research-article

CoARX: a coprocessor for ARX-based cryptographic algorithms

Authors:

Khawar Shahzad,

Zoltán Endre Rákossy,

Anupam ChattopadhyayAuthors Info & Claims

DAC '13: Proceedings of the 50th Annual Design Automation Conference

Article No.: 133, Pages 1 - 10

https://doi.org/10.1145/2463209.2488898

Published: 29 May 2013 Publication History

Abstract

Cryptographic coprocessors are inherent part of modern System-on-Chips. It serves dual purpose - efficient execution of cryptographic kernels and supporting protocols for preventing IP-piracy. Flexibility in such coprocessors is required to provide protection against emerging cryptanalytic schemes and to support different cryptographic functions like encryption and authentication. In this context, a novel crypto-coprocessor, named CoARX, supporting multiple cryptographic algorithms based on Addition (A), Rotation (R) and eXclusive-or (X) operations is proposed. CoARX supports diverse ARX-based cryptographic primitives. We show that compared to dedicated hardware implementations and general-purpose microprocessors, it offers excellent performance-flexibility trade-off including adaptability to resist generic cryptanalysis.

References

[1]

LISA 2.0. Available at www.synopsys.com/Systems/BlockDesign/ProcessorDev.

[2]

SHA-3 Cryptographic Hash Algorithm Competition. Available at http://csrc.nist.gov/groups/ST/hash/sha-3/index.html.

[3]

eSTREAM: the ECRYPT Stream Cipher Project. Available at http://www.ecrypt.eu.org/stream/index.html.

[4]

K. Asanovic et al. The landscape of parallel computing research: A view from Berkeley. Technical report, UCB/EECS-2006-183, University of California, Berkeley, 2006.

[5]

J. Aumasson et al. Tuple cryptanalysis of ARX with application to BLAKE and Skein. ECRYPT 2 Hash Workshop, 2011.

[6]

J. Aumasson, L. Henzen, W. Meier and R. Phan. SHA-3 proposal BLAKE ver 1.3, 2010. Available at https://www.131002.net/blake.

[7]

D. J. Bernstein. The salsa20 family of stream ciphers. Available at http://cr.yp.to/papers.html#salsafamily, December 2007.

[8]

D. J. Bernstein. ChaCha, a variant of Salsa20. Available at http://cr.yp.to/papers.html#chacha, January 2008.

[9]

G. Bertoni, J. Daemen, M. Peeters and G. Van Assche. Sponge functions. In Ecrypt Hash Workshop 2007. Available at http://csrc.nist.gov/pki/HashWorkshop/Public_Comments/2007_May.html.

[10]

C. Boura, S. Leveque and D. Vigilant. Side-Channel Analysis of Grostl and Skein. In IEEE Symposium on Security and Privacy Workshops 2012, pages 16--26.

Digital Library

[11]

A. Chattopadhyay, A. Khalid, S. Maitra and S. Raizada. Designing high-throughput hardware accelerator for stream cipher HC-128. In IEEE International Symposium on Circuits and Systems 2012, pages 1448--1451.

[12]

J. Constantin, A. Burg and F. Gürkaynak. Investigating the potential of custom instruction set extensions for SHA-3 candidates on a 16-bit microcontroller architecture. Cryptology ePrint Archive, Report 2012/050, 2012. Available at http://eprint.iacr.org/2012/050.

[13]

A. DeHon. The density advantage of configurable computing. In Computer, vol. 33 (4), pages 41--49, 2000.

Digital Library

[14]

P. Dubey and S. Engineer. Teraflops for the masses: Killer apps of tomorrow. In Workshop on Edge Computing Using New Commodity Architectures, 2006. Available at http://gamma.cs.unc.edu/EDGE/SLIDES/dubey.pdf.

[15]

N. Ferguson et al. The Skein Hash Function Family, Version 1.3. http://www.skein-hash.info/sites/default/files/skein1.3.pdf, October 2010.

