5.1.8.2 SHA - HMAC Digest
The SHA command may be used to calculate an HMAC Digest instead of
an SHA256 Digest. The procedure is essentially the same but requires the use of an
internal key and the use of HMAC_START instead of START.
The following procedure is used when no context switching is required:
- Issue the
SHAcommand in HMAC_Start mode with key location indicated. No message is included. - Issue the
SHAcommand in Update mode with 1 to 64 bytes of the message. - Repeat step 2 until the total number of bytes of the message has been submitted.
- Issue the
SHAcommand in End mode to complete the HMAC Digest calculation.
|
Opcode |
Mode |
Param2 |
Data | Description |
|---|---|---|---|---|
| 0x47 | 0x04 | 0x00 0[slot] | 0 bytes | HMAC Start mode and include a key from a data slot |
| 0x04 | 0xFF FF | 0 bytes | HMAC Start mode and include a key from TempKey | |
| 0x01 | 0x00 [ByteCount] | 1 to 64 bytes | Update mode | |
| 0x02 | 0x00 [ByteCount] | 0 to 64 bytes |
Finalize mode: Digest placed in Output Buffer and TempKey | |
| 0x42 | 0x00 [ByteCount] | Finalize mode: Digest placed in Output Buffer and Message Digest Buffer | ||
| 0xC2 | 0x00 [ByteCount] | Finalize mode: Digest placed in Output Buffer only |
| Name | Mode | Size | Description |
|---|---|---|---|
| Response | 0x04, 0x01 | 1 byte | 0x00 if successful, otherwise an error code is received |
| 0x02, 0x42, 0xC2 |
1 byte |
If Error Code |