https://devzone.nordicsemi.com/f/nordic-q-a/117813/signature-scheme-implementation-for-nrf52-seriesDear customer support people, I&#39;m trying to employ a particular signature scheme to benchmark it against other more traditional methods on your devices, specifically on a nrf52840DK. Specifically, the signature scheme is BBS, a relatively new methoden-USTelligent Community 13Thu, 09 Jan 2025 13:24:35 GMThttps://devzone.nordicsemi.com/thread/517706?ContentTypeID=1Thu, 09 Jan 2025 13:24:35 GMT137ad170-7792-4731-bb38-c0d22fbe4515:bd5eb38a-f55a-42b1-b345-ae996700fa5dEinar Thorsrud<p>Hi&nbsp;Alessandro,</p> <p>I would recomend looking at PSA APIs instead of mbed TLS, as that is what we are supporting going forward, and this is paritcularily relevant if you want to use the nRF54 series devices (you can use mbedTLS / legacy crypto there as well for now, but without hardwrae acceleration). That said, you can find infomration about using mbed TLS with nRF Connect SDK under <a href="https://docs.nordicsemi.com/bundle/ncs-latest/page/nrf/libraries/security/nrf_security/doc/configuration.html#legacy_crypto_support">Legacy crypto support</a>, as for APIs, you should refer to the mbedTLS documentation or generic examples, as most is not nRF specific.</p> <p>regardign integrating libraries in the SDK, the simplest if it is just a bunch of files, could be to include it directly in the application folder as just a part of the application. You can still keep it in a separate folder, but modify the CMakeLists.txt file to include that folder as well. You can also have a look at <a href="https://github.com/nrfconnect/sdk-zephyr/tree/main/samples/application_development/external_lib">this sample</a> of addding an external library (this demonstrate a library with a different build system, but that does not have to be the case). Or you can look at how various libraries are added in the SDK.</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/517493?ContentTypeID=1Wed, 08 Jan 2025 13:55:42 GMT137ad170-7792-4731-bb38-c0d22fbe4515:9e097402-a126-46b9-9f0e-b9c7a122c3f5alebldn<p>Hi Einar, thanks for your response!</p> <p>I&#39;m familiar with the examples you provided: in fact, I&#39;ve been using one of these to leverage high-level APIs to interact with security modules. Unfortunately, if I had to implement things myself I&#39;d have to hack into the lower levels to employ the finite field arithmetic libraries employed by other signature schemes included in the crypto examples you provided. Do you have any suggestions about where could I find more about lower level libraries like mbed_tls? The official site doesn&#39;t really provide much information...</p> <p>Other than that, aside the familiarity with specific libraries, are you aware of any guide that could help me integrate libraries that need to be built with CMake (similarly to our projects) into the nrf Connect SDK environment?</p> <p>Thank you in advance,</p> <p>Alessandro</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/517490?ContentTypeID=1Wed, 08 Jan 2025 13:47:02 GMT137ad170-7792-4731-bb38-c0d22fbe4515:9914ae82-cb47-4a02-a701-595c0cd1ad67Einar Thorsrud<p>Hi Alessandro,</p> <p>I am not familiar with relic or libbbs so I do not have any specific input on that. It seems to me that it is purely software based though, so even if you port it successfully to the nRF you would not benefit from the CryptoCell CC310 crypto accelerator on the nRF52840.</p> <p>For using the crypto accelerator and for future-proofing for other nRF devices, I suggest you look at implementing it using PSA crypto APIs. There are several <a href="https://github.com/nrfconnect/sdk-nrf/blob/20158058f231395237a6cf40399af2a5c2e826cb/samples/crypto">crytpo examples</a> you may find relevant in the SDK, including ECC samples.</p><div style="clear:both;"></div>