Hi,

Is there any hope to get hw accelerated AES-GCM-128 (or 256) in CCR ?

As far as I understand the GCM mode is actually easier to do fast and doesn't have the pipelining dependency of the CBC mode, so I'd actually expect the performance to be better ...

I can't see any real "hardware module" on the Tilera CPU for AES, so I assume that it's just "hand optimized" assembly in which case I'd expect adding GCM to be possible.

Cheers,

    Sylvain

I too have wondered this.

Several of our customers require AES-GCM to be used as part of their corporate security policy.

Hopefully a Mikrotik staffer can reply.

So ... no reply whatsoever from Mikrotik ...

So ... no reply whatsoever from Mikrotik ...

Let me repeat it again: This is a USER forum. Write to support@ when in need of an official answer from Mikrotik.

Except their website states that support@ is only for people having bought their hardware from them directly ...

(and I don't even really see how that's possible, they don't seem to sell anything themselves directly and always point to distributors)

In my experience, you can always send bug reports and feature requests to that address, no matter where you bought your equipment.
Of course don't expect immediate addition of a requested feature, it will probably go on a long triage list.
When you request "hands-holding support how to setup your home access point" they may be more strict in referring you to a reseller,
but I never tried that.

There is a plan to make HW acceleration for GCM. 

There is a plan to make HW acceleration for GCM. 

Thank you for the confirmation Maris.

There is a plan to make HW acceleration for GCM. 

Thank you for the confirmation Maris.

As it turned out, the confirmation was not true

RB1100AHx4 now supports GCM, if it is absolutely necessary you can pick product that supports it.

This topic about CCR

I can't see any real "hardware module" on the Tilera CPU for AES, so I assume that it's just "hand optimized" assembly in which case I'd expect adding GCM to be possible.

You are wrong, Tilera CPU have hardware accelerators (MiCA), and GCM mode supported
see processor architecture overview:
https://cdn.manesht.ir/17871___21076964 ... ILE-Gx.pdf

5.1.8 Crypto Accelerators
The MiCA crypto accelerator supports a rich suite of cryptographic algorithms to enable many
security protocols, including:
• MACsec (802.1AE)
• IPsec
• SRTP
• SSL/TLS
• Wireless GSM and 3GPP
The MiCA engine supports a range of modes from simple encryption/decryption to complex
“packet processing” sequences that offload many of the security protocol steps. However, bulk
encryption or proprietary security protocols are also easily supported since the encapsulation and
header/trailer processing can be completely handled in tile software.
For key generation, a true entropy-based Random Number Generator (RNG) is incorporated
on-chip and it includes a FIPS-140-2 certified whitening function.
The TILE-Gx8036 MiCA system delivers up to 30Gbps of AES encryption performance (128-bit
key, CBC or GCM mode).
The symmetric encryption algorithms supported are:
Table 13. Supported Symmetric Encryption Algorithms
Encryption Type Key Size Modes
AES 128, 192, 256-bits CBC, GCM, CTR, ECB
3DES 56, 168-bits CBC, ECB
ARC4 40 - 256-bits Stream cipher
KASUMI 128-bits Stream cipher
SNOW 3G 128-bits Stream cipher

another example of idiotic tech support (they did not answer the question, and forcibly closed the ticket):

>>Hello,
>>Why CCR10xx do not support aes-gcm hardware acceleration?

Emīls Z.2 days ago 8:57 AM
Hello,
Thank you for your question, however not sure what answer do you expect. It is either a software or hardware limitation making AES-GCM not supported for TILE.

>>But aes-gcm hardware acceleration is supported on TILE
>>see chapter 5.1.8
>>link to pdf

Emīls Z.3 hours ago
Hello,
AES-GCM hw support was not added initially. We will consider adding it in the future.

>>AES-GCM hw support was not added initially.
>>my question is exactly about this. why?
>>9 years have already passed

Your request status changed to Closed with resolution Done.