fpga design of self certified signature verification on
play

FPGA Design of Self-certified Signature Verification on Koblitz - PowerPoint PPT Presentation

Aug 26, 2022 •38 likes •478 views

Preliminaries Algorithms and Implementation Results and Discussion FPGA Design of Self-certified Signature Verification on Koblitz Curves Kimmo J Jorma Skytt arvinen Juha Forsten a Helsinki University of Technology Signal Processing

  1. Preliminaries Algorithms and Implementation Results and Discussion FPGA Design of Self-certified Signature Verification on Koblitz Curves Kimmo J¨ Jorma Skytt¨ arvinen Juha Forsten a Helsinki University of Technology Signal Processing Laboratory Otakaari 5A, FIN-02150, Finland {Kimmo.Jarvinen,Juha.Forsten,Jorma.Skytta}@tkk.fi September 12, 2007 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  2. Preliminaries Algorithms and Implementation Results and Discussion Outline Preliminaries 1 Introduction Koblitz curves Signatures Algorithms and Implementation 2 Point multiplication Precomputation Implementation Results and Discussion 3 Results on an FPGA Conclusions and future work K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  3. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Introduction Packet Level Authentication (PLA) 1 Enormous speed requirements! Elliptic curve cryptography because short signatures and fast performance are needed Koblitz curve, NIST K-163, used to maximize speed Self-certified ID based signatures because they are short and computationally less complex 1 See http://www.tcs.hut.fi/Software/PLA/new/index.shtml K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  4. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Introduction Packet Level Authentication (PLA) 1 Enormous speed requirements! Elliptic curve cryptography because short signatures and fast performance are needed Koblitz curve, NIST K-163, used to maximize speed Self-certified ID based signatures because they are short and computationally less complex Development in FPGA technology Growth in resources enables massive parallelization Point multiplication times < 100 µ s have been reported We focus on maximizing operations per second instead of minimizing computation time of a single operation 1 See http://www.tcs.hut.fi/Software/PLA/new/index.shtml K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  5. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Koblitz curves Koblitz curves have the form E K : y 2 + xy = x 3 + ax 2 + 1 If P = ( x , y ) is a point on E K , then its Frobenius endomorphism, φ ( P ) = ( x 2 , y 2 ) , is also on E K . Very efficient point multiplication Integer presented in τ -adic non-adjacent form (NAF) 2 Point doublings replaced by Frobenius maps Only m / 3 point additions 2 Solinas, Des. Codes Cryptogr. 19(2-3), 2000 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  6. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Self-certified identity based signatures Used in the current version of the PLA Signature verification is the most critical operation K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  7. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Self-certified identity based signatures Used in the current version of the PLA Signature verification is the most critical operation Signature verification A signature is verified by computing: W A = DECOMPRESS ( r A − HASH ( ID A ) , b A ) − r A W D , and HASH ( M ) = c − [ dG + cW A ] x ( mod r ) K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  8. