How I use sd110 function decryption data to cleartext?

There is no hardware block to do ECB decryption in the nRF51822, and ECB encryption/decryption can be very insecure (see this Wikipedia page for an example).

I'd therefore strongly recommend you to instead use a AES mode which uses a hardware encryption block both for encryption and decryption, for example the counter mode. We don't currently have any example code for this, but it should be fairly easy to implement yourself.

I understand why ECB is insecure. I am trying to do a CBC AES encryption/decryption function on the 1422/1822 and I cannot find any information on what the underlying hardware is doing. Posts keep saying that there are no examples but it's easy and refers back to the wiki. I know how to do CBC and my app already does that on other hardware. I want to make use the the hardware acceleration for ECB to do the bulk of the math. Can someone tell me what the nrf_ecb_crypt function is doing so I can leverage the ECB part and do my own block chaining. The header files says that it will encrypt and decrypt, however when I send in a plaintext string to encrypt then decrypt I get back garbage.

-Jim

Hi Jim, were you able to figure this one out? I'm in the same boat, there's painfully little to go on.

yes, there simply isn't a decrypt block in the part since you actually don't want one Decrypt is only useful for ECB and CBC modes and there is a better one to use which is CTR. In CTR there is no decryption since you don't ever encrypt data, you use the encryption block to make a secure one time pad (OTP) both sides start from the same point (Nonce) and simply increment it and encrypt it to get the next 16 bytes of pad. This makes a stream cipher which means no more padding to get to 16 just shift off the number of pad bytes you need. Converting plain text to cipher text is just an xor and going back to plain is just xor again. This is more secure than CBC since the encryption step isn't dependent on previous data which also means that a bit flip doesn't propagate either and you can recover the stream minus the bit.