ecc is ready for rfid a proof in silicon
play

ECC is Ready for RFID A Proof in Silicon RFIDsec 08 Presentation - PowerPoint PPT Presentation

Jul 24, 2023 •336 likes •658 views

Institut f r Integrierte Systeme Integrated Systems Laboratory ECC is Ready for RFID A Proof in Silicon RFIDsec 08 Presentation Daniel Hein, daniel.hein@gmx.at Johannes Wolkerstorfer, Johannes.Wolkerstorfer@iaik.tugraz.at Norbert

  1. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECC is Ready for RFID – A Proof in Silicon RFIDsec 08 Presentation Daniel Hein, daniel.hein@gmx.at Johannes Wolkerstorfer, Johannes.Wolkerstorfer@iaik.tugraz.at Norbert Felber, felber@iis.ee.ethz.ch Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 1

  2. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Outline I Radio Frequency Identification (RFID) – Product piracy – Authentication Elliptic Curve Cryptography (ECC) – Montgomery point multiplication – Binary extension field arithmetic ECCon processor architecture – RFID front-end – ECC processor • Small datapath Approach • Specialized ALU Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 2

  3. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Outline II Digit level algorithms – Multiplication – Reduction – Multiplication with interleaved reduction Results – Timing, Area, Power – Comparison with related work Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 3

  4. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Radio Frequency Identification Rapid automated item identification Barcode replacement Computer X-ray vision – No line of sight – No optical scanning RFID Tag – Antennae + IC – Powered by EM field Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 4

  5. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Product Piracy Causes considerable economic damage Counterfeits inserted in legitimate supply chain RFID tags – Alleviate problem – Easy to clone Cryptography – Authentication Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 5

  6. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Elliptic Curve Cryptography I Public-key cryptography – Short key => Small hardware footprint Authentication with digital signature – ECDSA Security depends on point multiplication Point multiplication – scalar • point on elliptic curve – Non-invertible Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 6

  7. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Elliptic Curve Cryptography II Point multiplication – Point addition – Point doubling – Montgomery point ladder algorithm Side channel attack resistance – Timing based attacks: MPLA – Simple power analyses attacks: MPLA – Differential power analyses attacks: ECDSA Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 7

  8. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Binary Extension Field Arithmetic Elliptic Curve defined on finite field Finite Fields – Fixed size elements Binary extension field – Elements = binary polynomials – Addition = XOR Required Operations – Addition – Multiplication – Reduction Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 8

  9. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Prerequisites of an RFID application Small die area – 15000 gate equivalents Minuscule power consumption – 15μA available mean current Constant power consumption – “Accidental” load modulation Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 9

  10. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECCon Top Level Architecture RFID front end – ISO-18000-3-1 compliant – Air Interface • Power supply • Clock generation • Signal modulation – RART • Receive: bit stream to byte • Send: byte to bit stream – RFID Control Unit (RCU) • Communication protocol • Manages ECC processor Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 10

  11. Institut f ü r Integrierte Systeme Integrated Systems Laboratory ECC Processor Architecture I Implements point multiplication – Fixed 163 bit NIST curve Supports two modes – RFID – Stand alone Interface – two-phase full handshake – 8 bit wide Control unit – hardwired FSM hierarchy Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 11

  12. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Low Power, Small Area ALU Architectures Bit-serial multiplier 163x6 RAM C – current state of the art o n I t – 2x163 = 326 bits ALU storage O r o • Lion's share of power used for l 163x1 Multiplier clocking the storage 16-bit datapath 64x16 – Used for ISE [GK03a] C RAM o – Conceptually 48-bit ALU storage n I t O • More power for computation r o 16x16 – Total power consumption smaller l Mult. – Requires digit based algorithms Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 12

  13. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Arithmetic Logic Unit 16x16 GF(2) multiplier 2 Register input selection units 2 16-bit adders (XOR) Registers – 32-bit accumulator – interleaved reduction • 15-bit MC • 13-bit RC – clock gated Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 13

