lightweight cryptography
play

Lightweight Cryptography Mission Accomplished? Peter Rombouts - PowerPoint PPT Presentation

Nov 22, 2023 •263 likes •478 views

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013 Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective

  1. Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013

  2. Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective Business perspective Examples Evaluation Next? PUBLIC 2 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  3. Introduction Why Lightweight Cryptography? RFID tags – Small transponders, command-reply interrogation by a reader – Passively powered by reader field (not always) What if… … cryptography was possible on these devices ? – Applications ? – Technical constraints ? PUBLIC 3 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  4. Introduction Applications Luxury Goods Anti-counterfeiting Privacy Untraceability Perishable Goods Quality monitoring Storage Warranty Certificates PUBLIC 4 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  5. Introduction Technical constraints Cost of RFID tag – RFID market is cost driven – Cost determined by • Area of tag (GE) • Silicon process technology • Assembly Read range – Application specific requirement – Read range determined by • Power consumption • Operating Frequency Transaction time – Application specific requirement – Transaction time determined by • Clock speed & Memory access Robustness against attacks PUBLIC 5 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  6. Progress Algorithms & Implementations 9000 8000 AES (128/128) PRESENT (80/64) 7000 mCrypton (64/64) 6000 Gate Count KATAN (80/32-64) 5000 HIGHT (64/64) 4000 PUFFIN (128/64) 3000 TWINE (80/64) LED (64/64) 2000 KLEIN (80/64) 1000 PICCOLO (80/64) 0 2000 2004 2008 2012 PUBLIC 6 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  7. Progress Algorithms & Implementations 1400 AES (128/128) 1200 Latency (cycles/block) PRESENT (80/64) 1000 mCrypton (64/64) KATAN (80/32-64) 800 HIGHT (64/64) 600 PUFFIN (128/64) TWINE (80/64) 400 LED (64/64) 200 KLEIN (80/64) PICCOLO (80/64) 0 2000 2004 2008 2012 PUBLIC 7 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  8. Progress Algorithms & Implementations 9000 8000 AES (128/128) PRESENT (80/64) 7000 mCrypton (64/64) 6000 Gate Count KATAN (80/32-64) 5000 HIGHT (64/64) 4000 PUFFIN (128/64) 3000 TWINE (80/64) LED (64/64) 2000 KLEIN (80/64) 1000 PICCOLO (80/64) 0 0 250 500 750 1000 1250 Latency (cycles/block) PUBLIC 8 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  9. Progress Standardization: ISO/IEC 29192 ISO/IEC 29192: Information technology – Security techniques – Lightweight cryptography – Part 1: General PUBLISHED • Security requirements, • Classification requirements • Implementation requirements PUBLISHED – Part 2: Block ciphers • PRESENT: block size of 64 bits and a key size of 80 or 128 bits; • CLEFIA: block size of 128 bits and a key size of 128, 192 or 256 bits. PUBLISHED – Part 3: Stream ciphers • Enocoro: key size of 80 or 128 bits; • Trivium: key size of 80 bits. – Part 4: Mechanisms using asymmetric techniques • Under Development PUBLIC 9 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  10. Progress Standardization: EPC Global EPC Gen-2 UHF RFID Protocol REVIEW – For Communications at 860 MHz – 960 MHz – Version 2.0.0 New Commands – Security – Challenge – KeyUpdate – Authenticate – TagPrivilege – AuthComm – ReadBuffer – SecureComm – Untraceable Commands – File Management – FileOpen – FilePrivilege – FileList – FileSetup Mirrored in ISO/IEC 18000-63 PUBLIC 10 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  11. Progress Standardization: EPC Global Interrogator Interrogator Tag Tag (Cryptographic Suite) (Standard) (Standard) (Cryptographic Suite) Air interface & Commands Interrogator processing: Message construction Message – Defined by EPC Authenticate Message Global Message Tag processing: - Message processing - Response construction Response IPReply (Done) Response Cryptographic Response 2 step Interrogator processing: interro- - Response processing functionality gator - Message construction authen- Message tication – Defined by Authenticate Message ISO/IEC 29167 Message Tag processing: IPReply (Busy) - Message processing - Response construction Response IPReply (Done) Response State machine Response – Each standard Interrogator processing: Response processing EPC Air Interface Authentication Protocol / SecureComm PUBLIC 11 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  12. Progress Standardization: ISO/IEC 29167 ISO/IEC 29167 : Information technology – Automatic identification and data capture techniques – Part 1: General PUBLISHED – Part 10: AES-128 (CD) – Part 11: Present 80 (CD) – Part 12: ECC-DH (CD) – Part 13: Grain-128A (WD) – Part 14: AES-OFB (WD) – Part 15: XOR (WD) – Part 16: ECDSA ECDH (CD) – Part 17: Crypto GPS (CD) – Part 1x: HB2 (NWIP) – Part 1x: RAMON (NWIP) PUBLIC 12 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  13. Lightweight Cryptography YES Did it deliver on its promise? NXP UCODE Crypto PRESENT-80 crypto core – ISO 29192-2 compliant – Only Tag Authentication Silicon available Chip size 0.7 mm2 I2C interface 4kb memory Also an ECC version PUBLIC 13 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  14. Lightweight Cryptography YES Did it deliver on its promise? PASTEUR Sensor Platform NXP UCODE I2C Sensor: MIST 1431 (RH, T, light)  SEN 300 LPC 1114 Batteries (only for sensor) Single chip solution PUBLIC 14 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  15. Lightweight Cryptography MAYBE Unsolved issues Applications require more than just the crypto core ! Protocol: Randomness Device: Secure Storage Robustness: Countermeasures PUBLIC 15 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  16. Lightweight Cryptography New directions Countermeasures – Currently: add-on – Future: Algorithms designed to be protected Other primitives – Hash, Public Key Low-latency – Lightweight primitives useful for other applications? – Ultra-high speed applications – Some algorithms better than others PUBLIC 16 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  17. Low-Latency Cryptography Applications When response time is critical – Solid state disk – Network – Real time When clock frequency is limited – FPGA Energy efficiency – Wireless sensors – Batteries PUBLIC 17 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  18. Low-Latency Cryptography Evaluation results 400 350 AES (128/128) Gate Count (kGE) 300 PRESENT (80-128/64) 250 mCrypton (64-96-128/64) MINI-AES (64/64) 200 NOEKEON (128/128) 150 LED (64-128/64) 100 KLEIN (80-96-128/64) PRINCE (128/64) 50 0 0 10 20 30 40 50 Latency (ns) PUBLIC 18 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  19. Conclusions Lightweight Cryptography A lot of progress has been made – Algorithms & Implementations – Eco-system: Standards It has been integrated into products – Focus on Tag Authentication – Inclusion of sensors Some unsolved issues New applications emerging – Low-latency Cryptography There is still a lot to be explored ! PUBLIC 19 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  20. PUBLIC 20 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and UTwente d UT t Overview Lightweight cryptography - state of the art Comparison Standard vs. Lightweight Comparison Standard vs. Lightweight

