xkcp internals
play

XKCP internals Gilles Van Assche 1 1 STMicroelectronics SCA workshop - PowerPoint PPT Presentation

Jan 01, 2024 •449 likes •892 views

XKCP internals Gilles Van Assche 1 1 STMicroelectronics SCA workshop ibenik, Croatia, June 2019 Based on joint work with Ronny Van Keer 1 / 19 Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 2 / 19

  1. XKCP internals Gilles Van Assche 1 1 STMicroelectronics SCA workshop Šibenik, Croatia, June 2019 Based on joint work with Ronny Van Keer 1 / 19

  2. Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 2 / 19

  3. Introduction Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 3 / 19

  4. Introduction What is the XKCP? Previously known as the Keccak Code Package… Repository of implementations of KangarooTwelve, Ketje, Keyak, Kravatte, … Xoodoo, Xoodyak, Xoofff, Xoofff-SANE, … 4 / 19 Keccak- p [ 200 to 1600 ] , SHA-3, (c)SHAKE, KMAC, … now eXtended KCP

  5. Introduction What is the XKCP? Previously known as the Keccak Code Package… Repository of implementations of KangarooTwelve, Ketje, Keyak, Kravatte, … Xoodoo, Xoodyak, Xoofff, Xoofff-SANE, … 4 / 19 Keccak- p [ 200 to 1600 ] , SHA-3, (c)SHAKE, KMAC, … now eXtended KCP

  6. Introduction What is the XKCP? Previously known as the Keccak Code Package… Repository of implementations of KangarooTwelve, Ketje, Keyak, Kravatte, … Xoodoo, Xoodyak, Xoofff, Xoofff-SANE, … … now eXtended KCP 4 / 19 Keccak- p [ 200 to 1600 ] , SHA-3, (c)SHAKE, KMAC,

  7. Introduction What is the XKCP? Previously known as the Keccak Code Package… Repository of implementations of KangarooTwelve, Ketje, Keyak, Kravatte, … Xoodoo, Xoodyak, Xoofff, Xoofff-SANE, … 4 / 19 Keccak- p [ 200 to 1600 ] , SHA-3, (c)SHAKE, KMAC, … now eXtended KCP

  8. Introduction Where to fjnd it https://github.com/XKCP/XKCP 5 / 19

  9. Inside the XKCP Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 6 / 19

  10. Inside the XKCP focus on user bulk data processing permutation tailored implementations unit tests limited scope to optimize focus on developer Specifjc pointers and arithmetic one implementation e.g., message queue easy to use Generic A layered approach 7 / 19 Mode Hashing MAC PRNG Auth. Enc. Construction Sponge Duplex Primitive Keccak- p [200] Keccak- p [1600] Xoodoo

  11. Inside the XKCP focus on user bulk data processing permutation tailored implementations unit tests limited scope to optimize focus on developer Specifjc pointers and arithmetic one implementation e.g., message queue easy to use Generic A layered approach 7 / 19 Mode Hashing MAC PRNG Auth. Enc. Construction Sponge Duplex Primitive Keccak- p [200] Keccak- p [1600] Xoodoo

  12. Inside the XKCP focus on user bulk data processing permutation tailored implementations unit tests limited scope to optimize focus on developer Specifjc pointers and arithmetic one implementation e.g., message queue easy to use Generic A layered approach 7 / 19 Mode Hashing MAC PRNG Auth. Enc. Construction Sponge Duplex Primitive Keccak- p [200] Keccak- p [1600] Xoodoo

  13. Inside the XKCP Generic bulk data processing permutation tailored implementations unit tests limited scope to optimize focus on developer Specifjc pointers and arithmetic one implementation e.g., message queue easy to use focus on user 7 / 19 A layered approach Mode Hashing MAC PRNG Auth. Enc. Construction Sponge Duplex SnP Primitive Keccak- p [200] Keccak- p [1600] Xoodoo

  14. Inside the XKCP Parallel processing SnP = State and Permutation PlSnP = Parallel States and Permutations 8 / 19 Mode KangarooTwelve Deck-SANE Deck-WBC Construction Parallel Sponges Farfalle Primitive 4× Keccak- p [1600] 8× Keccak- p [1600] 16× Xoodoo

