Efficient key-dependent message authentication in reconfigurable hardware

Crenne, Jérémie; Cotret, Pascal; Gogniat, Guy; Tessier, Russell; Diguet, Jean-Philippe

doi:10.1109/fpt.2011.6132722

Cited by 17 publications

(29 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In Algorithm 1, if H is fixed, the multiplier is called a fixed operand GF (2 128 ) multiplier as shown by [5]. This design proposed by [5] can be used efficiently (smaller area) on FPGAs as the circuit is specialized for H. We integrated this multiplier proposed by [5] with a key-synthesized AES engine in [6] in order to support slow changing key applications like Virtual Private Networks (VPNs).…”

Section: Hardware Implementationmentioning

confidence: 98%

“…This design proposed by [5] can be used efficiently (smaller area) on FPGAs as the circuit is specialized for H. We integrated this multiplier proposed by [5] with a key-synthesized AES engine in [6] in order to support slow changing key applications like Virtual Private Networks (VPNs). Also, in [6], we proposed a protocol to secure the FPGA reconfiguration to protect the bitstream because it is a key-based bitsream.…”

Section: Hardware Implementationmentioning

confidence: 99%

See 1 more Smart Citation

AES-GCM and AEGIS: Efficient and High Speed Hardware Implementations

Abdellatif

Chotin-Avot

Mehrez

2016

J Sign Process Syst

View full text Add to dashboard Cite

Authenticated Encryption (AE) is a block cipher mode of operation which provides confidentiality and integrity simultaneously. In terms of the hardware implementation, it produces smaller area compared to two separated algorithms. Therefore, it has become popular and a number of modes have been proposed. This paper presents two efficient hardware implementations for AE schemes, AES-GCM and AEGIS. In terms of AES-GCM, the performance of the system is always determined by the Galois Hash (GHASH) architecture because of the inherent computation feedback. This paper introduces an efficient method for implementing the pipelined Karatsuba Ofman Algorithm (KOA)-based GHASH on FPGAs. In particular, the computation feedback is removed by analyzing the complexity of the computation process. In addition, an efficient AEGIS is also implemented using only five AES rounds. The proposed architectures are evaluated with three different implementations of AES SubBytes (BRAMs-based SubBytes, composite field-based SubBytes, and LUT-based SubBytes) to increase the flexibility of the presented work. The presented architectures are implemented using Xilinx Virtex-5 FPGAs. Our comparison to previous work reveals that our architectures are more performance-efficient (Throughput/Slices).

show abstract

Section: Hardware Implementationmentioning

confidence: 98%

Section: Hardware Implementationmentioning

confidence: 99%

AES-GCM and AEGIS: Efficient and High Speed Hardware Implementations

Abdellatif

Chotin-Avot

Mehrez

2016

J Sign Process Syst

View full text Add to dashboard Cite

show abstract

“…Wang et al [18] presented a GHASH architecture based on four GHASH cores that achieved a throughput of 123.1 Gbit/s on a Virtex-5. Crenne et al [4] reached 238.1 Gbit/s by using 8 parallel finite-field multipliers, also targeting a Xilinx Virtex-5 FPGA. Since we aim at a full AE architecture, i.e., a design including both the authenticity and the confidentiality part, we do not consider these GHASH-only implementations for our investigations.…”

Section: Related Workmentioning

confidence: 99%

“…Although our development board and the AE cores have been designed to support a 100 Gbit/s communication, real-world experiments have so far only been undertaken using a 40 Gbit/s ciphertext interface due to financial reasons 4 . Nevertheless, measurements of the overall system proved it to be operational at data rates up to 40 Gbit/s with all the features described above.…”

Section: Fpga Digital Designmentioning

confidence: 99%

FPGA-Based High-Speed Authenticated Encryption System

Muehlberghuber

Keller

Gürkaynak

et al. 2013

VLSI-SoC: From Algorithms to Circuits and System-on-Chip Design

View full text Add to dashboard Cite

Abstract. The Advanced Encryption Standard (AES) running in the Galois/Counter Mode of Operation represents a de facto standard in the field of hardware-accelerated, block-cipher-based high-speed authenticated encryption (AE) systems. We propose hardware architectures supporting the Ethernet standard IEEE 802.3ba utilizing different cryptographic primitives suitable for AE applications. Our main design goal was to achieve high throughput on FPGA platforms. Compared to previous works aiming at data rates beyond 100 Gbit/s, our design makes use of an alternative block cipher and an alternative mode of operation, namely Serpent and the offset codebook mode of operation, respectively. Using four cipher cores for the encryption part of the AE architecture, we achieve a throughput of 141 Gbit/s on an Altera Stratix IV FPGA. The design requires 39 kALMs and runs at a maximum clock frequency of 275 MHz. This represents, to the best of our knowledge, the fastest full implementation of an AE scheme on FPGAs to date. In order to make the design applicable in a real-world environment, we developed a custom-designed printed circuit board for the Stratix IV FPGA, suitable to process data with up to 100 Gbit/s.

show abstract

“…The key used for encryption and authentication is synthesized into the module structure in order to reduce the consumed area. This is achieved by combining the GF(2 128 ) multiplier proposed by [6] with our presented AES.…”

Section: Introductionmentioning

confidence: 99%

Efficient AES-GCM for VPNs using FPGAs

Abdellatif

Chotin-Avot

Mehrez

2013

2013 IEEE 56th International Midwest Symposium on Circuits and Systems (MWSCAS)

View full text Add to dashboard Cite

Since its acceptance as the adopted authenticated encryption algorithm, AES-GCM has been utilized in various security-constrained applications. This paper describes the benefits of adding key-synthesized property to AES-GCM using FPGAs. Presented architectures can be used for applications which require encryption and authentication with slow changing keys like Virtual Private Networks (VPNs). Our architectures were evaluated using Virtex4 and Virtex5 FPGAs. It is shown that the performance of the presented AES-GCM architecture outperforms the previously reported ones.

show abstract

Efficient key-dependent message authentication in reconfigurable hardware

Cited by 17 publications

References 13 publications

AES-GCM and AEGIS: Efficient and High Speed Hardware Implementations

AES-GCM and AEGIS: Efficient and High Speed Hardware Implementations

FPGA-Based High-Speed Authenticated Encryption System

Efficient AES-GCM for VPNs using FPGAs

Contact Info

Product

Resources

About