Hi Matt,

 

TF-M plans to continue using Mbedcrypto in the crypto service. Mbed Crypto implements the PSA Crypto APIs and is also now part of trustedfirmware.org community project alongside TF-M.

However, it is possible with some effort for a platform using TF-M to use another crypto library in the TF-M crypto service. Of course the library will need to support PSA Crypto APIs to be PSA compliant.

 

There is support for ARIA, Camellia in Mbed TLS. There has already been a PR for SM4 support sometime back – https://github.com/ARMmbed/mbedtls/pull/1165. SM2/SM3 algorithm support  

can be contributed to MbedTLS project (Mbed Crypto is now merged to Mbed TLS project). The maintainers  will have to review and integrate the contribution as their bandwidth permits

while finding time to  review several contributions that the project is receiving.

 

I am adding psa-crypto mailing list which is used for Mbedcrypto/PSA Crypto discussions.

 

Regards,

Shebu  

 

From: TF-M <tf-m-bounces@lists.trustedfirmware.org> On Behalf Of Matt via TF-M
Sent: Thursday, April 16, 2020 8:24 AM
To: tf-m@lists.trustedfirmware.org
Subject: [TF-M] Will TFM crypto service suppot national encryption algorithm in the future?

 

Hi All TFM experts,

 

TFM crypto service is based on mbedcrypto and there is no national encryption algorithm support in current mbedcrypto implementation.

The Chinese market has a strong demand for national encryption algorithms, such as SM2/SM3/SM4, will TFM crypto service change to other crypto implementation to support the national encryption algorithm in the future?

 

Thanks,

-Matt