  15. Inside the XKCP Parallel processing PlSnP = Parallel States and Permutations SnP = State and Permutation 8 / 19 Mode KangarooTwelve Deck-SANE Deck-WBC Construction Parallel Sponges Farfalle PlSnP Primitive 4× Keccak- p [1600] 8× Keccak- p [1600] 16× Xoodoo

  16. Below SnP and PlSnP Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 9 / 19

  17. Below SnP and PlSnP Multiple implementations Assumption: the state representation is opaque! 10 / 19 SnP or PlSnP Keccak- p [1600] 2× Keccak- p [1600] Xoodoo 4× Xoodoo opt32 fallback opt32 fallback opt64 AVX2 ARMv6M AVX2 AVX2 AVX512 ARMv7M AVX512 AVX512 NEON ARMv7A NEON ARMv7M AVR8 ARMv8A

  18. Below SnP and PlSnP Multiple implementations Assumption: the state representation is opaque! 10 / 19 SnP or PlSnP Keccak- p [1600] 2× Keccak- p [1600] Xoodoo 4× Xoodoo opt32 fallback opt32 fallback opt64 AVX2 ARMv6M AVX2 AVX2 AVX512 ARMv7M AVX512 AVX512 NEON ARMv7A NEON ARMv7M AVR8 ARMv8A

  19. Below SnP and PlSnP Operations on the state initialize the state apply the permutation f XOR/overwrite bytes into the state extract bytes from the state and optionally XOR them 11 / 19

  20. Below SnP and PlSnP Declarations in KeccakP-1600-SnP.h : #define KeccakP1600_implementation “generic 64-bit optimized implementation” #define KeccakP1600_stateSizeInBytes 200 #define KeccakP1600_stateAlignment 8 Typical functions to be implemented (or macro’ed): KeccakP1600_Initialize KeccakP1600_AddBytes KeccakP1600_OverwriteBytes KeccakP1600_Permute_Nrounds KeccakP1600_ExtractBytes KeccakP1600_ExtractAndAddBytes 12 / 19 Example for Keccak- p [ 1600 ]

  21. Below SnP and PlSnP Declarations in KeccakP-1600-SnP.h : #define KeccakP1600_implementation “generic 64-bit optimized implementation” #define KeccakP1600_stateSizeInBytes 200 #define KeccakP1600_stateAlignment 8 Typical functions to be implemented (or macro’ed): KeccakP1600_Initialize KeccakP1600_AddBytes KeccakP1600_OverwriteBytes KeccakP1600_Permute_Nrounds KeccakP1600_ExtractBytes KeccakP1600_ExtractAndAddBytes 12 / 19 Example for Keccak- p [ 1600 ]

  22. Below SnP and PlSnP Declarations in KeccakP-1600-SnP.h : #define KeccakP1600_implementation “generic 64-bit optimized implementation” #define KeccakP1600_stateSizeInBytes 200 #define KeccakP1600_stateAlignment 8 Typical functions to be implemented (or macro’ed): KeccakP1600_Initialize KeccakP1600_AddBytes KeccakP1600_OverwriteBytes KeccakP1600_Permute_Nrounds KeccakP1600_ExtractBytes KeccakP1600_ExtractAndAddBytes 12 / 19 Example for Keccak- p [ 1600 ]

  23. Below SnP and PlSnP Declarations in KeccakP-1600-SnP.h : #define KeccakP1600_implementation “generic 64-bit optimized implementation” #define KeccakP1600_stateSizeInBytes 200 #define KeccakP1600_stateAlignment 8 Typical functions to be implemented (or macro’ed): KeccakP1600_Initialize KeccakP1600_AddBytes KeccakP1600_OverwriteBytes KeccakP1600_Permute_Nrounds KeccakP1600_ExtractBytes KeccakP1600_ExtractAndAddBytes 12 / 19 Example for Keccak- p [ 1600 ]

