# Cryptography Qualcomm Linux Security offering includes support for both hardware and software-based cryptography. The key capabilities include: - A register and bus access manager with direct memory-based access. - Interfaces to the cryptographic hardware. - The Linux kernel crypto driver (qcrypto) provides access to the hardware cryptography independent of trusted applications. - The Qualcomm TEE provides the hardware and software crypto application programming interfaces (APIs) to the trusted applications. Qualcomm TEE supports the following cryptographic algorithms: | Algorithm | Hardware | Software | | --- | --- | --- | | Hash | SHA-1/SHA-256 | | | Symmetric cipher | | | | MAC | AES-CMAC | Hash-based message authentication (HMAC) | | RNG | HRNG | – | | HMAC | HMAC-SHA-1/SHA-256 | HMAC-SHA-1/SHA-224/SHA-256/SHA-384/SHA-512 | | Asymmetric cipher | – | | ## Inline crypto engine The inline crypto engine (ICE) is designed for a high throughput cryptographic encryption of the storage data. ICE supports: - AES 128/AES 256 ECB/XTS - Multiple crypto streams to meet high throughput - Multiple AES cores per crypto stream - Provision of 32 software configurable keys - Capability to enable symmetric and asymmetric operations ## Next steps - To learn about the next security feature, see [Key management](https://docs.qualcomm.com/doc/80-70018-11/topic/key-management.html#key-management). - To learn about TrustZone and security framework, see [Security architecture](https://docs.qualcomm.com/doc/80-70018-11/topic/architecture.html#architecture). - To learn about APIs that can be used to interact with Linux and hardware, see [Security APIs](https://docs.qualcomm.com/doc/80-70018-11/topic/interfaces.html#interfaces). Last Published: Apr 10, 2025 [Previous Topic Security features](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/features.md) [Next Topic Key management](https://docs.qualcomm.com/bundle/publicresource/80-70018-11/topics/key-management.md)