[16]

X. Guo et al. ASIC implementations of five SHA-3 finalists. In IEEE DATE 2012, pages 1006--1011.

Digital Library

[17]

L. Henzen, J.-P. Aumasson, W. Meier and R.-W. Phan. VLSI Characterization of the Cryptographic Hash Function BLAKE. In IEEE Transactions on VLSI Systems, vol. 19 (10), pages 1746--1754, 2011.

Digital Library

[18]

L. Henzen, F. Carbognani, N. Felber and W. Fichtner. VLSI hardware evaluation of the stream ciphers Salsa20 and ChaCha, and the compression function Rumba. In 2nd International Conference on Signals, Circuits and Systems 2008, pages 1--5.

[19]

J. Katz and Y. Lindell. Introduction to Modern Cryptography. CRC Press, 2007.

Digital Library

[20]

J. K. Kobayashi, Ikegami, S. Matsuo, K. Sakiyama and K. Ohta. Evaluation of Hardware Performance for the SHA-3 Candidates using SASEBO-GII. Available at http://eprint.iacr.org/2010/010.

[21]

D. Khovratovich and I. Nikolić. Rotational cryptanalysis of ARX. In Fast Software Encryption 2010, LNCS vol. 6147, Springer, pages 333--346.

[22]

M. Knezevic et al. Fair and consistent hardware evaluation of fourteen round two SHA-3 candidates. In IEEE Transactions on VLSI Systems, vol. 20 (5), pages 827--840, 2012.

Digital Library

[23]

G. Leurent. ARXtools: A toolkit for ARX analysis. In: The Third SHA-3 Candidate Conference. Available at http://www.di.ens.fr/~leurent/arxtools.html.

[24]

M. Luby and C. Rackoff. How to Construct Pseudorandom Permutations and Pseudorandom Functions. In SIAM Journal on Computing, vol. 17 (2), pages 373--386, 1988.

Digital Library

[25]

K. Mckay and P. Adviser-Vora. Analysis of ARX round functions in secure hash functions. PhD thesis, George Washington University, 2011.

Digital Library

[26]

N. Mouha. ARX-based cryptography. Available at https://www.cosic.esat.kuleuven.be/ecrypt/courses/albena11/slides/nicky_mouha_arx-slides.pdf.

[27]

N. Mouha, V. Velichkov, C. De Canniere and B. Preneel. Toolkit for the Differential Cryptanalysis of ARX-based Cryptographic Constructions. In Workshop on Tools for Cryptanalysis 2010, pages 125--126.

[28]

J. Roy, F. Koushanfar and I. Markov. Epic: Ending piracy of integrated circuits. In IEEE DATE 2008, pages 1069--1074.

Digital Library

[29]

A. Shimizu and S. Miyaguchi. Fast data encipherment algorithm FEAL. In EUROCRYPT 1987, LNCS vol. 304, Springer, pages 267--278.

Digital Library

[30]

D. Stefan. Analysis and Implementation of eSTREAM and SHA-3 Cryptographic Algorithms. Master's thesis, Cooper Union College, 2011. Available at http://www.scs.stanford.edu/~deian/pubs//stefan:2011:analysis.pdf.

[31]

S. Neves. Cryptography in GPUs. Master's thesis, University of Coimbra, 2009. Available at http://eden.dei.uc.pt/~sneves/pubs/2009-sn-msc.pdf.

[32]

S. Tillich. Instruction Set Extensions for Support of Cryptography on Embedded Systems. PhD thesis, Graz University of Technology, Austria, 2008. Available at https://online.tugraz.at/tug_online/voe_main2.getvolltext?pCurrPk=39243.

[33]

S. Tillich. Hardware Implementation of the SHA-3 candidate Skein. In Cryptology ePrint Archive Report 2009/159. Available at http://eprint.iacr.org/2009/159.

[34]

J. Walker, F. Sheikh, S. Mathew and R. Krishnamurthy. A Skein-512 hardware implementation. 2010. Available at http://csrc.nist.gov/groups/ST/hash/sha-3/Round2/Aug2010/documents/papers/WALKER_skein-intel-hwd.pdf.

