ecc is ready for rfid a proof in silicon
play

ECC is Ready for RFID A Proof in Silicon RFIDsec 08 Presentation - PowerPoint PPT Presentation

Jul 24, 2023 •336 likes •658 views

Institut f r Integrierte Systeme Integrated Systems Laboratory ECC is Ready for RFID A Proof in Silicon RFIDsec 08 Presentation Daniel Hein, daniel.hein@gmx.at Johannes Wolkerstorfer, Johannes.Wolkerstorfer@iaik.tugraz.at Norbert

  1. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECC is Ready for RFID – A Proof in Silicon RFIDsec 08 Presentation Daniel Hein, daniel.hein@gmx.at Johannes Wolkerstorfer, Johannes.Wolkerstorfer@iaik.tugraz.at Norbert Felber, felber@iis.ee.ethz.ch Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 1

  2. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Outline I Radio Frequency Identification (RFID) – Product piracy – Authentication Elliptic Curve Cryptography (ECC) – Montgomery point multiplication – Binary extension field arithmetic ECCon processor architecture – RFID front-end – ECC processor • Small datapath Approach • Specialized ALU Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 2

  3. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Outline II Digit level algorithms – Multiplication – Reduction – Multiplication with interleaved reduction Results – Timing, Area, Power – Comparison with related work Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 3

  4. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Radio Frequency Identification Rapid automated item identification Barcode replacement Computer X-ray vision – No line of sight – No optical scanning RFID Tag – Antennae + IC – Powered by EM field Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 4

  5. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Product Piracy Causes considerable economic damage Counterfeits inserted in legitimate supply chain RFID tags – Alleviate problem – Easy to clone Cryptography – Authentication Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 5

  6. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Elliptic Curve Cryptography I Public-key cryptography – Short key => Small hardware footprint Authentication with digital signature – ECDSA Security depends on point multiplication Point multiplication – scalar • point on elliptic curve – Non-invertible Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 6

  7. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Elliptic Curve Cryptography II Point multiplication – Point addition – Point doubling – Montgomery point ladder algorithm Side channel attack resistance – Timing based attacks: MPLA – Simple power analyses attacks: MPLA – Differential power analyses attacks: ECDSA Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 7

  8. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Binary Extension Field Arithmetic Elliptic Curve defined on finite field Finite Fields – Fixed size elements Binary extension field – Elements = binary polynomials – Addition = XOR Required Operations – Addition – Multiplication – Reduction Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 8

  9. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Prerequisites of an RFID application Small die area – 15000 gate equivalents Minuscule power consumption – 15μA available mean current Constant power consumption – “Accidental” load modulation Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 9

  10. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECCon Top Level Architecture RFID front end – ISO-18000-3-1 compliant – Air Interface • Power supply • Clock generation • Signal modulation – RART • Receive: bit stream to byte • Send: byte to bit stream – RFID Control Unit (RCU) • Communication protocol • Manages ECC processor Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 10

  11. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECC Processor Architecture I Implements point multiplication – Fixed 163 bit NIST curve Supports two modes – RFID – Stand alone Interface – two-phase full handshake – 8 bit wide Control unit – hardwired FSM hierarchy Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 11

  12. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Low Power, Small Area ALU Architectures Bit-serial multiplier 163x6 RAM C – current state of the art o n I t – 2x163 = 326 bits ALU storage O r o • Lion's share of power used for l 163x1 Multiplier clocking the storage 16-bit datapath 64x16 – Used for ISE [GK03a] C RAM o – Conceptually 48-bit ALU storage n I t O • More power for computation r o 16x16 – Total power consumption smaller l Mult. – Requires digit based algorithms Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 12

  13. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Arithmetic Logic Unit 16x16 GF(2) multiplier 2 Register input selection units 2 16-bit adders (XOR) Registers – 32-bit accumulator – interleaved reduction • 15-bit MC • 13-bit RC – clock gated Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 13

  14. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Word Size Selection 12 A*C*P A*C*P 2 10 A*C 2 *P A*C 2 *P 2 8 6 4 2 0 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 Bit-width Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 14

  15. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Comba Multiplication Two possible digit ✳ B[2] B[1] B[0] A[2] A[1] A[0] multiplication algorithms – Operand scanning form B[0]A[0] – Product scanning form B[0]A[1] B[1]A[0] Product Scanning Form B[1]A[1] – A.k.a Comba Multiplication B[0]A[2] – Computes result one result B[2]A[0] digit at the time B[2]A[1] – Optimal operand order B[1]A[2] minimizes memory access B[2]A[2] P[5] P[4] P[3] P[2] P[1] P[0] Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 15