599 views • 39 slides
On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1 AIST, Japan Kolkata, India (16 November 2018) 1 / 38 Table of contents 1 Introduction 2 Lightweight Crypto Stack for Circuit/RAM Size Requirement

670 views • 38 slides
Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world crypto and privacy Sibenik, Croatia - June 15 2018 Outline Symmetric lightweight primitives Most used cryptanalysis Impossible

1.31k views • 76 slides
Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors Thanks to the teams of KATAN, SPONGENT, PRINCE, FIDES Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 1 of 33 Summer

590 views • 45 slides
The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work with Alex Biryukov November 18, 2017 Cryptacus Workshop Taken from a document writen originally in English. The programming of billions of processors

903 views • 75 slides
NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance Performance of State-of-the-Art Cryptography on ARM-based Microprocessors Hannes Tschofenig & Manuel Pegourie-Gonnard (Hannes.Tschofenig@arm.com,

509 views • 40 slides
PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST Alexan Alexandre dre Adomn Adomnicai, icai, cryptograph cryptography y expert expert at at Truste Trusted d Obje Objects cts will will

174 views • 3 slides
Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St ephanie Kerckhof, Fran cois Durvaux, C edric Hoquet, David Bol, Fran cois-Xavier Standaert CHES 2012 September 2012 UCL Crypto Group

931 views • 49 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing Intelligence (IAI), TCG CREST International Crypto-Webniar 2020 Aug 30, 2020 N. Datta (IAI, TCG CREST) Lightweight Crypto and Classification of

1.62k views • 98 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku University, Japan) Atsuki Nagao (Ochanomizu University, Japan) Kazumasa Shinagawa (Tokyo Tech / AIST, Japan) 1 2 3 4 5 6 Material 7 Agenda 1.

