lightweight cryptography
play

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi - PowerPoint PPT Presentation

Jul 29, 2023 •123 likes •590 views

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors Thanks to the teams of KATAN, SPONGENT, PRINCE, FIDES Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 1 of 33 Summer

  1. Lightweight Cryptography - Hardware Perspective - Miroslav Kne ž evi ć NXP Semiconductors Thanks to the teams of KATAN, SPONGENT, PRINCE, FIDES Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 1 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  2. Lightweight Cryptography Digital Continuum Hardware Perspective ~kb/s, μ W ~Gb/s, MW Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 2 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  3. Lightweight Cryptography Typical T rade-offs in Crypto Hardware Perspective         Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 3 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  4. Lightweight Cryptography Typical T rade-offs in Crypto Hardware Perspective      Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 3 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  5. Lightweight Cryptography A bit of History Hardware Perspective Block Ciphers 4500 4050 SEA 3600 3150 KASUMI Area (GE) HIGHT 2700 AES PUFFIN TEA DES mCrypton CLEFIA 2250 HUMMINGBIRD DESXL KLEIN 1800 DESL TWINE MIBS 1350 PICCOLO PRESENT GOST (FK) 900 LED LED (FK) KATAN PICCOLO (FK) 450 PRINTcipher KATAN (FK) 0 1970 1977 1984 1991 1998 2005 2012 Year Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 4 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  6. Lightweight Cryptography A bit of History Hardware Perspective Block Ciphers Stream Ciphers 4500 4050 SEA 3600 MICKEY 3150 KASUMI Area (GE) HIGHT 2700 TRIVIUM AES PUFFIN TEA DES mCrypton CLEFIA 2250 HUMMINGBIRD DESXL KLEIN 1800 DESL TWINE GRAIN MIBS 1350 PICCOLO PRESENT GOST (FK) 900 LED LED (FK) KATAN PICCOLO (FK) 450 PRINTcipher KATAN (FK) 0 1970 1977 1984 1991 1998 2005 2012 Year Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 4 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  7. Lightweight Cryptography A bit of History Hardware Perspective Block Ciphers Stream Ciphers Hash Functions 4500 4050 SEA 3600 MICKEY 3150 KASUMI Area (GE) HIGHT ARMADILLO 2700 TRIVIUM AES PUFFIN KECCAK TEA DES mCrypton H-PRESENT CLEFIA 2250 HUMMINGBIRD DESXL KLEIN 1800 DESL DM-PRESENT TWINE GRAIN MIBS 1350 QUARK PHOTON PICCOLO PRESENT GOST (FK) 900 LED SPONGENT LED (FK) KATAN PICCOLO (FK) 450 PRINTcipher KATAN (FK) 0 1970 1977 1984 1991 1998 2005 2012 Year Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 4 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  8. Lightweight Cryptography Block Cipher - Hardware Perspective Hardware Perspective AES example: Round-Based Implementation Area: ~ 15,000 GE Latency: 10 cycles Control Block size Key size Memory 128-bits 128-bits Round function Key schedule Datapath Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 5 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  9. Lightweight Cryptography Block Cipher - Hardware Perspective Hardware Perspective AES example: Serial Implementation Area: ~ 2,400 GE Latency: 226 cycles Control Block size Key size Memory 128-bits 128-bits Round Key function schedule Datapath Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 5 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  10. Lightweight Cryptography Block Cipher - Hardware Perspective Hardware Perspective 90 - 95% Round function Key size ≥ 80 bits Key Memory schedule Control logic Block size ≥ 32 bits MINIMIZE! BALANCE! Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 6 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  11. Lightweight Cryptography Block Cipher - Hardware Perspective Hardware Perspective Key size ≥ 80 bits Block size ≥ 32 bits Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 6 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  12. Lightweight Cryptography Block Cipher - Hardware Perspective Hardware Perspective Key size ≥ 80 bits Block size ≥ 32 bits Block size ≥ 32 bits Arbitrary Key Fixed Key Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 6 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  13. Lightweight Cryptography KATAN - Minimalistic Design Hardware Perspective Round function and Control logic merged! 0 ! 7 ! 6 ! 4 ! 2 ! L 1 ! T ! x 5 ! x 4 ! x 3 ! x 2 ! x 1 ! IR ! k a ! IR ! k b ! y 1 ! y 2 ! y 3 ! y 4 ! y 5 ! y 6 ! 79 ! 78 ! 60 ! 59 ! 49 ! 48 ! 12 ! 11 ! 1 ! 0 ! L 2 ! key_reg ! k a ! k b ! 462 GE Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 7 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  14. Lightweight Cryptography KATAN - Minimalistic Design Hardware Perspective Round function and Control logic merged! Expanded Key stored in silicon! 0 ! 7 ! 6 ! 4 ! 2 ! L 1 ! T ! x 5 ! x 4 ! x 3 ! x 2 ! x 1 ! IR ! k a ! IR ! k b ! y 1 ! y 2 ! y 3 ! y 4 ! y 5 ! y 6 ! L 2 ! Only 508 bits of Expanded Key! Avoid a weak key schedule: KTANTAN! 315 GE + 508 bits of ROM Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 7 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  15. Lightweight Cryptography PRESENT - Small and Scalable Hardware Perspective PRESENT -like Permutation Round-based Implementation ~ 1500 GE Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 8 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  16. Lightweight Cryptography PRESENT - Small and Scalable Hardware Perspective PRESENT -like Permutation Serial Implementation ~ 1000 GE Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 8 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  17. Lightweight Cryptography A Battle for a Single Gate Hardware Perspective KATAN LED UMC130 180nm synopsys synopsys ≥ 450 GE ≥ 700 GE Piccolo 130nm synopsys PRESENT ≥ 700 GE UMC180 IHP250 AMIS350 QUARK synopsys UMC180 ~1kGE synopsys cadence ≥ 1.4 kGE SPONGENT PHOTON UMC130 UMC180 synopsys synopsys ≥ 750 GE ≥ 850 GE Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 11 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  18. Lightweight Cryptography Fair Comparison - Mission (Im)possible? Hardware Perspective Spongent in 4 different techs NXP90 UMC130 UMC180 NANGATE45 U P T 3000 O 7 0 % D I F F E R E N C E ! 2250 2323 2071 2012 1950 1500 Area (GE) 1768 1728 1571 1256 1367 1329 1103 1060 868 738 1192 759 1340 918 737 750 521 88/80/8 128/128/8 0 160/160/16 224/224/16 256/256/16 Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 12 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  19. Lightweight Cryptography Fair Comparison - Mission (Im)possible? Hardware Perspective < 5 GE/sFF 6.25 GE/sFF 6.67 GE/sFF 7.67 GE/sFF NXP90 UMC130 UMC180 NANGATE45 Open Core Library! 8 6 Area (GE) 4 2 0 scan FF Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 13 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  20. Lightweight Cryptography Fair Comparison - Mission Possible? Hardware Perspective Fixed Benchmark: 45 nm Open Core NANGATE library, Cadence RTL Compiler, Original RTL Code. Spongent Photon Quark 4000 3000 3001 Area (GE) 2675 2000 2200 2323 2142 2070 1744 1741 1572 1394 1257 1067 869 1000 80/88 0 128 160 224 Hash Output 256 Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 14 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