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Self-certified identity based signatures Used in the current version of the PLA Signature verification is the most critical operation Signature verification A signature is verified by computing: W A = DECOMPRESS ( r A − HASH ( ID A ) , b A ) − r A W D , and HASH ( M ) = c − [ dG + cW A ] x ( mod r ) which simplify into the 3-term point multiplication: dG + c ( uG ) − cr A W D K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  9. Preliminaries Introduction Algorithms and Implementation Koblitz curves Results and Discussion Signatures Self-certified identity based signatures Used in the current version of the PLA Signature verification is the most critical operation Signature verification A signature is verified by computing: W A = DECOMPRESS ( r A − HASH ( ID A ) , b A ) − r A W D , and HASH ( M ) = c − [ dG + cW A ] x ( mod r ) which simplify into the 3-term point multiplication: dG + c ( uG ) − cr A W D = k 1 P 1 + k 2 P 2 + k 3 P 3 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  10. Preliminaries Point multiplication Algorithms and Implementation Precomputation Results and Discussion Implementation Point multiplication Q = k 1 P 1 + k 2 P 2 + k 3 P 3 Shamir’s trick ⇒ 3-term double-and-add algorithm 3-term τ -adic joint sparse form 3 Simplified algorithm Precompute all possible combinations 1 R k 1 , k 2 , k 3 = k 1 , j P 1 + k 2 , j P 2 + k 3 , j P 3 Perform φ ( P ) for all bits 2 If k 1 , j , k 2 , j , k 3 , j � = 000, add R k 1 , k 2 , k 3 to Q using mixed 3 coordinate point addition a a Al-Daoud et al. IEEE Tran. Comp. 51(8), 2002 3 Brumley, ICICS 2006, LNCS 4307 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  11. Preliminaries Point multiplication Algorithms and Implementation Precomputation Results and Discussion Implementation Precomputed points k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point 10 ¯ ¯ 000 R 0 = O 1 R 7 = R 3 − R 1 n/a 101 − R 7 00 ¯ ¯ 1 ¯ 001 R 1 = P 1 110 R 8 = R 3 + R 2 1 − R 1 10 − R 8 1 ¯ 0 ¯ ¯ 010 R 2 = P 2 10 R 9 = R 3 − R 2 10 − R 2 110 − R 9 ¯ ¯ 1 ¯ 1 ¯ 100 R 3 = P 3 111 R 10 = R 8 + R 1 100 − R 3 1 − R 10 11 ¯ 0 ¯ 1 ¯ ¯ 1 ¯ 011 R 4 = R 2 + R 1 1 R 11 = R 8 − R 1 1 − R 4 11 − R 11 01 ¯ 1 ¯ 0 ¯ ¯ 11 ¯ 1 R 5 = R 2 − R 1 11 R 12 = R 9 + R 1 11 − R 5 1 − R 12 1 ¯ 1 ¯ ¯ 10 ¯ ¯ 101 R 6 = R 3 + R 1 1 R 13 = R 9 − R 1 1 − R 6 111 − R 13 Precomputations require 10 point additions(/subtractions) K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  12. Preliminaries Point multiplication Algorithms and Implementation Precomputation Results and Discussion Implementation Precomputed points k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point 10 ¯ ¯ 000 R 0 = O 1 R 7 = R 3 − R 1 n/a 101 − R 7 00 ¯ ¯ 1 ¯ 001 R 1 = P 1 110 R 8 = R 3 + R 2 1 − R 1 10 − R 8 1 ¯ 0 ¯ ¯ 010 R 2 = P 2 10 R 9 = R 3 − R 2 10 − R 2 110 − R 9 ¯ ¯ 1 ¯ 1 ¯ 100 R 3 = P 3 111 R 10 = R 8 + R 1 100 − R 3 1 − R 10 11 ¯ 0 ¯ 1 ¯ ¯ 1 ¯ 011 R 4 = R 2 + R 1 1 R 11 = R 8 − R 1 1 − R 4 11 − R 11 01 ¯ 1 ¯ 0 ¯ ¯ 11 ¯ 1 R 5 = R 2 − R 1 11 R 12 = R 9 + R 1 11 − R 5 1 − R 12 1 ¯ 1 ¯ ¯ 10 ¯ ¯ 101 R 6 = R 3 + R 1 1 R 13 = R 9 − R 1 1 − R 6 111 − R 13 Precomputations require 10 point additions(/subtractions) Pairs ( R k , R k + 1 ) are computed so that R k = R i + R j , and 1 R k + 1 = R i − R j 2 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  13. Preliminaries Point multiplication Algorithms and Implementation Precomputation Results and Discussion Implementation Precomputed points k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point 10 ¯ ¯ 000 R 0 = O 1 R 7 = R 3 − R 1 n/a 101 − R 7 00 ¯ ¯ 1 ¯ 001 R 1 = P 1 110 R 8 = R 3 + R 2 1 − R 1 10 − R 8 1 ¯ 0 ¯ ¯ 010 R 2 = P 2 10 R 9 = R 3 − R 2 10 − R 2 110 − R 9 ¯ ¯ 1 ¯ 1 ¯ 100 R 3 = P 3 111 R 10 = R 8 + R 1 100 − R 3 1 − R 10 11 ¯ 0 ¯ 1 ¯ ¯ 1 ¯ 011 R 4 = R 2 + R 1 1 R 11 = R 8 − R 1 1 − R 4 11 − R 11 01 ¯ 1 ¯ 0 ¯ ¯ 11 ¯ 1 R 5 = R 2 − R 1 11 R 12 = R 9 + R 1 11 − R 5 1 − R 12 1 ¯ 1 ¯ ¯ 10 ¯ ¯ 101 R 6 = R 3 + R 1 1 R 13 = R 9 − R 1 1 − R 6 111 − R 13 Precomputations require 10 point additions(/subtractions) Pairs ( R k , R k + 1 ) are computed so that R k = R i + R j , and 1 R k + 1 = R i − R j 2 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

