On Using RSA/ECC Coprocessor for Ideal Lattice-Based Key Exchange

Greuet, Aurélien; Montoya, Simon; Renault, Guénaël

doi:10.1007/978-3-030-89915-8_10

Cited by 6 publications

(3 citation statements)

References 17 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Since these are widely deployed, they are an attractive target for implementing PQC (especially when retrofitting PQC into existing systems). Non-masked implementations for Saber and Kyber have been proposed in [GMR21], using the Kronecker substitution method, and the most efficient variants exploit the property that one of the polynomials involved in the product always has small coefficients, both for NTT-friendly and unfriendly rings. Our hybrid gadgets (e.g.…”

Section: Discussionmentioning

confidence: 99%

“…Our hybrid gadgets (e.g. HybridLinV or HybridPolMul) could therefore be used, and they can simply use the algorithms of [GMR21] for the polynomial multiplication. For the MskMux (Algorithm 5) part of these gadgets, many possible software implementations depend on the available instructions: the most natural solution is the use of a conditional move instruction, but arithmetic solutions are also possible (using 0/1 multiplications, then additions), or even using the bitwise logical operations (emulating our hardware implementation).…”

Section: Discussionmentioning

confidence: 99%

See 1 more Smart Citation

Kavach: Lightweight masking techniques for polynomial arithmetic in lattice-based cryptography

Aikata

Basso

Cassiers

et al. 2023

TCHES

View full text Add to dashboard Cite

Lattice-based cryptography has laid the foundation of various modern-day cryptosystems that cater to several applications, including post-quantum cryptography. For structured lattice-based schemes, polynomial arithmetic is a fundamental part. In several instances, the performance optimizations come from implementing compact multipliers due to the small range of the secret polynomial coefficients. However, this optimization does not easily translate to side-channel protected implementations since masking requires secret polynomial coefficients to be distributed over a large range. In this work, we address this problem and propose two novel generalized techniques, one for the number theoretic transform (NTT) based and another for the non-NTT-based polynomial arithmetic. Both these proposals enable masked polynomial multiplication while utilizing and retaining the small secret property.For demonstration, we used the proposed technique and instantiated masked multipliers for schoolbook as well as NTT-based polynomial multiplication. Both of these can utilize the compact multipliers used in the unmasked implementations. The schoolbook multiplication requires an extra polynomial accumulation along with the two polynomial multiplications for a first-order protected implementation. However, this cost is nothing compared to the area saved by utilizing the existing cheap multiplication units. We also extensively test the side-channel resistance of the proposed design through TVLA to guarantee its first-order security.

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

Kavach: Lightweight masking techniques for polynomial arithmetic in lattice-based cryptography

Aikata

Basso

Cassiers

et al. 2023

TCHES

View full text Add to dashboard Cite

show abstract

“…The proposed post-quantum lattice-based RSA (LB-RSA) was developed for IoT applications and validated in 60 dimensions. A new optimization approach for the polynomial multiplication of ideal lattice-based cryptosystems is proposed by Greuet et al 102 The RSA/ECC coprocessor is used to optimize the costly polynomial multiplication operation for embedded devices to provide security for larger integer arithmetic. In order to improve information security, a new crypto-Stegano architecture is presented by Kurniawan and Satrya.…”

Section: Polynomial Multiplicationmentioning

confidence: 99%

Post‐quantum cryptography techniques for secure communication in resource‐constrained Internet of Things devices: A comprehensive survey

Kumari

Singh

et al. 2022

Softw Pract Exp

View full text Add to dashboard Cite

As the number and characteristics of smart devices change, the concept of the Internet of Things (IoT) emerges. The IoT provides the connected devices with a variety of resources that enable effective communication. At this point, several security issues arise to get the sensitive information behind every communication in the IoT. To provide users with security and privacy, cryptographic schemes are adopted, the most popular being public key cryptographic systems (PKC). However, with the advent of quantum computing, the level of security that can be provided by the PKC schemes is a big question. Another important issue is that the IoT environment is resource-constrained, which necessitates the implementation of lightweight cryptographic algorithms for better security. In response to these issues, the post-quantum cryptographic (PQC) schemes are one of the significant developments contributing to IoT security in the post-quantum world. This article examines the key security issues in the IoT environment and examines the effective solutions found in the literature. The problems in IoT in the quantum era are discussed and appropriate solutions by PKC schemes under limited resources in IoT are focused. As the lattice-based cryptosystems are more effective, the importance of these schemes

show abstract