  21. Lightweight Cryptography Typical T rade-offs in Crypto Hardware Perspective     Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 15 of 33 Summer School, Albena, Bulgaria, June 30-July 5, 2013.

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013 Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective

478 views • 20 slides
Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and UTwente d UT t Overview Lightweight cryptography - state of the art Comparison Standard vs. Lightweight Comparison Standard vs. Lightweight

599 views • 39 slides
On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1 AIST, Japan Kolkata, India (16 November 2018) 1 / 38 Table of contents 1 Introduction 2 Lightweight Crypto Stack for Circuit/RAM Size Requirement

670 views • 38 slides
Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world crypto and privacy Sibenik, Croatia - June 15 2018 Outline Symmetric lightweight primitives Most used cryptanalysis Impossible

1.31k views • 76 slides
The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work with Alex Biryukov November 18, 2017 Cryptacus Workshop Taken from a document writen originally in English. The programming of billions of processors

903 views • 75 slides
NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations &amp; Performance Performance of State-of-the-Art Cryptography on ARM-based Microprocessors Hannes Tschofenig &amp; Manuel Pegourie-Gonnard (Hannes.Tschofenig@arm.com,

509 views • 40 slides
PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST Alexan Alexandre dre Adomn Adomnicai, icai, cryptograph cryptography y expert expert at at Truste Trusted d Obje Objects cts will will

174 views • 3 slides
Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St ephanie Kerckhof, Fran cois Durvaux, C edric Hoquet, David Bol, Fran cois-Xavier Standaert CHES 2012 September 2012 UCL Crypto Group

931 views • 49 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing Intelligence (IAI), TCG CREST International Crypto-Webniar 2020 Aug 30, 2020 N. Datta (IAI, TCG CREST) Lightweight Crypto and Classification of

1.62k views • 98 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku University, Japan) Atsuki Nagao (Ochanomizu University, Japan) Kazumasa Shinagawa (Tokyo Tech / AIST, Japan) 1 2 3 4 5 6 Material 7 Agenda 1.