[35]

R.-P. Weinmann. AXR - Crypto Made from Modular Additions, XORs. In Dagstuhl Seminar 09031, January 2009. Available at http://www.dagstuhl.de/Materials/Files/09/09031/09031.WeinmannRalfPhilipp.Slides.pdf.

[36]

H. Wu. The stream cipher HC-128. Available at http://www.ecrypt.eu.org/stream/p3ciphers/hc/hc128_p3.pdf.

[37]

Good, T and Benaissa, M Hardware results for selected stream cipher candidates. In State of the Art of Stream Ciphers, 2007, pages 191--204.

[38]

M. Srivastav, X. Guo, S. Huang, D. Ganta, M. B. Henry, L. Nazhandali and P. Schaumont. Design and Benchmarking of an ASIC with Five SHA-3 Finalist

Cited By

Fan WLiu QGao YQi XWang XYang H(2023)A Heterogeneous Design Method for Reconfigurable Cryptographic Computing Array2023 International Conference on Networks, Communications and Intelligent Computing (NCIC)10.1109/NCIC61838.2023.00008(9-17)Online publication date: 17-Nov-2023
https://doi.org/10.1109/NCIC61838.2023.00008
Vollala SRamasubramanian NTiwari UVollala SRamasubramanian NTiwari U(2021)Cryptographic TechniquesEnergy-Efficient Modular Exponential Techniques for Public-Key Cryptography10.1007/978-3-030-74524-0_1(3-30)Online publication date: 14-Jul-2021
https://doi.org/10.1007/978-3-030-74524-0_1
Kundi DKhalid AAziz AWang CO'Neill MLiu W(2020)Resource-Shared Crypto-Coprocessor of AES Enc/Dec With SHA-3IEEE Transactions on Circuits and Systems I: Regular Papers10.1109/TCSI.2020.2997916(1-14)Online publication date: 2020
https://doi.org/10.1109/TCSI.2020.2997916
Show More Cited By

Index Terms

CoARX: a coprocessor for ARX-based cryptographic algorithms
1. Computer systems organization
  1. Embedded and cyber-physical systems
  2. Real-time systems
2. Hardware
  1. Integrated circuits

Recommendations

Public-Key encryption from ID-Based encryption without one-time signature
OTM'06: Proceedings of the 2006 international conference on On the Move to Meaningful Internet Systems: AWeSOMe, CAMS, COMINF, IS, KSinBIT, MIOS-CIAO, MONET - Volume Part I

Design a secure public key encryption scheme and its security proof are one of the main interests in cryptography In 2004, Canetti, Halevi and Katz [8] constructed a public key encryption (PKE) from a selective identity-based encryption scheme with a ...
A novel identity-based strong designated verifier signature scheme

Unlike ordinary digital signatures, a designated verifier signature scheme makes it possible for a signer to convince a designated verifier that she has signed a message in such a way that the designated verifier cannot transfer the signature to a third ...
Improved convertible authenticated encryption scheme with provable security

Convertible authenticated encryption (CAE) schemes allow a signer to produce an authenticated ciphertext such that only a designated recipient can decrypt it and verify the recovered signature. The conversion property further enables the designated ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

DAC '13: Proceedings of the 50th Annual Design Automation Conference

May 2013

1285 pages

ISBN:9781450320719

DOI:10.1145/2463209

Copyright © 2013 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

EDAC: Electronic Design Automation Consortium
SIGDA: ACM Special Interest Group on Design Automation
IEEE-CEDA

In-Cooperation

SIGBED: ACM Special Interest Group on Embedded Systems

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 29 May 2013

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Author Tags

Qualifiers

Research-article

Conference

DAC '13

Sponsor:

