LFSR multipliers over GF(2m) defined by all-one polynomial
Introduction
Finite field arithmetic is a fundamental to the implementation of a number of modern cryptographic systems and schemes [1], [2]. The performance of the cryptosystems is primarily determined by an efficient implementation of the arithmetic operations (addition, multiplication and inversion) in the underlying finite field [3]. Inversion can be carried out using just two modular AB multipliers or a power-sum (AB2 multiplication) architecture. Therefore, to reduce the complexity of elliptic curve cryptosystems, efficient architectures for both AB and AB2 multiplications over GF(2m) are necessary.
Several architectures have already been developed to construct the low complexity bit-serial and bit-parallel multiplications using the irreducible AOP [4], [5], [6], [7], [8]. In 1989, Itoh and Tsujii designed two low complexity multipliers based on AOP and the irreducible equally spaced polynomial [4]. Since the multipliers have been proposed, many bit-serial and bit-parallel low complexity multipliers have been proposed for cryptographic applications. To decrease the computation complexity, Koc and Sunar designed multipliers with a low complexity, which requires m2 AND gates and m2−1 XOR gates [6]. In 1997, Fenn et al. presented two bit-serial multipliers using linear feedback shift register (LFSR) architecture with a low area complexity [5]. Liu et al. in [7] and Lee et al. in [8] proposed bit-parallel AB2 multipliers with systolic architecture, respectively. Kim et al. presented two bit-serial multipliers, a modular AB multiplier and a modular AB2 multiplier, using LFSR architecture based on the inner-product with a very simple hardware complexity [9]. Jeon et al. also proposed LFSR AB2 multipliers using the property of the inner-product [10]. Although Kim et al.'s in [9] and Jeon et al.'s in [10] simplified their hardware complexity, they still require one additional modular reduction after their operation due to that they gave results over the extended polynomial basis not over the polynomial basis.
The purpose of this paper is to propose two bit-serial multipliers with an irreducible AOP over GF(2m) using LFSR architecture. First, a new architecture for AB modular multiplication is designed with a new multiplication algorithm. Then a new algorithm and architecture are implemented for AB2 modular multiplication. They require 2m+1 clock cycles and have smaller hardware complexity than the previous LFSR architectures. The proposed multipliers can be used as a kernel circuit for exponentiation, inversion, and division architectures. They are easy to implement VLSI hardware and could be used in IC cards as they have a particularly simple structure.
Section snippets
Preliminaries
The public-key cryptography schemes and other applications are based on the modular exponentiation. Let B and M be elements of GF(2m), the exponentiation of M is defined as , 0⩽E⩽n, where . The exponent E which is an integer can be expressed by E=em−12m−1+em−22m−2+⋯+e121+e0. The exponent also can be represented with a vector representation [em−1, em−2,…, e1, e0]. A popular algorithm for computing exponentiation is the binary method [11]. Starting from the most significant bit (MSB) of
Bit-serial multiplier over GF(2m)
This section presents two bit-serial algorithms and architectures of the modular AB multiplication and the modular AB2 multiplication for the modular exponentiation. First of all, a modular multiplication and its architecture are proposed for the modular AB multiplication to improve Fenn et al. architecture in [5]. Then a new AB2 multiplier is designed with a new algorithm.
Comparison and analysis
Proposed multipliers were simulated by Altera's MAX+PLUSII. Fig. 8 shows simulation results of the proposed two multipliers.
Table 1 shows a comparison between the bit-serial multipliers. The proposed multipliers are compared with the previous LFSR architectures. First three architectures, Fenn's MAOPM, Kim's IM, and the proposed AB multiplier, are for the modular AB multiplications [5], [9] and the other architectures, Jeon's MIPM, Kim's IOM, and the proposed AB2 multiplier, are for the modular
Conclusions
This paper presented two bit-serial modular multipliers with an irreducible AOP over GF(2m). To implement a new modular AB multiplier, a modular AB multiplication algorithm was derived. Then a bit-serial AB2 multiplier was implemented with a new algorithm using the modular AB multiplier. Comparisons showed that the proposed multipliers had certain advantages with the circuit complexity over the previous architectures. Accordingly, they can be used as a kernel circuit for the operations of
Hyun-Sung Kim received the BS degree in computer engineering from Kyungil University, Korea, in 1996 and the MS and Ph.D. degrees in computer engineering from Kyungpook National University, Korea, in 1998 and 2002, respectively. He was with the Ditto Technology as a senior researcher, Korea, from 2000 to 2002. Currently, he is a professor in the school of computer engineering, Kyungil University, Korea. His research interests include designing crypto-processor, network security, security
References (12)
- et al.
Structure of parallel multipliers for a class of fields GF(2m)
Inform. Comput.
(1989) - et al.
AOP arithmetic architectures over GF(2m)
Appl. Math. Comput.
(2004) A public key cryptosystem and a signature scheme based on discrete logarithms
IEEE Trans. Inform. Theory
(1985)- et al.
New directions in cryptography
IEEE Trans. Inform. Theory
(1976) Elliptic Curve Public Key Cryptosystems
(1993)- et al.
Bit-serial multiplication in GF(2m) using irreducible all-one polynomial
IEE Proc. Comput. Digit. Tech.
(1997)
Cited by (10)
Novel bit-parallel multiplier for GF (2<sup>m</sup>) defined by all-one polynomial using generalized Karatsuba algorithm
2014, Information Processing LettersLow-power and high-speed design of a versatile bit-serial multiplier in finite fields GF(2<sup>m</sup>)
2013, Integration, the VLSI JournalCitation Excerpt :In 1989, Itoh and Tsujii [20] designed two low complexity multipliers based on All-One Polynomial (AOP) and the irreducible equally spaced polynomial. Since the introduction of these multipliers, many bit-serial and bit-parallel low complexity multipliers have been proposed for cryptographic applications [9,24–33]. In 1997, Fenn et al. presented two bit-serial multipliers using irreducible All-One Polynomial with a low area complexity [5].
Performance evaluation of highly efficient techniques for software implementation of LFSR
2011, Computers and Electrical EngineeringFPGA Realization of Low Register Systolic All-One-Polynomial Multipliers over GF(2<sup>-m</sup>) and Their Applications in Trinomial Multipliers
2017, IEEE Transactions on Very Large Scale Integration (VLSI) SystemsLFSR based low complexity montgomery multiplier in GF(2<sup>m</sup>) for a class of fields
2014, Canadian Conference on Electrical and Computer EngineeringUtilization of pipeline technique in AOP based multipliers with parallel inputs
2013, Journal of Signal Processing Systems
Hyun-Sung Kim received the BS degree in computer engineering from Kyungil University, Korea, in 1996 and the MS and Ph.D. degrees in computer engineering from Kyungpook National University, Korea, in 1998 and 2002, respectively. He was with the Ditto Technology as a senior researcher, Korea, from 2000 to 2002. Currently, he is a professor in the school of computer engineering, Kyungil University, Korea. His research interests include designing crypto-processor, network security, security protocol, and cryptography.
Sung-Woon Lee received the BS and MS degrees in computer science from Chonnam National University, Korea in 1994 and 1996, respectively, and the Ph.D. degree in computer engineering from Kyungpook National University, Korea, in 2004. He was with the Korea Information System as a researcher, Korea, from 1996 to 2000. Currently, he is a professor in the department of information security, Tongmyung University, Korea. His research interests include cryptography, network security, and security protocol.