• State Verified Answer
  • Replies 5 replies
  • Subscribers 88 subscribers
  • Views 1649 views
  • Users 0 members are here
Attachments (0)
Nordic Case Info
  • Case ID: 253661
Options
This post is older than 2 years and might not be relevant anymore
More Info: Consider searching for newer posts

Migration from micro_ecc to oberon backend for ECDSA. Signature verification failure.

Valerii_Ie

Hi, 
I'm using code based on sdk/components/libraries/bootloader/dfu/ for ECDSA verification of the signature. But switched to Oberon crypto backend. The signature was successfully verified with micro ecc but fails with Oberon. 
I suspect next can be the root cause: 

// <q> NRF_CRYPTO_BACKEND_MICRO_ECC_LITTLE_ENDIAN_ENABLED - Enable non-standard little endian byte order.

// <i> This affects parameters for all ECC API (raw keys, signature, digest, shared secret). Only for use in nRF SDK DFU!

#ifndef NRF_CRYPTO_BACKEND_MICRO_ECC_LITTLE_ENDIAN_ENABLED
#define NRF_CRYPTO_BACKEND_MICRO_ECC_LITTLE_ENDIAN_ENABLED 0
#endif

Please suggest the possible solution?

Parents Reply
  • +1 in reply to Valerii_Ie

    Hi,

    Thanks for confirming. I found this listed under known issues in the releases notes for SDK 15.0.0:

       Changing the backend for nrf_crypto in sdk_config.h alone is not sufficient
       because the relevant files are not included in the build and include paths.
       See the Migration Guide for a walkthrough of changing from the µECC to the
       Oberon backend.

    And here is the section of the migration document that it's referring to: Porting from µECC to nrf_oberon.

    Please make sure you have followed the migration steps outlined in the documentation I linked to above, particularly step 6 which reverses the endianness.

Children
Related