43.2 Features
The following are key features of the Hardware Security Module Lite:
- AES-128, AES-192, and AES-256: Fully compliant with NIST FIPS 197
- ECB, CBC, CFB, OFB, CTR, GCM, CCM, XTS, CMAC Modes
- HASH/MAC
- MD-5, SHA-1, SHA-256, SHA-224, SHA-384 and SHA-512, and SHA3 (SW)
- Key Derivation Function (HKDF, KDF2…)
- Public Key Cryptography: RSA, DSA, EdDSA, and ECC
- RSA with or without Chinese Remainder Theorem (CRT). Up to 4096-bit Key length.
- Public Key Cryptography: RSA, DSA, EdDSA, and ECC
- ECC with ECC-GF(p), ECC-GF(2m), and ECDSA support
- Prime Field P-192, P-224, P-256, P-384, P-521
- Binary Field K-163, K-233, K-283, K-409, K-571
- Binary Field B-163, B-233, B-283, B-409, B-571
- P-224, P-256, P-384, and P-521 Elliptic Curve – ECDSA Sign/Verify
- DSA support up to 2048-bit Key Length
- NIST-800-22 and NIST-800-90B compliant True Random Number Generator (TRNG, AIS-31 Compliant)
- Two 4Kb Key Storage Pages