Lines Matching refs:a

4 This document is a proposed interface for deciding at build time which cryptographic mechanisms to …
6 This is currently a proposal for Mbed TLS. It is not currently on track for standardization in PSA.
12a PSA Cryptography implementation and an application. The interface defines a number of categories…
14 The present document proposes a way for an application using the PSA cryptography interface to decl…
18 Mbed TLS offers a way to select which cryptographic mechanisms are included in a build through its …
22a cryptographic mechanism (or, with **fallback**, the built-in implementation is tried if the driv…
24a platform with ECC acceleration that can perform all ECDSA and ECDH operations in the accelerator…
30 [Req.inclusion] If the application does not require a mechanism, a suitably configured Mbed TLS bui…
32 …vers] If a PSA driver is available in the build, a suitably configured Mbed TLS build must not inc…
34 …C preprocessor definitions, and the build does not require tools other than a C compiler. This is …
40 …on.matrix] If a mechanism is defined by a combination of algorithms and key types, for example a b…
46 …ple single-part and multi-part, there is no mechanism to select only one or a subset of the possib…
52 The PSA Crypto configuration file `psa/crypto_config.h` defines a series of symbols of the form `PS…
63 A PSA Crypto configuration symbol is a C preprocessor symbol whose name starts with `PSA_WANT_`.
66 * If the symbol is defined to a preprocessor expression with the value `1`, the corresponding featu…
67 * If the symbol is defined with a different value, the behavior is currently undefined and reserved…
71a symbol `PSA_WANT_xxx` in the Mbed TLS configuration determines whether a feature is available th…
79a feature is not requested for inclusion in the PSA Crypto configuration file, it may still be inc…
89 For elliptic curve key types, only the specified curves are included. To include a curve, include a
91a deviation of the general principle that `PSA_ECC_FAMILY_xxx` would have a corresponding symbol `…
97 …roup, so reducing the number of available groups at compile time only saves a little code space. C…
103 …ded through their own `PSA_WANT_ALG_xxx` symbols. It is an error to include a base mechanism witho…
113 * **`MBEDTLS_PSA_ACCEL_xxx`** indicates whether a fully-featured, fallback-free transparent driver …
116 `MBEDTLS_PSA_ACCEL_xxx` is one of the outputs of the transpilation of a driver description, alongsi…
134 …lculations in `psa/crypto_sizes.h`, and application code that's specific to a given cryptographic …
136 Since some existing applications use a handwritten `mbedtls/mbedtls_config.h` or an edited copy of …
140 … is set or not, `mbedtls/config_psa.h` includes `mbedtls/crypto_drivers.h`, a header file generate…
144 * (U) indicates a symbol that is defined by the user (application).
145 * (D) indicates a symbol that is deduced from other symbols by code that ships with Mbed TLS.
146 * (G) indicates a symbol that is generated from driver descriptions.
186 At the time of writing, the preferred configuration mechanism for a PSA service is in JSON syntax. …
188 …roperties that are used to mean “this driver can perform that mechanism” in a driver description w…
192 The JSON capability language allows a more fine-grained selection than the C mechanism proposed her…
194a feature to be enabled if any part of it is enabled. For example, if there is a capability for AE…
196 …chanism proposed here can be translated to a list of JSON capabilities: for each included algorith…
204 The names of [elliptic curve symbols](#configuration-symbols-for-elliptic-curves) are a bit weird: …
208 What does it mean to have `PSA_WANT_ALG_ECDSA` enabled but with only Curve25519? Is it a mandatory …
212 Way to request only specific groups? Not a priority: constrained devices don't do FFDH. Specify it …
220 #### Algorithms without a key type or vice versa
222 Is it realistic to mandate a compile-time error if a key type is required, but no matching algorith…
226 If a mechanism should only be supported in an opaque driver, what does the core need to know about …
228 This is especially relevant to suppress a mechanism completely if there is no matching algorithm. F…
234 Is this proposal decently testable? There are a lot of combinations. What combinations should we te…