1.3k views • 38 slides
On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS Innovation Labs December 11, 2017 SUMANTA SARKAR Lightweight Cryptography Internet of Things / Connected Cars Internet of things (IoT): Network of

786 views • 45 slides
Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert Staples STVM/CSD/NIST A perspective: cryptography evolves very fast to provide security in cyberspace Emerging crypto technologies - lightweight crypto

199 views • 17 slides
The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will revolutionise the international high-rise construction industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight

417 views • 12 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
ESEVO Quality and Simplicity Bernhard Frmel based on slides by Hermann Kopetz. - Institute

ESEVO Quality and Simplicity Bernhard Frmel based on slides by Hermann Kopetz. - Institute

ESEVO Quality and Simplicity Frmel ESEVO Quality and Simplicity Bernhard Frmel based on slides by Hermann Kopetz. - Institute of Computer Engineering Vienna University of Technology - 182.722 Embedded Systems Engineering LU October,

607 views • 48 slides
Software Product Line Engineering Processes and SPL Organizational Issues SPI/SPA Tony

Software Product Line Engineering Processes and SPL Organizational Issues SPI/SPA Tony

Software Product Line Engineering Processes and SPL Organizational Issues SPI/SPA Tony Gorschek - tony.gorschek@gmail.com Tony Gorschek Engineer / Problem Solver / Researcher - PhD (Tekn. Dr.) Software Engineering, B.Sc. Business - 10+

490 views • 34 slides
Software and the economy The economies of ALL developed nations are dependent on software.

Software and the economy The economies of ALL developed nations are dependent on software.

Summary Software if engineered d consists of products at various levels of abstraction, ranging from code over designs to requireme ments. Each product is useful ONLY, if stakeholde ders (people, roles) ) are defined d using

382 views • 21 slides
PH ESE seminar 26/05/2009 26/05/2009 Rui de Oliveira 1 Electronic industry heavily depend on

PH ESE seminar 26/05/2009 26/05/2009 Rui de Oliveira 1 Electronic industry heavily depend on

PH ESE seminar 26/05/2009 26/05/2009 Rui de Oliveira 1 Electronic industry heavily depend on PCBs and surprisingly little literature exist on reliability assessments. Most of PCB books address production techniques and not the

1.02k views • 58 slides
10.1 Basic definitions A B" failure

10.1 Basic definitions A B" failure

10.1 Basic definitions A B" failure )7"-.">.-99$4%-'?$"'$&-C);>("$D&)')%$*"'@"-"7@7%$E F6&$":($G>$.9@";:":-)?>($7"E$-7>($7"%&$" reliability

512 views • 20 slides
Vancouver SecSig, (ISC)2, and ISSA Vancouver Chapters Its a Cloudy Day British Columbia

Vancouver SecSig, (ISC)2, and ISSA Vancouver Chapters Its a Cloudy Day British Columbia

Vancouver SecSig, (ISC)2, and ISSA Vancouver Chapters Its a Cloudy Day British Columbia January 2 1 , 2 0 1 5 Welcome Agenda Time Topic Speaker 8:30 8:45 Welcome & Review Days Agenda Glen Bruce 8:45 9:15 ISO 27000

178 views • 15 slides
Requirement s Engineering in & f or Net worked Organisat ions Olly Got el Dept . Comput er

Requirement s Engineering in & f or Net worked Organisat ions Olly Got el Dept . Comput er

Requirement s Engineering in & f or Net worked Organisat ions Olly Got el Dept . Comput er Science Cit y Universit y London olly@soi.cit y.ac.uk ht t p:/ / www.soi.cit y.ac.uk/ homes/ olly Overview... Charact erist ics of net worked

438 views • 14 slides
Solvers for O(N) Electronic Structure in the Strong Scaling Limit with Charm++ Nicolas Bock

Solvers for O(N) Electronic Structure in the Strong Scaling Limit with Charm++ Nicolas Bock

Solvers for O(N) Electronic Structure in the Strong Scaling Limit with Charm++ Nicolas Bock Matt Challacombe Theoretical Division Los Alamos National Laboratory Laxmikant V. Kal Parallel Programming Laboratory University of Illinois at

471 views • 20 slides

More recommend