ITS Encryption
ITS Encryption
Application
Application
tfm_its_crypt_file(  file_id ,             , encrypt )
tfm_its_crypt_file(  file_id ,             , encrypt )
ITS
ITS


ITS HAL impl.























(Vendor 
specific)



ITS HAL impl....
generate_nonce()
generate_nonce()
encrypt(                , fid*,                    ,             )
encrypt(                , fid*,                    ,             )
ITS crypto interface
ITS crypto interface
File
File
File
File
Flash

Storage

Flash...
tfm_its_get()
tfm_its_get()
Application
Application
             tfm_its_crypt_file(  file_id ,             , decrypt )
             tfm_its_crypt_file(  file_id ,             , decrypt )
ITS
ITS
decrypt(                , fid*,                     ,                )
decrypt(                , fid*,                     ,                )
ITS crypto interface
ITS crypto interface
tfm_its_set(            )
tfm_its_set(            )
File
File
NONCE
NONCE
enc
File
enc...
Auth 
tag
Auth...
enc
File
enc...
Auth 
tag
Auth...
enc
File
enc...
Auth 
tag
Auth...
enc
File
enc...
Auth 
tag
Auth...
NONCE
NONCE
NONCE
NONCE
* will be used to derive
AEAD key from a
long-term 
key-derivation key
* will be used to deriv...
File
Meta
File...
enc
File
enc...
Auth 
tag
Auth...
File
File
File
File
File
File
File
Meta
File...
Encryption
Encryption
Decryption
Decryption
* will be used to derive
AEAD key from a
long-term 
key-derivation key
* will be used to deriv...Text is not SVG - cannot display