Multi-Purpose AES

Compact and high-speed AES Crypto Engine supporting a wide range of performance requirements and cipher modes like ECB, CBC, CFB, OMAC and XTS and interleaved CTR, CCM, XTS and GCM on ASIC and FPGA

Overview

The BA411E-FLEX core is a multi-purpose, flexible and reconfigurable AES Crypto engine. The granular and scalable implementation of the AES algorithm makes the solution suitable for a wide and full range of requirements (from low-cost to ultra-high-speed). The engine is easily reconfigurable through a generic function.

The silicon-proven core is optimized and suited for any target technology (ASIC, Altera, Microsemi, Xilinx)

With a very flexible wrapper supporting a wide selection of programmable ciphering modes (ECB, CTR, CBC, CFB, OFB, OMAC, CCM/CMAC, GCM/GMAC and XTS) and several options of data interfaces (FIFO, DMA, AXI4-Stream, …), the BA411E-FLEX is an easy-to-use solution with predictable resources and performances on ASIC and FPGA.

Features

• Off-the-shelf, predictable and silicon-proven solution
• Portability: ASIC, Actel, Altera, Xilinx
• Supports Encryption and Decryption
• Very high performances for ECB, CTR, XTS and GCM modes
• Can be combined with CCM, XTS and GCM (BA411E-XTS: AES-XTS for disk encryption)
• Logic footprint optimized to performance requirements, supported modes and features
  • Tiny Configuration: ~ 10k gates (including key, IV, input and output registers)
  • Hi-speed Configuration: > 100 Gbps (BA415: AES-GCM up to 100 Gbps)
• High-level of scalability: 4, 8, 16 or 20 S-Boxes
• Supports 128, 192 and 256-bit key with integrated Key Expansion
• Supports a wide selection of programmable ciphering modes based on NIST SP 800-38:
  • Non-chaining modes:                        ECB, CTR
  • Chaining modes:                               CBC, CFB, OFB
  • Cyphertext stealing modes                CBC-CS (optional)
  • Authentication:                                 CMAC (OMAC1)
  • Authentication & Confidentiality:       CCM, GCM
  • Confidentiality on storage devices:    XTS/XTS-CS
• Supports ‘Bypass’ or ‘NULL Cipher’ mode for streaming applications
• Low power feature
• Control interface: APB or AXI4-Lite
• Data interface: FIFO-like interface; AMBA (AHB, AXI, AXI-4 Stream) with optional DMA
• Masking option available for applications requiring higher level of security with excellent protection against SPA and DPA
• Self-checking TestBench based on FIPS vectors
• User-friendly software API

Applications

A large number of applications use AES encryption:

• Wireless and wired communications
• Digital Cinema
• DRM
• Encrypted data storage
• …

Reference: BA411E-FLEX