Crypto: ECDH¶
The ECDH sample shows how to perform an Elliptic-curve Diffie–Hellman key exchange to allow two parties to obtain a shared secret.
Overview¶
The sample follows these steps to perform an ECDH key exchange:
First, the sample performs initialization:
The Platform Security Architecture (PSA) API is initialized.
Two random Elliptic Curve Cryptography (ECC) key pairs are generated and imported into the PSA crypto keystore.
Then, ECDH key exchange is performed using the generated key pairs.
Afterwards, the sample performs cleanup:
The key pairs are removed from the PSA crypto keystore.
Requirements¶
The sample supports the following development kits:
Hardware platforms |
PCA |
Board name |
Build target |
|---|---|---|---|
PCA10095 |
|
||
PCA10095 |
|
||
PCA10090 |
|
||
PCA10090 |
|
||
PCA10056 |
|
When built for nrf5340dk_nrf5340_cpuappns and nrf9160dk_nrf9160ns targets, the sample is configured to compile and run as a non-secure application. Therefore, it automatically includes TF-M that prepares the required peripherals to be available for the application.
Building and running¶
This sample can be found under samples/crypto/ecdh in the nRF Connect SDK folder structure.
See Building and programming a sample application for information about how to build and program the application.
Testing¶
After programming the sample to your development kit, test it by performing the following steps:
Connect to the kit with a terminal emulator (for example, PuTTY). See How to connect with PuTTY for the required settings.
Compile and program the application.
Observe the logs from the application using an RTT Viewer or a terminal emulator.
Note
By default, the sample is configured to use both RTT and UART for logging. If you are using RTT, skip the first step of the testing procedure.