  24. Below SnP and PlSnP Declarations in KeccakP-1600-SnP.h : #define KeccakP1600_implementation “generic 64-bit optimized implementation” #define KeccakP1600_stateSizeInBytes 200 #define KeccakP1600_stateAlignment 8 Typical functions to be implemented (or macro’ed): KeccakP1600_Initialize KeccakP1600_AddBytes KeccakP1600_OverwriteBytes KeccakP1600_Permute_Nrounds KeccakP1600_ExtractBytes KeccakP1600_ExtractAndAddBytes 12 / 19 Example for Keccak- p [ 1600 ]

  25. Below SnP and PlSnP Fast loop optimization Specialized repeated application of some operations (optional) 13 / 19

  26. Below SnP and PlSnP Parallel operations on the states Optional fast loop optimization XOR blocks into state Parallel application of f Functions on all instances Functions on individual instances 14 / 19 0 … f f f 0 … f f f 0 f f f …

  27. Below SnP and PlSnP Parallel operations on the states Optional fast loop optimization XOR blocks into state Parallel application of f Functions on all instances Functions on individual instances 14 / 19 0 … f f f 0 … f f f 0 f f f …

  28. Below SnP and PlSnP Parallel operations on the states Optional fast loop optimization XOR blocks into state Parallel application of f Functions on all instances Functions on individual instances 14 / 19 0 … f f f 0 … f f f 0 f f f …

  29. Build system Outline 1 Introduction 2 Inside the XKCP 3 Below SnP and PlSnP 4 Build system 15 / 19

  30. Build system Making targets Making a library ( .a or .so ) make generic64/libXKCP.a make generic32/libXKCP.a make Skylake/libXKCP.a make ARMv7A/libXKCP.a make compact/libXKCP.a Extracting the source fjles make generic64/libXKCP.a .pack Running the unit tests make generic64/UnitTests UnitTests --SnP --KangarooTwelve --Xoofff And more: benchmarks, KeccakSum utility 16 / 19

  31. Build system Making targets Making a library ( .a or .so ) make generic64/libXKCP.a make generic32/libXKCP.a make Skylake/libXKCP.a make ARMv7A/libXKCP.a make compact/libXKCP.a Extracting the source fjles make generic64/libXKCP.a .pack Running the unit tests make generic64/UnitTests UnitTests --SnP --KangarooTwelve --Xoofff And more: benchmarks, KeccakSum utility 16 / 19

  32. Build system Making targets Making a library ( .a or .so ) make generic64/libXKCP.a make generic32/libXKCP.a make Skylake/libXKCP.a make ARMv7A/libXKCP.a make compact/libXKCP.a Extracting the source fjles make generic64/libXKCP.a .pack Running the unit tests make generic64/UnitTests UnitTests --SnP --KangarooTwelve --Xoofff And more: benchmarks, KeccakSum utility 16 / 19

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Windows 8 Heap Internals Windows 8 Heap Internals Windows 8 Heap Internals INTRODUCTION Windows 8

Windows 8 Heap Internals Windows 8 Heap Internals Windows 8 Heap Internals INTRODUCTION Windows 8

Windows 8 Heap Internals Windows 8 Heap Internals Windows 8 Heap Internals INTRODUCTION Windows 8 Heap Internals Who Chris Valasek (@nudehaberdasher) Sr. Research Scientist Coverity Tarjei Mandt (@kernelpool) Vulnerability

1.33k views • 91 slides
Roadmap for Section 4.3. Windows Process and Thread Internals Thread Block, Process Block Flow

Roadmap for Section 4.3. Windows Process and Thread Internals Thread Block, Process Block Flow

Unit OS4: Scheduling and Dispatch 4.3. Windows Process and Thread Internals Windows Operating System Internals - by David A. Solomon and Mark E. Russinovich with Andreas Polze Roadmap for Section 4.3. Windows Process and Thread Internals Thread

438 views • 15 slides
Debian Installer Internals Frans Pop DebConf 6, Oaxtepec, Mexico Frans Pop Debian Installer

Debian Installer Internals Frans Pop DebConf 6, Oaxtepec, Mexico Frans Pop Debian Installer

Introduction Installation methods Running the installer Debugging the installer Creating udebs Building installer images Debian Installer Internals Frans Pop DebConf 6, Oaxtepec, Mexico Frans Pop Debian Installer Internals Introduction

455 views • 32 slides
How GitWorks Git IsNotWhatYouThink Were going to talk aboutthe internals ofGit.