  14. Preliminaries Point multiplication Algorithms and Implementation Precomputation Results and Discussion Implementation Precomputed points k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point k 3 k 2 k 1 Point 10 ¯ ¯ 000 R 0 = O 1 R 7 = R 3 − R 1 n/a 101 − R 7 00 ¯ ¯ 1 ¯ 001 R 1 = P 1 110 R 8 = R 3 + R 2 1 − R 1 10 − R 8 1 ¯ 0 ¯ ¯ 010 R 2 = P 2 10 R 9 = R 3 − R 2 10 − R 2 110 − R 9 ¯ ¯ 1 ¯ 1 ¯ 100 R 3 = P 3 111 R 10 = R 8 + R 1 100 − R 3 1 − R 10 11 ¯ 0 ¯ 1 ¯ ¯ 1 ¯ 011 R 4 = R 2 + R 1 1 R 11 = R 8 − R 1 1 − R 4 11 − R 11 01 ¯ 1 ¯ 0 ¯ ¯ 11 ¯ 1 R 5 = R 2 − R 1 11 R 12 = R 9 + R 1 11 − R 5 1 − R 12 1 ¯ 1 ¯ ¯ 10 ¯ ¯ 101 R 6 = R 3 + R 1 1 R 13 = R 9 − R 1 1 − R 6 111 − R 13 Precomputations require 10 point additions(/subtractions) Pairs ( R k , R k + 1 ) are computed so that R k = R i + R j , and 1 R k + 1 = R i − R j 2 K. J¨ arvinen, J. Forsten and J. Skytt¨ a CHES 2007, September 11-13, 2007, Vienna, Austria

Recommend

Flexible Software to Hardware migration methodology for FPGA design and verification. Matias

Flexible Software to Hardware migration methodology for FPGA design and verification. Matias

Flexible Software to Hardware migration methodology for FPGA design and verification. Matias Trapaglia 1 , Ricardo Cayssials 2,3 , Lorenzo De Pasquale 2 , Edgardo Ferro 3 1 CONICET, 2 UTN FRBB, Department of Electronics Engineering, 3

442 views • 27 slides
FPGA What is a FPGA? How FPGAs work How do they work? Manufacturers

FPGA What is a FPGA? How FPGAs work How do they work? Manufacturers

2/21/2012 Content FPGA What is a FPGA? How FPGAs work How do they work? Manufacturers Distributed RAM History FPGA vs ASIC FPGA and Microprocessors Alternatives to FPGAs ETI135, Advanced Digital IC Design

123 views • 10 slides
UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

UMBC A B M A L T F O U M B C I M Y O R T 1 (11/26/07) I E S R C E O V

VLSI Design Verification and Test Simulation CMPE 646 Design Verification Simulation used for 1) design verification : verify the correctness of the design and 2) test verification. Design verification: Specification Critical or

426 views • 15 slides
UVVM - The fastest growing FPGA verification methodology world-wide! Workshop on Open Source

UVVM - The fastest growing FPGA verification methodology world-wide! Workshop on Open Source

UVVM - The fastest growing FPGA verification methodology world-wide! Workshop on Open Source Design Automation (OSDA) 2019 Please also see related conference paper: https://osda.gitlab.io/19/tallaksen.pdf www.bitvis.no Your partner for

1.3k views • 43 slides
Design and Verilog Module Creating a design and implementing in FPGA Design Verilog

Design and Verilog Module Creating a design and implementing in FPGA Design Verilog

