https://devzone.nordicsemi.com/f/nordic-q-a/124544/using-x509-certificates-with-rsa-cryptoHello everyone, I am using NRF5340-DK for my project and I am trying to combine X509 certificates (using MBEDTLS) with RSA operations (using PSA). This is my current proj.conf configuration related to crypto operations: As I am activating NRF_SECURITYen-USTelligent Community 13Thu, 25 Sep 2025 09:17:04 GMThttps://devzone.nordicsemi.com/thread/549782?ContentTypeID=1Thu, 25 Sep 2025 09:17:04 GMT137ad170-7792-4731-bb38-c0d22fbe4515:d1ebff45-4256-4585-8345-ec192297ec8bEinar Thorsrud<p>Hi,</p> <p>You can do that. ButI was&nbsp;wondering if you have removed <a href="https://github.com/nrfconnect/sdk-nrf/blob/9f562fbf9bd3052679c6a4f69aaee06c60199b12/subsys/nrf_security/Kconfig.legacy#L740">this line in&nbsp;subsys/nrf_security/Kconfig.legacy</a>&nbsp;as described in the post? Note that if you are using SDK 3.1 or newer(?), that fix is allready in place. (However,&nbsp;RSA certificates are stil not yet supported with PSA Crypto.)</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/549771?ContentTypeID=1Thu, 25 Sep 2025 08:07:25 GMT137ad170-7792-4731-bb38-c0d22fbe4515:fe054a33-ff5e-4c2f-b201-39f1d1a87274Portilha<p>Hello, I did not understood your suggestion. Should I post here my full proj.conf?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/549581?ContentTypeID=1Tue, 23 Sep 2025 14:02:20 GMT137ad170-7792-4731-bb38-c0d22fbe4515:262bfcf3-0d6e-4b99-9aa1-a5fda3029d5fEinar Thorsrud<p>Hi,</p> <p>Have you doen the change suggested in <a href="https://devzone.nordicsemi.com/f/nordic-q-a/123366/rsa-certificates-can-t-be-parsed-when-config_mbedtls_use_psa_crypto-is-enabled/544339">this post</a>&nbsp;(removing &quot;<code>depends on !MBEDTLS_USE_PSA_CRYPTO</code>&quot; for <code>MBEDTLS_RSA_C</code>)?</p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/549528?ContentTypeID=1Tue, 23 Sep 2025 10:43:49 GMT137ad170-7792-4731-bb38-c0d22fbe4515:83e30193-39f8-40ec-a318-9eca999c2a30Portilha<p>Hello,&nbsp;</p> <p>I don&acute;t know if I have expressed myself correctly. I want to use two different concepts, one is X509 DER certificates and another is RSA encryption. If I deactivate the&nbsp;<span>CONFIG_MBEDTLS_LEGACY_CRYPTO_C, the RSA code block works correcly. However if I disable this option I cannot compile the mbedtls functions for x509 certificates. I wanted to know if there is some way to have both functionalities at the same time.</span></p><div style="clear:both;"></div>https://devzone.nordicsemi.com/thread/549526?ContentTypeID=1Tue, 23 Sep 2025 10:28:49 GMT137ad170-7792-4731-bb38-c0d22fbe4515:8c0744b6-3076-42c6-9047-3605ccd4ee17Einar Thorsrud<p>Hi,</p> <p>RSA certificates are not yet supported with PSA Crypto. There is ongoing work for this, but I not not have a timeline for now. Please see <a href="https://devzone.nordicsemi.com/f/nordic-q-a/123366/rsa-certificates-can-t-be-parsed-when-config_mbedtls_use_psa_crypto-is-enabled">this thread</a> for more details.</p><div style="clear:both;"></div>