How GitWorks Git IsNotWhatYouThink Were going to talk aboutthe internals ofGit.

How GitWorks Git IsNotWhatYouThink Were going to talk aboutthe internals ofGit. Porcelain Commands gitadd gitcommit git push gitpull git branch gitcheckout git merge gitrebase

583 views • 30 slides
Secret Debian Internals Enrico Zini enrico@debian.org 25 February 2007 Enrico Zini

Secret Debian Internals Enrico Zini enrico@debian.org 25 February 2007 Enrico Zini

Secret Debian Internals Enrico Zini enrico@debian.org 25 February 2007 Enrico Zini enrico@debian.org Secret Debian Internals BTS Where to find it Source code: bzr branch http://bugs.debian.org/debbugs-source/mainline/ Data on merkel at

370 views • 16 slides
QEMU internals Chad D. Kersey January 28, 2009 Chad D. Kersey QEMU internals The basics

QEMU internals Chad D. Kersey January 28, 2009 Chad D. Kersey QEMU internals The basics

The basics Dynamic translation Basic Block Chaining The codebase Acknowledgments Questions QEMU internals Chad D. Kersey January 28, 2009 Chad D. Kersey QEMU internals The basics Dynamic translation Basic Block Chaining The codebase

456 views • 22 slides
1 Who am I / ? 2 IMA History and Goals 3 IMA Internals and Roadmap 4

1 Who am I / ? 2 IMA History and Goals 3 IMA Internals and Roadmap 4

Petko Manolov Konsulko Group petko.manolov@konsulko.com 1 Who am I / ? 2 IMA History and Goals 3 IMA Internals and Roadmap 4 Conclusion q Software engineer and long time Linux kernel hacker since 1995 q

210 views • 18 slides
Chrome OS Internals Josh Triplett josh@joshtriplett.org LinuxCon Europe 2014 Josh Triplett

Chrome OS Internals Josh Triplett josh@joshtriplett.org LinuxCon Europe 2014 Josh Triplett

Chrome OS Internals Josh Triplett josh@joshtriplett.org LinuxCon Europe 2014 Josh Triplett Chrome OS Internals LinuxCon Europe 2014 1 / 43 Overview Intro to Chrome OS Architecture of Chrome OS Verified boot and developer mode Security

1.39k views • 110 slides
QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete (April 8, 2019) Manolis Marazakis (maraz@ics.forth.gr) Institute of Computer Science (ICS) Foundation for Research and Technology Hellas

412 views • 30 slides
QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete (April 18, 2016) Manolis Marazakis (maraz@ics.forth.gr) Institute of Computer Science (ICS) Foundation for Research and Technology Hellas

289 views • 27 slides
QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete

QEMU: Architecture and Internals Lecture for the Embedded Systems Course CSD, University of Crete (May 6, 2014) Manolis Marazakis (maraz@ics.forth.gr) Institute of Computer Science (ICS) Foundation for Research and Technology Hellas

262 views • 23 slides
On the internals of disco-dop How to implement a state-of-the-art LCFRS parser Kilian Gebhardt

On the internals of disco-dop How to implement a state-of-the-art LCFRS parser Kilian Gebhardt

On the internals of disco-dop How to implement a state-of-the-art LCFRS parser Kilian Gebhardt Grundlagen der Programmierung, Fakult at Informatik, TU Dresden November 16, 2018 1/17 Motivation LCFRS parsing is hard ( O ( n m k )

670 views • 49 slides
Object Internals in Python - Mridu Bhatnagar Who am I? - Python Enthusiast - Backend Developer

Object Internals in Python - Mridu Bhatnagar Who am I? - Python Enthusiast - Backend Developer

Object Internals in Python - Mridu Bhatnagar Who am I? - Python Enthusiast - Backend Developer by profession. - I love speaking at various meetup groups and conferences. - Twitter handle - @Mridu__ - objects - memory address Learning -

1.07k views • 40 slides
Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB

Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB

Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB c September 17, 2013 Course overview - Day 2 Welcome back. Today, we will cover the following topics: 6model Bounded Serialization and Module

1.72k views • 149 slides
MD-SAL Clustering Internals Moiz Raja Open Daylight Summit 2015 www.opendaylight.org My