  16. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Modular Reduction in GF(2 163 ) Multiplication of 2 163-bit elements produces a 325-bit result: a(z)*b(z)=c(z); deg(c(z))=325 Common residue: c(z) ≡ c(z) (mod f(z)) – f(z) = z 163 +z 7 +z 6 +z 3 +1... irreducible polynomial The common residue is limited in size to 163 bits The common residue is the remainder of a long division by f(z) Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 16

  17. Institut f ü r Integrierte Systeme Integrated Systems Laboratory An Alternate Reduction Method c H0 c L0 324 163 162 0 ⊕ c H1 c L1 c 1 =c H0 *r 168 163 162 0 ⊕ c L2 c 2 =c H1 *r 12 0 c =c L0 +c L1 +c L2 c 162 0 c(z)=c 2m-2 z 2m-2 +...+c m z m +c m-1 z m-1 +...+c 1 z+c 0 ≡ (c 2m-2 z m-2 +...+c m )r(z)+c m-1 z m-1 +...+c 1 z+c 0 (mod f(z)), where the reduction polynomial r(z)=f(z)-z 163 =z 7 +z 6 +z 3 +1 Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 17

  18. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step I C[10] ACC H ACC L C L0 [10] C[10] Carry C H0 [0] L 175 163 162 160 MC RC empty empty Computation of the first 10 digits of the product 11 th digit (C[10]) exceeds 163 bit limit – Stored in ACC L – ACC H contains multiplication carry for 12 th digit C[11] C[10] contains the first 13 bits of C H0 – Saved to Reduction Carry register RC Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 18

  19. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step II C[11] ACC H ACC L C[11] Carry C H0 [1] L C H0 [0] H 191 179 178 176 C H0 [0] L MC empty RC ACC H ACC L C[11] Carry C H0 [0] 178 163 C[11] Carry C H0 [1] L MC RC Upon computation of 12 th digit (C[11]) – Last 3 bits of C H0 [0] become available – C H0 [0] is restored in ACC L , lower 13 bit of C H0 [0] saved to RC – Multiplication carry is saved to Multiplication Carry register MC Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 19

  20. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step III ACC H ACC L (C H0 [0] *r(z)) H (C H0 [0] *r(z)) L 15 0 C[11] Carry C H0 [1] L MC RC Multiplication of 1 st digit of C H0 (C H0 [0]) with r(z) produces 1 st digit of C 1 (C L1 [0]) Addition of C L1 [0] to C L0 [0], Sum stored to result memory Exchange of reduction multiplication carry and nominal multiplication carry Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 20

  21. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step IV C[12] ACC H ACC L C[12] Carry C H0 [2] L C H0 [1] H 207 195 194 192 (C H0 [0] *r(z)) H C H0 [1] L MC RC The next digit of the product (C[12]) is computed – Requires several MAC operations Interleaved reduction steps I to IV repeat until all digits of C 1 are processed Process is repeated for C 2 – Single multiplication and addition Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 21

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

March 2, 2014 Monte Jade's RFID Seminar Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight RFID 4. Current Airport RFID Deployments 5. Atlanta International Airport Activity with IATA RFID

912 views • 35 slides
IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing Tag Oslo, 28 November 2007 IntelliSense RFID Workshop IntelliSense RFID RESEARCH PROJECT FOR TECHNOLOGY DEVELOPMENT WITHIN THE FIELDS OF RFID

788 views • 13 slides
The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio Frequency Identification Modern RFID Applications VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips

628 views • 29 slides
TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown & Blaine McDonnell Using RFID for Model Railroad Operations What is RFID? How does RFID Work? RFID Frequencies and Type of Tags

853 views • 25 slides
DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA Structure RFID Technology Applications in SPS-ALPHA architecture Part Identification Location Referencing 2 Why Space Solar No

241 views • 22 slides
Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin

Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin

Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin Advanced CMOS and analog . Embedded analog Embedded RF 28nm FDSOI 0.18um 65nm 0.5 um 0.25um 45nm 0.13um 1997 2001 2005 2009 2013

386 views • 23 slides
RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID - From Farm to Fork Strengthening SME competitive advantage through RFID implementation RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by the EU as part of the Competitiveness and Innovation

356 views • 9 slides
RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen sented ed b by: Francis Brown Bishop Fox www.bishopfox.com Agenda O V E R V I E W Qu Quic ick k Over erview ew RFID badge

883 views • 50 slides
Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT

Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT

Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT PROOF Modify it... Run a task that accesses MC PROOF Reading log files, resetting session, etc. Running the tasks from

679 views • 19 slides
Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development

Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development

Transformation of SMEs to be Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development Driving Productivity Plan 2 Agenda Industry Transformation Map 3 Ab Abou out Si Sing ngapor ore Pro roduc

431 views • 22 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2 WELCOME Transportation 3 Introduction The final link in the RFID program is the receiving of the project onto the project site. The producer