1.3k views • 38 slides
On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS Innovation Labs December 11, 2017 SUMANTA SARKAR Lightweight Cryptography Internet of Things / Connected Cars Internet of things (IoT): Network of

786 views • 45 slides
Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert Staples STVM/CSD/NIST A perspective: cryptography evolves very fast to provide security in cyberspace Emerging crypto technologies - lightweight crypto

199 views • 17 slides
The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will revolutionise the international high-rise construction industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight

417 views • 12 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp;

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &amp; http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Ontology-based Data Management Maurizio Lenzerini Dipartimento di Ingegneria Informatica

Ontology-based Data Management Maurizio Lenzerini Dipartimento di Ingegneria Informatica

Ontology-based Data Management Maurizio Lenzerini Dipartimento di Ingegneria Informatica Automatica e Gestionale Antonio Ruberti Semantic Days 2013 Business Intelligence and Semantics Stavanger, Norway, 28-30 May 2013 Framework for OBDM

711 views • 58 slides
Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat

Getting to DevOps with Docker Brian (bex) Exelbierd Software Engineer @ Red Hat Various Roles in IT since 1995 Programmer $ whoami Analyst @bexelbie Manager (Ops, Dev, Special Projects) Slides URL:

850 views • 48 slides
SQL Queries Principal form: desired attributes SELECT tuple v ariables | FROM

SQL Queries Principal form: desired attributes SELECT tuple v ariables | FROM

SQL Queries Principal form: desired attributes SELECT tuple v ariables | FROM range o v er relations condition ab out t.v.'s; WHERE Running example relation sc hema: Beers(name , manf) Bars(name , addr, license)

471 views • 20 slides
Marcel Dettling Institute for Data Analysis and Process Design Zurich University of Applied

Marcel Dettling Institute for Data Analysis and Process Design Zurich University of Applied

Applied Time Series Analysis FS 2011 Week 14 Marcel Dettling Institute for Data Analysis and Process Design Zurich University of Applied Sciences marcel.dettling@zhaw.ch http://stat.ethz.ch/~dettling ETH Zrich, May 30, 2011 Marcel

533 views • 24 slides
T he t it l e g o t g a rb l d Successful Locali(z)(s)ation

T he t it l e g o t g a rb l d Successful Locali(z)(s)ation

T he t it l e g o t g a rb l d Successful Locali(z)(s)ation Kentaro Takiguchi Droidcon Berlin 2016 @rejasupotaro Introduction Introduction &gt; Real World Localizlation &gt; Localization in Development &gt;

1.43k views • 112 slides
CSE 258 Lecture 2 Web Mining and Recommender Systems Supervised learning Regression

CSE 258 Lecture 2 Web Mining and Recommender Systems Supervised learning Regression

CSE 258 Lecture 2 Web Mining and Recommender Systems Supervised learning Regression Supervised versus unsupervised learning Learning approaches attempt to model data in order to solve a problem Unsupervised learning approaches find

668 views • 47 slides
UNCOUNTABLE nouns only have one form; e.g. work, love, food, intelligence, water, information. Most

UNCOUNTABLE nouns only have one form; e.g. work, love, food, intelligence, water, information. Most

What s in a name? More than you imagine... English nouns can be countable or uncountable COUNTABLE nouns have a singular and plural form e.g. one book / three books, one person / three people With countable nouns we can use a/an or some e.g. I

210 views • 18 slides
TENANT USER LIABILITY PROGRAM Insured: Chicago Park District -TULIP Underwritten by: One Beacon

TENANT USER LIABILITY PROGRAM Insured: Chicago Park District -TULIP Underwritten by: One Beacon

TENANT USER LIABILITY PROGRAM Insured: Chicago Park District -TULIP Underwritten by: One Beacon Insurance Co. through Atlantic Specialty Ins. Co. Rated A - XI NAIC # by. by A.M.Best a member company. Administered by: Rolei Financial Services

422 views • 14 slides

More recommend