  14. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Word Size Selection 12 A*C*P A*C*P 2 10 A*C 2 *P A*C 2 *P 2 8 6 4 2 0 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 Bit-width Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 14

  15. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Comba Multiplication Two possible digit ✳ B[2] B[1] B[0] A[2] A[1] A[0] multiplication algorithms – Operand scanning form B[0]A[0] – Product scanning form B[0]A[1] B[1]A[0] Product Scanning Form B[1]A[1] – A.k.a Comba Multiplication B[0]A[2] – Computes result one result B[2]A[0] digit at the time B[2]A[1] – Optimal operand order B[1]A[2] minimizes memory access B[2]A[2] P[5] P[4] P[3] P[2] P[1] P[0] Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 15

  16. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Modular Reduction in GF(2 163 ) Multiplication of 2 163-bit elements produces a 325-bit result: a(z)*b(z)=c(z); deg(c(z))=325 Common residue: c(z) ≡ c(z) (mod f(z)) – f(z) = z 163 +z 7 +z 6 +z 3 +1... irreducible polynomial The common residue is limited in size to 163 bits The common residue is the remainder of a long division by f(z) Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 16

  17. Institut f ü r Integrierte Systeme Integrated Systems Laboratory An Alternate Reduction Method c H0 c L0 324 163 162 0 ⊕ c H1 c L1 c 1 =c H0 *r 168 163 162 0 ⊕ c L2 c 2 =c H1 *r 12 0 c =c L0 +c L1 +c L2 c 162 0 c(z)=c 2m-2 z 2m-2 +...+c m z m +c m-1 z m-1 +...+c 1 z+c 0 ≡ (c 2m-2 z m-2 +...+c m )r(z)+c m-1 z m-1 +...+c 1 z+c 0 (mod f(z)), where the reduction polynomial r(z)=f(z)-z 163 =z 7 +z 6 +z 3 +1 Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 17

  18. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step I C[10] ACC H ACC L C L0 [10] C[10] Carry C H0 [0] L 175 163 162 160 MC RC empty empty Computation of the first 10 digits of the product 11 th digit (C[10]) exceeds 163 bit limit – Stored in ACC L – ACC H contains multiplication carry for 12 th digit C[11] C[10] contains the first 13 bits of C H0 – Saved to Reduction Carry register RC Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 18

  19. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step II C[11] ACC H ACC L C[11] Carry C H0 [1] L C H0 [0] H 191 179 178 176 C H0 [0] L MC empty RC ACC H ACC L C[11] Carry C H0 [0] 178 163 C[11] Carry C H0 [1] L MC RC Upon computation of 12 th digit (C[11]) – Last 3 bits of C H0 [0] become available – C H0 [0] is restored in ACC L , lower 13 bit of C H0 [0] saved to RC – Multiplication carry is saved to Multiplication Carry register MC Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 19

  20. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step III ACC H ACC L (C H0 [0] *r(z)) H (C H0 [0] *r(z)) L 15 0 C[11] Carry C H0 [1] L MC RC Multiplication of 1 st digit of C H0 (C H0 [0]) with r(z) produces 1 st digit of C 1 (C L1 [0]) Addition of C L1 [0] to C L0 [0], Sum stored to result memory Exchange of reduction multiplication carry and nominal multiplication carry Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 20

  21. Institut f ü r Integrierte Systeme Integrated Systems Laboratory Interleaved Reduction Step IV C[12] ACC H ACC L C[12] Carry C H0 [2] L C H0 [1] H 207 195 194 192 (C H0 [0] *r(z)) H C H0 [1] L MC RC The next digit of the product (C[12]) is computed – Requires several MAC operations Interleaved reduction steps I to IV repeat until all digits of C 1 are processed Process is repeated for C 2 – Single multiplication and addition Daniel Hein Budapest, 10.07.2008 ECC is Ready for RFID – A Proof in Silicon 21