Design and Verilog Module Creating a design and implementing in FPGA Design Verilog (mainly) Schematic(sometimes) Verify Need writing a testbench Simulation using ISIM Creating a design and implementing in FPGA Add User

276 views • 15 slides
FPGA language ( HDL ). Overview 3 4 Component-Based Software Design LMES Component-Based

FPGA language ( HDL ). Overview 3 4 Component-Based Software Design LMES Component-Based

11/05/2016 Agenda The topics that will be addressed are: Overview on basic characteristics of the FPGA; Scheduling tasks on Reconfigurable FPGA reconfiguration capabilities; FPGA architectures Timing analysis for reconfigurable

299 views • 10 slides
Certified Optimization for System Verification Victor Magron , CNRS 3 Avril 2018 ENS Cachan, LSV

Certified Optimization for System Verification Victor Magron , CNRS 3 Avril 2018 ENS Cachan, LSV

Certified Optimization for System Verification Victor Magron , CNRS 3 Avril 2018 ENS Cachan, LSV Seminar Victor Magron Certified Optimization for System Verification 0 / 46 Personal Background 2008 2010: Master at Tokyo University H

1.41k views • 124 slides
FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic

FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic

FPGA security Nele Mentens nele.mentens@kuleuven.be Design and security of cryptographic algorithms and devices for real-world applications June 1-6, 2014, ibenik , Croatia Outline Introduction FPGA vs. ASIC FPGA application

443 views • 17 slides
Certified Optimization for System Verification Victor Magron , CNRS 26 Juin 2017 SMAI-MODE

Certified Optimization for System Verification Victor Magron , CNRS 26 Juin 2017 SMAI-MODE

Certified Optimization for System Verification Victor Magron , CNRS 26 Juin 2017 SMAI-MODE Meeting Victor Magron Certified Optimization for System Verification 0 / 10 Personal Background 2008 2010: Master at Tokyo University H IERARCHICAL

501 views • 28 slides
Certified Optimization for System Verification Victor Magron , CNRS 17 Mai 2018 68nqrt Seminar,

Certified Optimization for System Verification Victor Magron , CNRS 17 Mai 2018 68nqrt Seminar,

Certified Optimization for System Verification Victor Magron , CNRS 17 Mai 2018 68nqrt Seminar, Irisa, INRIA Rennes Victor Magron Certified Optimization for System Verification 0 / 45 Research Field C ERTIFIED OPTIMIZATION Input: linear

1.34k views • 123 slides
T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Three Design Status

T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Three Design Status

T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Three Design Status Report Three Design Status Report Year a and Martin ZABEL b , Uwe MIELKE a and Martin ZABEL b , Uwe MIELKE in collaboration w/ Michael BRUESTLE c

226 views • 19 slides
T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Two Design Status

T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Two Design Status

T42 Transputer Design in FPGA Transputer Design in FPGA T42 Year- -Two Design Status Report Two Design Status Report Year a and Martin ZABEL b , Uwe MIELKE a Uwe MIELKE and Martin ZABEL b , in collaboration w/ Michael BRUESTLE c c

702 views • 22 slides
Histogram-based matching of GMM encoded features for online signature verification Vivek

Histogram-based matching of GMM encoded features for online signature verification Vivek

Histogram-based matching of GMM encoded features for online signature verification Vivek Venugopal On behalf of Abhishek Sharma,Dr. Suresh Sundaram Multimedia Analytics Laboratory, Electronics and Electrical Engineering Department IIT Guwahati

187 views • 15 slides
Of Offline Si Signature Verification via St Struct ctural Methods: s: Graph Edit Distance

Of Offline Si Signature Verification via St Struct ctural Methods: s: Graph Edit Distance

Of Offline Si Signature Verification via St Struct ctural Methods: s: Graph Edit Distance and Inkb kball Models Pa Paul Ma Maergner, , Nicholas R. . Howe, , Ka Kaspar Ri Riesen, , Rolf Ingo gold, , Andreas Fi Fischer 17/08/2018

582 views • 26 slides
The Era of SoC FPGAs Nizar Abdallah, Ph.D. Workshop on FPGA Design for Scientific Instrumentation