EDAC
SIGDA

DAC '13: The 50th Annual Design Automation Conference 2013

May 29 - June 7, 2013

Texas, Austin

Acceptance Rates

Overall Acceptance Rate 1,770 of 5,499 submissions, 32%

Upcoming Conference

DAC '25

Sponsor:
sigda

62nd ACM/IEEE Design Automation Conference

June 22 - 26, 2025

San Francisco , CA , USA

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

24
Total Citations
View Citations
230
Total Downloads

Downloads (Last 12 months)8
Downloads (Last 6 weeks)1

Reflects downloads up to 08 Mar 2025

Other Metrics

View Author Metrics

Citations

Cited By

Fan WLiu QGao YQi XWang XYang H(2023)A Heterogeneous Design Method for Reconfigurable Cryptographic Computing Array2023 International Conference on Networks, Communications and Intelligent Computing (NCIC)10.1109/NCIC61838.2023.00008(9-17)Online publication date: 17-Nov-2023
https://doi.org/10.1109/NCIC61838.2023.00008
Vollala SRamasubramanian NTiwari UVollala SRamasubramanian NTiwari U(2021)Cryptographic TechniquesEnergy-Efficient Modular Exponential Techniques for Public-Key Cryptography10.1007/978-3-030-74524-0_1(3-30)Online publication date: 14-Jul-2021
https://doi.org/10.1007/978-3-030-74524-0_1
Kundi DKhalid AAziz AWang CO'Neill MLiu W(2020)Resource-Shared Crypto-Coprocessor of AES Enc/Dec With SHA-3IEEE Transactions on Circuits and Systems I: Regular Papers10.1109/TCSI.2020.2997916(1-14)Online publication date: 2020
https://doi.org/10.1109/TCSI.2020.2997916
El-Hadedy MGuo XSkadron KHwu W(2020)Edge Crypt-Pi: Securing Internet of Things with Light and Fast Crypto-ProcessorProceedings of the Future Technologies Conference (FTC) 2020, Volume 310.1007/978-3-030-63092-8_50(749-761)Online publication date: 31-Oct-2020
https://doi.org/10.1007/978-3-030-63092-8_50
Khalid APaul GChattopadhyay AKhalid APaul GChattopadhyay A(2019)Study of FlexibilityDomain Specific High-Level Synthesis for Cryptographic Workloads10.1007/978-981-10-1070-5_6(127-168)Online publication date: 29-Mar-2019
https://doi.org/10.1007/978-981-10-1070-5_6
Khalid APaul GChattopadhyay AKhalid APaul GChattopadhyay A(2019)Manual Optimizations for Efficient DesignsDomain Specific High-Level Synthesis for Cryptographic Workloads10.1007/978-981-10-1070-5_5(91-125)Online publication date: 29-Mar-2019
https://doi.org/10.1007/978-981-10-1070-5_5
Khalid APaul GChattopadhyay AKhalid APaul GChattopadhyay A(2019)IntroductionDomain Specific High-Level Synthesis for Cryptographic Workloads10.1007/978-981-10-1070-5_1(1-4)Online publication date: 29-Mar-2019
https://doi.org/10.1007/978-981-10-1070-5_1
Bache FSchneider TMoradi AGüneysu T(2017)SPARXProceedings of the Conference on Design, Automation & Test in Europe10.5555/3130379.3130616(990-995)Online publication date: 27-Mar-2017
https://dl.acm.org/doi/10.5555/3130379.3130616
Bache FSchneider TMoradi AGiineysu T(2017)SPARX — A side-channel protected processor for ARX-based cryptographyDesign, Automation & Test in Europe Conference & Exhibition (DATE), 201710.23919/DATE.2017.7927135(990-995)Online publication date: Mar-2017
https://doi.org/10.23919/DATE.2017.7927135
Khalid APaul GChattopadhyay A(2017)RC4-AccSuite: A Hardware Acceleration Suite for RC4-Like Stream CiphersIEEE Transactions on Very Large Scale Integration (VLSI) Systems10.1109/TVLSI.2016.260655425:3(1072-1084)Online publication date: Mar-2017
https://doi.org/10.1109/TVLSI.2016.2606554
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten