MPC8536E-ANDROID Freescale Semiconductor, MPC8536E-ANDROID Datasheet - Page 510

MPC8536E-ANDROID

Manufacturer Part Number

MPC8536E-ANDROID

Description

HARDWARE/SOFTWARE ANDROID OS

Manufacturer

Freescale Semiconductor

Series

PowerQUICC ™r

Type

MPUr

Datasheets

1.MPC8536EBVTAVLA.pdf (127 pages)

2.MPC8536EBVTAVLA.pdf (2 pages)

3.MPC8536EBVTAVLA.pdf (1706 pages)

Specifications of MPC8536E-ANDROID

Contents

Board

For Use With/related Products

MPC8536

Lead Free Status / RoHS Status

Lead free / RoHS Compliant

Current page: 510 of 1706
Download datasheet (15Mb)

Security Engine (SEC) 3.0

AESU Mode Register Auxiliary Bit Settings for GCM Cipher Modes

Table 10-32

different operating conditions.

AUX0 has different use depending on whether encryption or decryption is specified. For decryption, it

determines whether the provided key should be first unrolled before processing starts, while in case of

encryption it should generally be set to 0 unless GCM-GHASH cipher mode is desired. AUX2 determines

whether the final MAC tag is to be computed or not. If AUX2 is set to 1, E(K, Y

the GHASH(H, AAD, ciphertext) is going to be performed and then XORed to give the MAC tag. Hence,

if the message is split into multiple descriptors, only the last one should have AUX2=1 for proper MAC

tag computation. AUX1 is used to resolve the issues related to the splitting of messages into multiple

descriptors.

general, whenever the final GHASH iteration needs to be computed (either for GHASH(H, {}, IV) or

GHASH(H, AAD, ciphertext)), and the current length is not equal to total length for either IV, AAD, or

text data, then AUX1 should be set to 1. Consequently, an AUX1 value of 1 also indicates that the context

registers 9-10 need to provide the total length of IV, AAD, or text data for this to be accomplished.

10-80

Table 10-32

shows the significance of the AUX bits (bits 58–60) in the AESU mode register, under

AUX0 (bit 60) and Encrypt

AUX0 (bit 60) and Decrypt

AUX2 (bit 58)

AUX1 (bit 59)

Auxiliary Bit

MPC8536E PowerQUICC III Integrated Processor Reference Manual, Rev. 1

shows the proper settings of AUX1 for several scenarios of message splitting. In

Table 10-32. GCM Cipher Mode Auxiliary Bit Definitions

Do not compute MAC

One of the following cases:

Descriptor contains the whole

message (IV+AAD+text data)

Descriptor contains the whole IV

and no or part of AAD or text

data

Descriptor contains a non-final

part of IV, AAD, text data (IV,

AAD or text data split between

descriptors)

Descriptor contains the final part

of AAD or text data but no MAC

is computed

The key is to be unrolled

Definitions

Compute MAC

One of the following cases:

Descriptor contains the final part

of IV (IV split between

descriptors)—len(IV)

Descriptor contains the final part

of text data and the final MAC is

computed (AUX2=1) (text data

split between

descriptors)—len(AAD)

len(text data)

Descriptor contains the whole

text data but no or part of AAD

and the final MAC is

computed—len(AAD)

data)

Descriptor contains the final part

of AAD and the final MAC is

computed—len(AAD)

data)

Descriptor computes only MAC

(based on restored context) but

does not contain either IV, AAD

or text data —len(AAD)

data)

GHASH-only mode

The key is already unrolled

needed

) and the last iteration of

Freescale Semiconductor

, len(text

needed

, len(text

MPC8536E-ANDROID Freescale Semiconductor, MPC8536E-ANDROID Datasheet - Page 510

MPC8536E-ANDROID

Specifications of MPC8536E-ANDROID

Related parts for MPC8536E-ANDROID