Recommend

Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight

March 2, 2014 Monte Jade's RFID Seminar Atlanta, USA 1. TSA worldwide RFID Trial History 2. ASTREC research effort in RFID 3. Inflight RFID 4. Current Airport RFID Deployments 5. Atlanta International Airport Activity with IATA RFID

912 views • 35 slides
IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing

IntelliSense RFID RFID PLATFORM WITH SENSORS INTEGRATION CAPABILITIES One Global Sensing Tag Oslo, 28 November 2007 IntelliSense RFID Workshop IntelliSense RFID RESEARCH PROJECT FOR TECHNOLOGY DEVELOPMENT WITHIN THE FIELDS OF RFID

788 views • 13 slides
The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio

The Art of RFID Exploitation Melanie Rieback FIRST 20 June, 2007 What is RFID? RFID = Radio Frequency Identification Modern RFID Applications VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips Subdermal RFID VeriChips

628 views • 29 slides
TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown &

TrainTraxx.com HiveID RFID/NFC Solutions for Model Railroaders Presented by Carlton Brown & Blaine McDonnell Using RFID for Model Railroad Operations What is RFID? How does RFID Work? RFID Frequencies and Type of Tags

853 views • 25 slides
DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA

DEVELOPMENT OF AN RFID SYSTEM FOR SPS-ALPHA 1 OBJECTIVES RFID Implementation: SPS-ALPHA Structure RFID Technology Applications in SPS-ALPHA architecture Part Identification Location Referencing 2 Why Space Solar No

241 views • 22 slides
Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin

Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin

Will Silicon Proof Stay the Only Way to Verify Analog Circuits? Pierre Dautriche Jean-Paul Morin Advanced CMOS and analog . Embedded analog Embedded RF 28nm FDSOI 0.18um 65nm 0.5 um 0.25um 45nm 0.13um 1997 2001 2005 2009 2013

386 views • 23 slides
RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by

RFID - From Farm to Fork Strengthening SME competitive advantage through RFID implementation RFID from Farm to Fork Piero Filippin p.filippin@wlv.ac.uk RFID from Farm to Fork Funded by the EU as part of the Competitiveness and Innovation

356 views • 9 slides
RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen

RFID Hacking Live Free or RFID Hard 01 Aug 2013 Black Hat USA 2013 Las Vegas, NV Presen sented ed b by: Francis Brown Bishop Fox www.bishopfox.com Agenda O V E R V I E W Qu Quic ick k Over erview ew RFID badge

883 views • 50 slides
Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT

Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT

Hands-On Getting ready... Run a task that accesses ESD Locally Locally with ROOT PROOF Modify it... Run a task that accesses MC PROOF Reading log files, resetting session, etc. Running the tasks from

679 views • 19 slides
Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development

Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development

Transformation of SMEs to be Future Proof, Future Ready By Michael Tan Overview of Singapore 1 Productivity Development Driving Productivity Plan 2 Agenda Industry Transformation Map 3 Ab Abou out Si Sing ngapor ore Pro roduc

431 views • 22 slides
RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia

RFID Technologies: Emerging Issues, Challenges, Policy Options A study by TNO and Telecom Italia for IPTS IFIP/FIDIS Summerschool Karlstad - 2007 Overview RFID Technologies RFID Markets RFID Privacy issues Conclusions 2

734 views • 19 slides
Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2

Mobile Data Entry for RFID RFID MRR NCDOT Materials and Tests Unit Welcome Transportation 2 WELCOME Transportation 3 Introduction The final link in the RFID program is the receiving of the project onto the project site. The producer

508 views • 30 slides
RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium February 2011, Corua, Spain RFID Primer RFID Primer Definition Radio frequency identification'' (RFID) means the use of electromagnetic radiating waves

729 views • 47 slides
Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based

Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based

Smart Sensing RFID Technology Passi sive, Activ ive e RFID, , Barcode code & BLE based ed Hybri rid d Asset set Trac acking ing syst stem em Smart Sensing RFID Technology and Management Consultancy Every day, our work helps