508 views • 30 slides
RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011, Corua, Spain RFID Primer RFID Primer Definition Radio frequency identification'' (RFID) means the use of electromagnetic radiating waves

729 views • 47 slides
Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based

Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based

Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based ed Hybri rid d Asset set Trac acking ing syst stem em Smart Sensing RFID Technology and Management Consultancy Every day, our work helps

579 views • 27 slides
Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and

Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and

Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and solutions for a smarter, more connected world. Silicon Labs REVENUE FOUNDED IN 1996 $868M $838M A leading provider of silicon, software $698M $769M and

624 views • 27 slides
Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT 15 TH November 2003 By Rakesh Kumar Wipro Technologies India Privacy Consumers Perspective Privacy can be defined as customers ability to

284 views • 17 slides
UX/UI What is UX and UI? UX Process User Research User Research Creating User

UX/UI What is UX and UI? UX Process User Research User Research Creating User

UX/UI What is UX and UI? UX Process User Research User Research Creating User Profiles (Personas) Competitive Analysis User Goals & Business Goals Information Architecture Wireframing & Interaction Design

1.01k views • 66 slides
Future Cryptographic Requirements from Mobile Applications Chris Mitchell, Kenny Paterson and

Future Cryptographic Requirements from Mobile Applications Chris Mitchell, Kenny Paterson and

Future Cryptographic Requirements from Mobile Applications Chris Mitchell, Kenny Paterson and Vaia Sdralia Information Security Group, Royal Holloway, University of London, Egham, Surrey, TW20 0EX, UK. Some Trends in Mobile Telecoms >

460 views • 5 slides
Privacy in Ubiquitous Computing Dagstuhl Retreat September 13, 2001 Marc Langheinrich ETH

Privacy in Ubiquitous Computing Dagstuhl Retreat September 13, 2001 Marc Langheinrich ETH

Privacy in Ubiquitous Computing Dagstuhl Retreat September 13, 2001 Marc Langheinrich ETH Zurich www.inf.ethz.ch/~langhein/ Contents Dagstuhl Retreat September 13, 2001 Why should someone bother? 10 Facts about Privacy Why

697 views • 32 slides
Overview and General Concepts 1 Dr. Loai Tawalbeh Computer Engineering Department Jordan

Overview and General Concepts 1 Dr. Loai Tawalbeh Computer Engineering Department Jordan

CPE 776:DATA SECURITY & CRYPTOGRAPHY Overview and General Concepts 1 Dr. Loai Tawalbeh Computer Engineering Department Jordan University of Science and Technology Jordan Dr. Loai Tawalbeh summer 2005 Announcements Textbook W.

358 views • 10 slides
ECC 2018 ECC 2018 Speakers Invited Speakers Autumn School Lecturers Divesh

ECC 2018 ECC 2018 Speakers Invited Speakers Autumn School Lecturers Divesh

ECC 2018 ECC 2018 Speakers Invited Speakers Autumn School Lecturers Divesh Aggarwal, National University of Singapore Tung Chou, Osaka University Sherman Chow, Chinese University of Hong Kong David Jao, University of

720 views • 3 slides
Fundamental Ellip.c Curve Cryptography Algorithms

Fundamental Ellip.c Curve Cryptography Algorithms

Fundamental Ellip.c Curve Cryptography Algorithms draft-mcgrew-fundamental-ecc-02 mcgrew@cisco.com kmigoe@nsa.gov Ellip.c Curve Cryptography Alterna.ve to integer-based Key

384 views • 19 slides
Single Base Modular Multiplication for Efficient Hardware RNS Implementations of ECC Karim Bigou

Single Base Modular Multiplication for Efficient Hardware RNS Implementations of ECC Karim Bigou

Single Base Modular Multiplication for Efficient Hardware RNS Implementations of ECC Karim Bigou and Arnaud Tisserand CNRS, IRISA, INRIA Centre Rennes - Bretagne Atlantique and Univ. Rennes 1 CHES 2015, Sept. 13 16 Karim Bigou and Arnaud

1.13k views • 30 slides
HyPoRes: An Hybrid Representation System for ECC P. Martins 1 J. Marrez 2 J.-C. Bajard 2 L. Sousa

HyPoRes: An Hybrid Representation System for ECC P. Martins 1 J. Marrez 2 J.-C. Bajard 2 L. Sousa

HyPoRes: An Hybrid Representation System for ECC P. Martins 1 J. Marrez 2 J.-C. Bajard 2 L. Sousa 1 1 INESC-ID, Instituto Superior Tcnico, Univ. Lisboa 2 Sorbonnes Universit, CNRS, LIP6, Paris, France 26th IEEE Symposium on Computer Arithmetic

704 views • 28 slides

More recommend