mbed-tls wrote: >>> Hi everybody, >>> >>> After reading the PSA Crypto API specs (as on >>> https://armmbed.github.io/mbed-crypto/html/overview/functionality.html) >>> and looking at the mbed TLS library, a few questions came up. >>> >>> Is there some repository with the sources of the PSA Crypto API specs >>> where one can follow the evolution and eventually send proposals and >>> patches ? >>> >> The PSA specification drafts are not public. You can send feedback about >> the PSA Crypto application and driver interfaces on the psa-crypto >> mailing list (psa-crypto(a)lists.trustedfirmware.org, >> https://lists.trustedfirmware.org/mailman/listinfo/psa-crypto). If you >> prefer to send confidential feedback, you can email mbed-crypto(a)arm.com >> (feedback at this address will only be discussed inside Arm). An issue >> in the Mbed TLS repository will also reach PSA Crypto architects. >> >>> A note says "Hash suspend and resume is not defined for the SHA3 >>> family of hash algorithms". Why are they not defined for SHA3 ? >>> >> The hash suspend/resume operations marshall the internal state of the >> hash operation. They mimic an existing JavaCard API >> (https://docs.oracle.com/javacard/3.0.5/api/javacard/security/InitializedMes…). >> >> There is a de facto standard representation of the internal state for >> common Merkle-Damgård constructions, which covers all the currently >> defined hash algorithms except SHA3. If there's interest in this >> functionality, we could standardize a representation for SHA3. >> >>> How can or should one add support in PSA Crypto AP for not yet defined >>> algorithms (for example a KDF) ? >>> >> Answer from a PSA Crypto architect: preferably by requesting an encoding >> for this KDF as a PSA_ALG_xxx value (as well as new >> PSA_KEY_DERIVATION_INPUT_xxx values if applicable). If you can't do >> that, use an encoding in the vendor range (most significant bit set). >> >> The world of key derivation functions is unfortunately messy: there are >> many similar, but not functionally equivalent constructions (such as >> hashing a secret together with a nonce, formatted in all kinds of >> different ways). The set of KDF in PSA Crypto 1.0.0 was the minimum set >> required for the TLS protocol. We expect 1.0.x updates to define more >> KDF algorithms. >> >> Answer from an Mbed TLS maintainer: contributing an implementation would >> be appreciated (but not required). >> >>> In multipart operations, can the user reuse the input buffers >>> immediately after doing an 'update' (for example after >>> psa_hash_update()) ? And can he reuse the input buffers immediately >>> after some "setup" functions like psa_cipher_set_iv() or >>> psa_aead_set_nonce() ? >>> >> Yes. PSA crypto API functions that take a buffer as a parameter never >> take ownership of that buffer. Once the function returns, you can do >> whatever you want with the buffer. >> >> The PSA specification even guarantees that you can use the same buffer, >> or overlapping buffers, as inputs and outputs to the same function call. >> However beware that the Mbed TLS implementation does not always support >> such overlap (https://github.com/ARMmbed/mbedtls/issues/3266). >> >>> Do you plan to support (pure) ED25519 and ED448 only via >>> psa_sign_message() and psa_verify_message() ? What about messages in >>> multiple chunks ? >>> >> We plan to add a multi-part message signature interface, both for the >> sake of pureEdDSA and suitable for Mbed TLS's restartable ECDSA. I >> expect the design to be “what you'd expect” but I haven't yet verified >> that there aren't any gotchas. >> >>> In psa_asymmetric_encrypt(), why is the salt provided explicitely. >>> Shouldn't it be generated randomly internally when needed ? >>> >> Some applications use a fixed or deterministic salt which they check on >> decryption. Note that this parameter is what PKCS#1 calls “label”. >> >>> With PSA Crypto API, you define a flexible API for cryptographic >>> operations. Apparently, other providers could make their own >>> implementation of PSA Crypto API. Will mbed TLS then be able to use >>> those alternate PSA Crypto API implementations ? How would that work >>> practically ? >>> >> The X.509 and TLS layer of Mbed TLS are currently designed to use the >> mbedtls_xxx crypto API. We have already added partial support for the >> psa_xxx crypto API (with MBEDTLS_USE_PSA_CRYPTO), however it is not yet >> possible to fully decouple the X.509/TLS layers from the Mbed TLS crypto >> implementation. (I think this is already possible for a small set of >> cipher suites, but it isn't something that we've tried or currently >> actively support.) Before this can happen, some Mbed TLS APIs need to >> change, which will happen in 2021 with Mbed TLS 3.0. After that, we plan >> to decouple the PSA crypto reference implementation (Mbed TLS's current >> crypto implementation) from the X.509/TLS layer (which will remain “Mbed >> TLS”). Our plans >> (https://developer.trustedfirmware.org/w/mbed-tls/roadmap/) that far >> into the future are still vague and may change. >> >> Note that for the most common case of wanting a different implementation >> of cryptography, which is to leverage hardware such as accelerators and >> secure elements, PSA is defining a driver interface which is currently >> being implemented in Mbed TLS >> (https://github.com/ARMmbed/mbedtls/blob/development/docs/proposed/psa-drive…). >> >> The driver interface lets you combine mechanisms supported by your >> hardware with Mbed TLS's implementation for mechanisms without hardware >> support. >>

4 years, 8 months

1
0
0 0

2025

2024

2023

2022

2021

2020

psa-crypto