579 views • 27 slides
Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and

Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and

Silicon Labs Corporate Overview J A N U A R Y 2 0 2 0 The leader in silicon, software and solutions for a smarter, more connected world. Silicon Labs REVENUE FOUNDED IN 1996 $868M $838M A leading provider of silicon, software $698M $769M and

624 views • 27 slides
Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT

Interaction of RFID Technology and Public Policy Presentation at RFID Privacy Workshop @ MIT 15 TH November 2003 By Rakesh Kumar Wipro Technologies India Privacy Consumers Perspective Privacy can be defined as customers ability to

284 views • 17 slides
Item Level RFID Tracking IT Architecture 1 In Intr troducti tion An RFID solution has

Item Level RFID Tracking IT Architecture 1 In Intr troducti tion An RFID solution has

Item Level RFID Tracking IT Architecture 1 In Intr troducti tion An RFID solution has several components, namely: Hardware -comprising readers, handhelds, tags etc Network infrastructure which connects these devices to the system

497 views • 14 slides
PV Technology Based on Crystalline Silicon Wafers Manufacturing of Crystalline Silicon Week 4.2

PV Technology Based on Crystalline Silicon Wafers Manufacturing of Crystalline Silicon Week 4.2

PV Technology Based on Crystalline Silicon Wafers Manufacturing of Crystalline Silicon Week 4.2 Arno Smets Monocrystalline Multicrystalline The processing of silicon Quartzite Metallurgical silicon Movie 1 The processing of silicon

580 views • 18 slides
A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006

A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006

VLSI Institute for Applied Information Processing and Communications (IAIK) VLSI & Security A Case Against Currently Used Hash Functions in RFID Protocols Workshop on RFID Security 2006 RFIDSec06 July 13-14, 2006, Graz, Austria

232 views • 21 slides
CAI Center of Automatic Identification Lukas Vojtech Daniel Lopour RFID in Europe RFID

CAI Center of Automatic Identification Lukas Vojtech Daniel Lopour RFID in Europe RFID

CAI Center of Automatic Identification Lukas Vojtech Daniel Lopour RFID in Europe RFID Future, Prague, 29. - 31. 11. 2011 CAI General information Location: Science technology park Msttice -20 min from Prague center -connection by

422 views • 17 slides
Enabling Silicon-as-a-Service ENABLING SILICON-AS-A-SERVICE Algodone at a Glance When/Where

Enabling Silicon-as-a-Service ENABLING SILICON-AS-A-SERVICE Algodone at a Glance When/Where

Adding SALT TM to Product Lifecycle Management (PLM) for IP tracking and Silicon Configuration Enabling Silicon-as-a-Service ENABLING SILICON-AS-A-SERVICE Algodone at a Glance When/Where Founders Vision Technology Jrme Rampon Founded

712 views • 16 slides
18-759: Wireless Networks L ecture 29: RFID Peter Steenkiste CS and ECE, Carnegie Mellon

18-759: Wireless Networks L ecture 29: RFID Peter Steenkiste CS and ECE, Carnegie Mellon

18-759: Wireless Networks L ecture 29: RFID Peter Steenkiste CS and ECE, Carnegie Mellon University Peking University, Summer 2016 1 Peter A. Steenkiste, CMU What is RFID ? Radio Frequency IDentification (RFID) is a method of remotely

572 views • 11 slides
RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011,

RFID Security and Privacy Gildas Avoine Information Security Group UCL Belgium April 2011, Rennes, France Summary RFID Primer. Examples. Capabilities. Particularities. Authentication in RFID. Theory. Practical

934 views • 64 slides
3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof

3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof

Griffith University 3515ICT Theory of Computation Some sample proofs 4-0 Proof types 1. Proof by construction 2. Proof by equivalence 3. Proof by contradiction 4. Proof by case analysis 5. Proof by induction

549 views • 11 slides

More recommend