lightweight cryptography
play

Lightweight Cryptography Mission Accomplished? Peter Rombouts - PowerPoint PPT Presentation

Nov 22, 2023 •263 likes •478 views

Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013 Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective

  1. Lightweight Cryptography Mission Accomplished? Peter Rombouts ECRYPT II Closing Event Cryptography for 2020 Tenerife January 23 rd , 2013

  2. Organization Lightweight Cryptography: Mission Accomplished? Introduction Technical perspective Business perspective Examples Evaluation Next? PUBLIC 2 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  3. Introduction Why Lightweight Cryptography? RFID tags – Small transponders, command-reply interrogation by a reader – Passively powered by reader field (not always) What if… … cryptography was possible on these devices ? – Applications ? – Technical constraints ? PUBLIC 3 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  4. Introduction Applications Luxury Goods Anti-counterfeiting Privacy Untraceability Perishable Goods Quality monitoring Storage Warranty Certificates PUBLIC 4 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  5. Introduction Technical constraints Cost of RFID tag – RFID market is cost driven – Cost determined by • Area of tag (GE) • Silicon process technology • Assembly Read range – Application specific requirement – Read range determined by • Power consumption • Operating Frequency Transaction time – Application specific requirement – Transaction time determined by • Clock speed & Memory access Robustness against attacks PUBLIC 5 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  6. Progress Algorithms & Implementations 9000 8000 AES (128/128) PRESENT (80/64) 7000 mCrypton (64/64) 6000 Gate Count KATAN (80/32-64) 5000 HIGHT (64/64) 4000 PUFFIN (128/64) 3000 TWINE (80/64) LED (64/64) 2000 KLEIN (80/64) 1000 PICCOLO (80/64) 0 2000 2004 2008 2012 PUBLIC 6 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  7. Progress Algorithms & Implementations 1400 AES (128/128) 1200 Latency (cycles/block) PRESENT (80/64) 1000 mCrypton (64/64) KATAN (80/32-64) 800 HIGHT (64/64) 600 PUFFIN (128/64) TWINE (80/64) 400 LED (64/64) 200 KLEIN (80/64) PICCOLO (80/64) 0 2000 2004 2008 2012 PUBLIC 7 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  8. Progress Algorithms & Implementations 9000 8000 AES (128/128) PRESENT (80/64) 7000 mCrypton (64/64) 6000 Gate Count KATAN (80/32-64) 5000 HIGHT (64/64) 4000 PUFFIN (128/64) 3000 TWINE (80/64) LED (64/64) 2000 KLEIN (80/64) 1000 PICCOLO (80/64) 0 0 250 500 750 1000 1250 Latency (cycles/block) PUBLIC 8 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  9. Progress Standardization: ISO/IEC 29192 ISO/IEC 29192: Information technology – Security techniques – Lightweight cryptography – Part 1: General PUBLISHED • Security requirements, • Classification requirements • Implementation requirements PUBLISHED – Part 2: Block ciphers • PRESENT: block size of 64 bits and a key size of 80 or 128 bits; • CLEFIA: block size of 128 bits and a key size of 128, 192 or 256 bits. PUBLISHED – Part 3: Stream ciphers • Enocoro: key size of 80 or 128 bits; • Trivium: key size of 80 bits. – Part 4: Mechanisms using asymmetric techniques • Under Development PUBLIC 9 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  10. Progress Standardization: EPC Global EPC Gen-2 UHF RFID Protocol REVIEW – For Communications at 860 MHz – 960 MHz – Version 2.0.0 New Commands – Security – Challenge – KeyUpdate – Authenticate – TagPrivilege – AuthComm – ReadBuffer – SecureComm – Untraceable Commands – File Management – FileOpen – FilePrivilege – FileList – FileSetup Mirrored in ISO/IEC 18000-63 PUBLIC 10 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  11. Progress Standardization: EPC Global Interrogator Interrogator Tag Tag (Cryptographic Suite) (Standard) (Standard) (Cryptographic Suite) Air interface & Commands Interrogator processing: Message construction Message – Defined by EPC Authenticate Message Global Message Tag processing: - Message processing - Response construction Response IPReply (Done) Response Cryptographic Response 2 step Interrogator processing: interro- - Response processing functionality gator - Message construction authen- Message tication – Defined by Authenticate Message ISO/IEC 29167 Message Tag processing: IPReply (Busy) - Message processing - Response construction Response IPReply (Done) Response State machine Response – Each standard Interrogator processing: Response processing EPC Air Interface Authentication Protocol / SecureComm PUBLIC 11 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  12. Progress Standardization: ISO/IEC 29167 ISO/IEC 29167 : Information technology – Automatic identification and data capture techniques – Part 1: General PUBLISHED – Part 10: AES-128 (CD) – Part 11: Present 80 (CD) – Part 12: ECC-DH (CD) – Part 13: Grain-128A (WD) – Part 14: AES-OFB (WD) – Part 15: XOR (WD) – Part 16: ECDSA ECDH (CD) – Part 17: Crypto GPS (CD) – Part 1x: HB2 (NWIP) – Part 1x: RAMON (NWIP) PUBLIC 12 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  13. Lightweight Cryptography YES Did it deliver on its promise? NXP UCODE Crypto PRESENT-80 crypto core – ISO 29192-2 compliant – Only Tag Authentication Silicon available Chip size 0.7 mm2 I2C interface 4kb memory Also an ECC version PUBLIC 13 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  14. Lightweight Cryptography YES Did it deliver on its promise? PASTEUR Sensor Platform NXP UCODE I2C Sensor: MIST 1431 (RH, T, light)  SEN 300 LPC 1114 Batteries (only for sensor) Single chip solution PUBLIC 14 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  15. Lightweight Cryptography MAYBE Unsolved issues Applications require more than just the crypto core ! Protocol: Randomness Device: Secure Storage Robustness: Countermeasures PUBLIC 15 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  16. Lightweight Cryptography New directions Countermeasures – Currently: add-on – Future: Algorithms designed to be protected Other primitives – Hash, Public Key Low-latency – Lightweight primitives useful for other applications? – Ultra-high speed applications – Some algorithms better than others PUBLIC 16 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  17. Low-Latency Cryptography Applications When response time is critical – Solid state disk – Network – Real time When clock frequency is limited – FPGA Energy efficiency – Wireless sensors – Batteries PUBLIC 17 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  18. Low-Latency Cryptography Evaluation results 400 350 AES (128/128) Gate Count (kGE) 300 PRESENT (80-128/64) 250 mCrypton (64-96-128/64) MINI-AES (64/64) 200 NOEKEON (128/128) 150 LED (64-128/64) 100 KLEIN (80-96-128/64) PRINCE (128/64) 50 0 0 10 20 30 40 50 Latency (ns) PUBLIC 18 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  19. Conclusions Lightweight Cryptography A lot of progress has been made – Algorithms & Implementations – Eco-system: Standards It has been integrated into products – Focus on Tag Authentication – Inclusion of sensors Some unsolved issues New applications emerging – Low-latency Cryptography There is still a lot to be explored ! PUBLIC 19 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