MD-SAL Clustering Internals Moiz Raja Open Daylight Summit 2015 www.opendaylight.org My

MD-SAL Clustering Internals Moiz Raja Open Daylight Summit 2015 www.opendaylight.org My Collaborators Tom Pantelis Abhishek Kumar Luis Gomez Basheeruddin Ahmed Phillip Shea Colin

1.2k views • 66 slides
Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB

Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB

Rakudo and NQP Internals The guts tormented implementers made Jonathan Worthington Edument AB c September 17, 2013 About This Course Perl 6 is a large language, incorporating many features that are demanding to implement correctly.

2.25k views • 191 slides
Taking Control of Your Managed Care Destiny AJAS 2017 April 3, 2017 All Roads Lead to Managed

Taking Control of Your Managed Care Destiny AJAS 2017 April 3, 2017 All Roads Lead to Managed

Taking Control of Your Managed Care Destiny AJAS 2017 April 3, 2017 All Roads Lead to Managed Care Medicare Advantage Special Needs Plans Dual Demos Medicaid Managed LTC Medicare FFS ACOs Bundling PPS Reform

749 views • 42 slides
GWAS on your notebook: Semi-parallel linear and logis9c

GWAS on your notebook: Semi-parallel linear and logis9c

GWAS on your notebook: Semi-parallel linear and logis9c regression Presented by Karolina Sikorska Department of Biostatistics, Erasmus Medical Centre in Rotterdam Hosted by Shawn Yarnes

847 views • 49 slides
Today. Two populations. Which population? DNA data: Population 1: snp 843: Pr[A] = .4 , Pr[T] =

Today. Two populations. Which population? DNA data: Population 1: snp 843: Pr[A] = .4 , Pr[T] =

Today. Two populations. Which population? DNA data: Population 1: snp 843: Pr[A] = .4 , Pr[T] = .6 human1: A C T A Population 2: snp 843: Pr[A] = .6 , Pr[T] = .4 human2: C C A T human3: A G

179 views • 3 slides
Aligning DNA sequences on compressed collections of genomes Part 5. Practical session: alignment

Aligning DNA sequences on compressed collections of genomes Part 5. Practical session: alignment

Aligning DNA sequences on compressed collections of genomes Part 5. Practical session: alignment and SNP calling The CODATA-RDA Research Data Science Applied workshop on Bioinformatics ICTP , Trieste - Italy July 24-28, 2017 Nicola Prezza

491 views • 26 slides
CS681: Advanced Topics in Computational Biology Can Alkan EA509 calkan@cs.bilkent.edu.tr

CS681: Advanced Topics in Computational Biology Can Alkan EA509 calkan@cs.bilkent.edu.tr

CS681: Advanced Topics in Computational Biology Can Alkan EA509 calkan@cs.bilkent.edu.tr http://www.cs.bilkent.edu.tr/~calkan/teaching/cs681/ SNP discovery with HTS data SNP: single nucleotide polymorphism Change of one nucleotide to

791 views • 27 slides
Fostering sensi+vity analysis for genome-scale inference

Fostering sensi+vity analysis for genome-scale inference

Fostering sensi+vity analysis for genome-scale inference So6ware into ideas Vince Carey, Ph.D. Channing Division of Network Medicine Harvard Medical

847 views • 45 slides
Differen'al Privacy with Bounded Priors: Reconciling U+lity and

Differen'al Privacy with Bounded Priors: Reconciling U+lity and

Differen'al Privacy with Bounded Priors: Reconciling U+lity and Privacy in Genome-Wide Associa+on Studies Florian Tramr, Zhicong Huang, Erman Ayday,

901 views • 16 slides
Wi Voter i iii opium Bob 3_ Requirements 1 Verifiable Independently tally correct

Wi Voter i iii opium Bob 3_ Requirements 1 Verifiable Independently tally correct

Sch SAC Su mmer Part I Enhance Can Democracy Crypto Concordia University Clerk Agenda 1 Requirements backend basic 1947 CGS 2 Ballots Votiable Human 3 t resistance JCJ 2005 Coercion Requirements Preliminaries Fi Enety

790 views • 11 slides

More recommend