Module Name
TRICX Cryptographic Library
Historical Reason
SP 800-56Arev3 transition
Caveat
No assurance of the minimum strength of generated keys. The module generates cryptographic keys whose strengths are modified by available entropy
Security Level Exceptions
- Physical Security: N/A
- Mitigation of Other Attacks: N/A
Embodiment
Multi-Chip Stand Alone
Description
TRICX is a general-purpose cryptographic library designed to be statically linked with a Trusted Application running on Trustonic's Kinibi operating system in a Trusted Execution Environment.
Tested Configuration(s)
- Trustonic Kinibi 400A running on a HiSilicon Kirin 620 with an ARM Cortex-A53 with PAA
- Trustonic Kinibi 400A running on a HiSilicon Kirin 620 with an ARM Cortex-A53 without PAA (single-user mode)
Approved Algorithms
| AES |
Cert. #4468 |
| CVL |
Cert. #1180 |
| DRBG |
Cert. #1450 |
| ECDSA |
Cert. #1090 |
| HMAC |
Cert. #2965 |
| KAS |
Cert. #119, SP 800-56Arev2, vendor affirmed |
| KTS |
AES Cert. #4468; key establishment methodology provides between 128 and 256 bits of encryption strength |
| RSA |
Cert. #2443 |
| SHS |
Cert. #3680 |
| Triple-DES |
Cert. #2398 |
Allowed Algorithms
RSA (key wrapping; key establishment methodology provides between 112 and 150 bits of encryption strength)
