Low-cost and area-efficient FPGA implementations of lattice-based cryptography

2013 IEEE International Symposium on Hardware-Oriented Security and Trust (HOST) Pub Date : 2013-06-02 DOI:10.1109/HST.2013.6581570

Aydin Aysu, C. Patterson, P. Schaumont

{"title":"Low-cost and area-efficient FPGA implementations of lattice-based cryptography","authors":"Aydin Aysu, C. Patterson, P. Schaumont","doi":"10.1109/HST.2013.6581570","DOIUrl":null,"url":null,"abstract":"The interest in lattice-based cryptography is increasing due to its quantum resistance and its provable security under some worst-case hardness assumptions. As this is a relatively new topic, the search for efficient hardware architectures for lattice-based cryptographic building blocks is still an active area of research. We present area optimizations for the most critical and computationally-intensive operation in lattice-based cryptography: polynomial multiplication with the Number Theoretic Transform (NTT). The proposed methods are implemented on an FPGA for polynomial multiplication over the ideal ℤp[x]〈xn + 1〉. The proposed hardware architectures reduce slice usage, number of utilized memory blocks and total memory accesses by using a simplified address generation, improved memory organization and on-the-fly operand generations. Compared to prior work, with similar performance the proposed hardware architectures can save up to 67% of occupied slices, 80% of used memory blocks and 60% of memory accesses, and can fit into smallest Xilinx Spartan-6 FPGA.","PeriodicalId":6337,"journal":{"name":"2013 IEEE International Symposium on Hardware-Oriented Security and Trust (HOST)","volume":null,"pages":null},"PeriodicalIF":0.0000,"publicationDate":"2013-06-02","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"85","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2013 IEEE International Symposium on Hardware-Oriented Security and Trust (HOST)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/HST.2013.6581570","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 85

Abstract

The interest in lattice-based cryptography is increasing due to its quantum resistance and its provable security under some worst-case hardness assumptions. As this is a relatively new topic, the search for efficient hardware architectures for lattice-based cryptographic building blocks is still an active area of research. We present area optimizations for the most critical and computationally-intensive operation in lattice-based cryptography: polynomial multiplication with the Number Theoretic Transform (NTT). The proposed methods are implemented on an FPGA for polynomial multiplication over the ideal ℤp[x]〈xn + 1〉. The proposed hardware architectures reduce slice usage, number of utilized memory blocks and total memory accesses by using a simplified address generation, improved memory organization and on-the-fly operand generations. Compared to prior work, with similar performance the proposed hardware architectures can save up to 67% of occupied slices, 80% of used memory blocks and 60% of memory accesses, and can fit into smallest Xilinx Spartan-6 FPGA.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

基于格的加密的低成本和面积高效的FPGA实现

基于格的密码学由于其量子阻力和在最坏情况硬度假设下可证明的安全性而受到越来越多的关注。由于这是一个相对较新的主题，因此为基于格的加密构建块寻找有效的硬件体系结构仍然是一个活跃的研究领域。我们提出了在基于格的密码学中最关键和计算密集的操作的面积优化:多项式乘法与数论变换(NTT)。提出的方法在FPGA上实现了在理想的p[x] < xn + 1 >上的多项式乘法。所提出的硬件架构通过使用简化的地址生成、改进的内存组织和动态操作数生成，减少了切片使用、已利用的内存块数量和总内存访问。与先前的工作相比，在类似的性能下，所提出的硬件架构可以节省高达67%的已占用切片，80%的已使用内存块和60%的内存访问，并且可以适合最小的Xilinx Spartan-6 FPGA。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2013 IEEE International Symposium on Hardware-Oriented Security and Trust (HOST)

自引率

0.00%

发文量