AES instruction set

An Advanced Encryption Standard instruction set is now integrated into many processors. The purpose of the instruction set is to improve the speed of applications performing encryption and decryption using Advanced Encryption Standard. They are often implemented as instructions implementing a single round of AES along with a special version for the last round which has a slightly different method.

x86 architecture processors

AES-NI was the first major implementation. AES-NI is an extension to the x86 instruction set architecture for microprocessors from Intel and AMD proposed by Intel in March 2008.

Instructions

Intel

The following Intel processors support the AES-NI instruction set:

Westmere based processors, specifically:
* Westmere-EP processors.
* Clarkdale processors.
* Arrandale processors.
Sandy Bridge processors:
* Desktop: all except Pentium, Celeron, Core i3.
* Mobile: all Core i7 and Core i5. Several vendors have shipped BIOS configurations with the extension disabled; a BIOS update is required to enable them.
Ivy Bridge processors.
* All i5, i7, Xeon and i3-2115C only.
Haswell processors.
Broadwell processors.
Silvermont/Airmont processors.
Goldmont processors.
Skylake processors.
AMD

Several AMD processors support AES instructions:

Jaguar processors and newer
Puma processors and newer
"Heavy Equipment" processors
* Bulldozer processors
* Piledriver processors
* Steamroller processors
* Excavator processors and newer
Zen based processors
Hardware acceleration in other architectures

AES support with unprivileged processor instructions is also available in the latest SPARC processors and in latest ARM processors. The SPARC T4 processor, introduced in 2011, has user-level instructions implementing AES rounds. These instructions are in addition to higher level encryption commands. The ARMv8-A processor architecture, announced in 2011, including the ARM Cortex-A53 and A57 also have user-level instructions which implement AES rounds. In August 2012, IBM announced that the then-forthcoming Power7+ architecture would have AES support. The commands in these architectures are not directly equivalent to the AES-NI commands, but implement similar functionality.
IBM z9 or later mainframe processors support AES as single-opcode AES ECB/CBC instructions via IBM's CryptoExpress hardware. These single-instruction AES versions are therefore easier to use than Intel NI ones, but may not be extended to implement other algorithms based on AES round functions.

Supporting x86 CPUs

, AMD Geode, and Marvell Kirkwood use driver-based accelerated AES handling instead.
The following chips, while supporting AES hardware acceleration, do not support AES-NI:

AMD Geode LX processors
VIA, using VIA PadLock
* VIA C3 Nehemiah C5P processors
* VIA C7 Esther C5J processors
ARM architecture

Programming information is available in ARM Architecture Reference Manual ARMv8, for ARMv8-A architecture profile .

ARMv8-A architecture
* ARM cryptographic extensions optionally supported on ARM Cortex-A30/50/70 cores
Cryptographic hardware accelerators/engines
* Allwinner
** A10, A20, A30, A31, A80, A83T, H3 and A64 using Security System
* Broadcom
** BCM5801/BCM5805/BCM5820 using Security Processor
* NXP Semiconductors
** i.MX6 onwards
* Qualcomm
** Snapdragon 805 onwards
* Rockchip
** RK30xx series onwards
* Samsung
** Exynos 3 series onwards
Other architectures
Atmel XMEGA
SPARC T3 and later processors have hardware support for several cryptographic algorithms, including AES.
Cavium Octeon MIPS All Cavium Octeon MIPS-based processors have hardware support for several cryptographic algorithms, including AES using special coprocessor 3 instructions.
Performance

In AES-NI Performance Analyzed, Patrick Schmid and Achim Roos found "impressive results from a handful of applications already optimized to take advantage of Intel's AES-NI capability". A performance analysis using the Crypto++ security library showed an increase in throughput from approximately 28.0 cycles per byte to 3.5 cycles per byte with AES/GCM versus a Pentium 4 with no acceleration.

Supporting software

Most modern compilers can emit AES instructions.
Much security and cryptography software supports the AES instruction set, including the following core infrastructure:

Apple's FileVault 2 full-disk encryption in macOS 10.10+.
NonStop SSH2, NonStop cF SSL Library and BackBox VTC Software in HPE Tandem NonStop OS L-series
Cryptography API: Next Generation
Linux's Crypto API
Java 7 HotSpot
Network Security Services version 3.13 and above
Solaris Cryptographic Framework on Solaris 10 onwards
FreeBSD's OpenCrypto API
OpenSSL 1.0.1 and above
GnuTLS
Libsodium
FLAM/FLUC 5.1.08 and above
VeraCrypt
GoLang
BitLocker

Popular movies

The Hunger Games (film) - 2012 American dystopian action thriller science fiction-adventure film directed by Gary Ross and based on Suzanne Collins’s 2008 novel of the same name. It is the first insta...
untitled Captain Marvel sequel - part of Marvel Cinematic Universe....
Killers of the Flower Moon (film project) - Killers of the Flower Moon - film project in United States of America. It was presented as drama, detective fiction, thriller. The film project starred Leonardo Dicaprio, Robert De Niro. Director of...
Five Nights at Freddy's (film) - Five Nights at Freddy's - film published in 2017 in United States of America. Scenarist of the film - Scott Cawthon....

Popular books

Book of Revelation - The Book of Revelation is the final book of the New Testament, and consequently is also the final book of the Christian Bible. Its title is derived from the first word of the Koine Greek text: apok...
Book of Genesis - account of the creation of the world, the early history of humanity, Israel's ancestors and the origins...
Gospel of Matthew - The Gospel According to Matthew is the first book of the New Testament and one of the three synoptic gospels. It tells how Israel's Messiah, rejected and executed in Israel, pronounces judgement on ...
Michelin Guide - Michelin Guides are a series of guide books published by the French tyre company Michelin for more than a century. The term normally refers to the annually published Michelin Red Guide , the oldest...
Psalms - The Book of Psalms , commonly referred to simply as Psalms , the Psalter or "the Psalms", is the first book of the Ketuvim , the third section of the Hebrew Bible, and thus a book of th...
Ecclesiastes - Ecclesiastes is one of 24 books of the Tanakh , where it is classified as one of the Ketuvim . Originally written c. 450–200 BCE, it is also among the canonical Wisdom literature of the Old Tes...
The 48 Laws of Power - non-fiction book by American author Robert Greene. The book...

Popular television series

The Crown (TV series) - historical drama web television series about the reign of Queen Elizabeth II, created and principally written by Peter Morgan, and produced by Left Bank Pictures and Sony Pictures Tel...
Friends - American sitcom television series, created by David Crane and Marta Kauffman, which aired on NBC from September 22, 1994, to May 6, 2004, lasting ten seasons. With an ensemble cast sta...
Young Sheldon - spin-off prequel to The Big Bang Theory and begins with the character Sheldon...
Modern Family - American television mockumentary family sitcom created by Christopher Lloyd and Steven Levitan for the American Broadcasting Company. It ran for eleven seasons, from September 23...
Loki (TV series) - upcoming American web television miniseries created for Disney+ by Michael Waldron, based on the Marvel Comics character of the same name. It is set in the Marvel Cinematic Universe, shar...
Game of Thrones - American fantasy drama television series created by David Benioff and D. B. Weiss for HBO. It...
Shameless (American TV series) - American comedy-drama television series developed by John Wells which debuted on Showtime on January 9, 2011. It...

AES instruction set

x86 architecture processors

Instructions

Intel

AMD

Hardware acceleration in other architectures

Supporting x86 CPUs

ARM architecture

Other architectures

Performance

Supporting software