The Era of SoC FPGAs Nizar Abdallah, Ph.D. Workshop on FPGA Design for Scientific Instrumentation

Power Matters The Era of SoC FPGAs Nizar Abdallah, Ph.D. Workshop on FPGA Design for Scientific Instrumentation and Computing International Centre for Theoretical Physics November 2017 Outline Introduction SoC FPGA Architectures: an

938 views • 78 slides
Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature

Discharge uncertainty: sources and implications for hydrological analyses Signature 1 Signature 1 Signature 2 Signature 2 http://comm ons.wikime dia.org/wiki/ File:Piasnic a- Signature 3 Signature 3 wodowskaz -0.jpg Ida Westerberg 1,2

388 views • 19 slides
Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary

Design Verification with e The language e Contains all the constructs necessary for a complete verification tool Allows objects in the verification environment to be extended Needs to express constraints Coverage

946 views • 80 slides
Use of Exterior Contours and Shape Features in Off-line Signature Verification Siyuan Chen and

Use of Exterior Contours and Shape Features in Off-line Signature Verification Siyuan Chen and

Use of Exterior Contours and Shape Features in Off-line Signature Verification Siyuan Chen and Sargur Srihari Center of Excellence for Document Analysis and Recognition (CEDAR) University at Buffalo State University of New York, USA Overview

290 views • 18 slides
OSVGAN: Generative Adversarial Networks for Data Scarce Online Signature Verification Chandra

OSVGAN: Generative Adversarial Networks for Data Scarce Online Signature Verification Chandra

OSVGAN: Generative Adversarial Networks for Data Scarce Online Signature Verification Chandra Sekhar Vorugunti Sai Sasikanth Indukuri Viswanath Pulabaigari Rama Krishna Sai Gorthi IIIT SriCity

86 views • 5 slides
CDA 4253 FPGA System Design FPGA Architectures Hao Zheng Dept of Comp Sci &amp; Eng U of South

CDA 4253 FPGA System Design FPGA Architectures Hao Zheng Dept of Comp Sci &amp; Eng U of South

CDA 4253 FPGA System Design FPGA Architectures Hao Zheng Dept of Comp Sci &amp; Eng U of South Florida 1 How to HW Reconfigurable Not SW Change structure Change connections among components Change logic functions of components

711 views • 70 slides
CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test,

CMPE 646: VLSI Design Verification and Test Course: CMPE 646: VLSI Design Verification and Test, Fall 2006. 3 credits. Course Instructor: Dr. Jim Plusquellic, Professor of Computer Science &amp; Electrical Engineering Office: ECS 212,

760 views • 3 slides
Power-Driven DNN Dataflow Optimization on FPGA Qi Sun 1 , Tinghuan Chen 1 , Jin Miao 2 , Bei Yu 1 1

Power-Driven DNN Dataflow Optimization on FPGA Qi Sun 1 , Tinghuan Chen 1 , Jin Miao 2 , Bei Yu 1 1

Power-Driven DNN Dataflow Optimization on FPGA Qi Sun 1 , Tinghuan Chen 1 , Jin Miao 2 , Bei Yu 1 1 The Chinese University of Hong Kong 2 Cadence Design Systems, Inc. 1 / 22 FPGA Targeted DNN Accelerator Design Flow Dataflow Synthesis HLS Model

452 views • 22 slides
CDA 4253 FPGA System Design Op7miza7on Techniques Hao Zheng Comp S ci &amp; Eng Univ of South

CDA 4253 FPGA System Design Op7miza7on Techniques Hao Zheng Comp S ci &amp; Eng Univ of South

CDA 4253 FPGA System Design Op7miza7on Techniques Hao Zheng Comp S ci &amp; Eng Univ of South Florida 1 Extracted from Advanced FPGA Design by Steve Kilts 2 Op7miza7on for Performance 3 Performance Defini7ons Throughput : the number

520 views • 41 slides
Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical

Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical

Tsunami simulation on FPGA/GPU Tsunami simulation on FPGA/GPU and its analysis based on Statistical Model Checking Masahiro Fujita VLSI Design and Education Center (VDEC) University of Tokyo 1 2 Outline What Tsunami simulation means in

1.25k views • 44 slides

More recommend