Hi Shebu, Thanks a lot for your information. It would be good to benefit chinese market if TF-M crypto service can use such crypto library which supports both PSA Crypto APIs and national encryption algorithm such as SM2/SM3/SM4.

Regards, Matt

在 2020-04-16 18:36:55，"Shebu Varghese Kuriakose" Shebu.VargheseKuriakose@arm.com 写道：

Hi Matt,

TF-M plans to continue using Mbedcrypto in the crypto service. Mbed Crypto implements the PSA Crypto APIs and is also now part of trustedfirmware.org community project alongside TF-M.

However, it is possible with some effort for a platform using TF-M to use another crypto library in the TF-M crypto service. Of course the library will need to support PSA Crypto APIs to be PSA compliant.

There is support for ARIA, Camellia in Mbed TLS. There has already been a PR for SM4 support sometime back – https://github.com/ARMmbed/mbedtls/pull/1165. SM2/SM3 algorithm support

can be contributed to MbedTLS project (Mbed Crypto is now merged to Mbed TLS project). The maintainers will have to review and integrate the contribution as their bandwidth permits

while finding time to review several contributions that the project is receiving.

I am adding psa-crypto mailing list which is used for Mbedcrypto/PSA Crypto discussions.

Regards,

Shebu

From: TF-M tf-m-bounces@lists.trustedfirmware.org On Behalf Of Matt via TF-M Sent: Thursday, April 16, 2020 8:24 AM To: tf-m@lists.trustedfirmware.org Subject: [TF-M] Will TFM crypto service suppot national encryption algorithm in the future?

Hi All TFM experts,

TFM crypto service is based on mbedcrypto and there is no national encryption algorithm support in current mbedcrypto implementation.

The Chinese market has a strong demand for national encryption algorithms, such as SM2/SM3/SM4, will TFM crypto service change to other crypto implementation to support the national encryption algorithm in the future?

Thanks,

-Matt