  20. PUBLIC 20 Lightweight Cryptography / ECRYPT II Closing Event / Peter Rombouts January 10, 2013 -

Recommend

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and

Lightweight Cryptography and and RFID Security Svetla Nikova COSIC KUL COSIC, KULeuven and UTwente d UT t Overview Lightweight cryptography - state of the art Comparison Standard vs. Lightweight Comparison Standard vs. Lightweight

599 views • 39 slides
On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1

On the Design and Use of Lightweight Cryptography for Cyber-Physical Systems Hirotaka Yoshida 1 1 AIST, Japan Kolkata, India (16 November 2018) 1 / 38 Table of contents 1 Introduction 2 Lightweight Crypto Stack for Circuit/RAM Size Requirement

670 views • 38 slides
Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world

Lightweight Cryptography Mar a Naya-Plasencia Inria, France Summer School on real-world crypto and privacy Sibenik, Croatia - June 15 2018 Outline Symmetric lightweight primitives Most used cryptanalysis Impossible

1.31k views • 76 slides
Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors

Lightweight Cryptography - Hardware Perspective - Miroslav Kne evi NXP Semiconductors Thanks to the teams of KATAN, SPONGENT, PRINCE, FIDES Design and Security of Cryptographic Functions, Algorithms, and Devices, PAGE: 1 of 33 Summer

590 views • 45 slides
The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work with Alex Biryukov November 18, 2017 Cryptacus Workshop Taken from a document writen originally in English. The programming of billions of processors

903 views • 75 slides
NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance

NIST Lightweight Cryptography Workshop 2015 Session VII: Implementations & Performance Performance of State-of-the-Art Cryptography on ARM-based Microprocessors Hannes Tschofenig & Manuel Pegourie-Gonnard (Hannes.Tschofenig@arm.com,

509 views • 40 slides
PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST

PRESS RELEASE Trusted Objects expert on lightweight cryptography gives a presentation to the NIST Alexan Alexandre dre Adomn Adomnicai, icai, cryptograph cryptography y expert expert at at Truste Trusted d Obje Objects cts will will

174 views • 3 slides
Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St

Towards Green Cryptography: a Comparison of Lightweight Ciphers from the Energy Viewpoint St ephanie Kerckhof, Fran cois Durvaux, C edric Hoquet, David Bol, Fran cois-Xavier Standaert CHES 2012 September 2012 UCL Crypto Group

931 views • 49 slides
Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020,

Future Challenges for Lightweight Cryptography F.-X. Standaert UCL Crypto Group Crypto for 2020, Tenerife, January 2013 Outline 1 1. Past results 2. Future challenges 1. Block ciphers 2 TEA, NOEKEON, AES, SERPENT, ICEBERG, HIGHT,

844 views • 68 slides
Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing

Lightweight Cryptography and Classification of AEAD Modes Nilanjan Datta Institute for Advancing Intelligence (IAI), TCG CREST International Crypto-Webniar 2020 Aug 30, 2020 N. Datta (IAI, TCG CREST) Lightweight Crypto and Classification of

1.62k views • 98 slides
Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1.

Its time to Think Lightweight! www.thinklightweight.com TO D A Y S TO P IC S 1. About Think Lightweight 2. What are Lightweight Structures? 3. Industry Applications 4. Product Line Review 5. Think Lightweight Component

832 views • 43 slides
Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku

Light Lightweight Cryptography Pascal Lafourcade (LIMOS, France) Takaaki Mizuki (Tohoku University, Japan) Atsuki Nagao (Ochanomizu University, Japan) Kazumasa Shinagawa (Tokyo Tech / AIST, Japan) 1 2 3 4 5 6 Material 7 Agenda 1.

1.3k views • 38 slides
On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS

On the Lightweight Design Choices for Diffusion Layer of Block Ciphers SUMANTA SARKAR TCS Innovation Labs December 11, 2017 SUMANTA SARKAR Lightweight Cryptography Internet of Things / Connected Cars Internet of things (IoT): Network of

786 views • 45 slides
Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert

Entropy as a Service Unlocking the full potential of cryptography Apostol Vassilev Robert Staples STVM/CSD/NIST A perspective: cryptography evolves very fast to provide security in cyberspace Emerging crypto technologies - lightweight crypto

199 views • 17 slides
The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will

The lightweight beam for Heavyweight applications The impact of this lightweight steel beam will revolutionise the international high-rise construction industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight

417 views • 12 slides
HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography &

HOST Cryptography I ECE 525 Cryptography Handbook of Applied Cryptography & http://cseweb.ucsd.edu/users/mihir/cse207/ Brief History: Proliferation of computers and communication systems in 1960s brought with it a demand to protect

273 views • 24 slides
Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan

Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan

Lightweight Encryption for Email Ben Adida ben@mit.edu 7 July 2005 joint work with Susan Hohenberger and Ronald L. Rivest MIT Cryptography and Information Security Group Motivation To Improve/Restore the Usefulness of Email

487 views • 28 slides
The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept

The lightweight beam for Heavyweight applications The impact of this lightweight beam concept will revolutionise the aviation industry Tony Zaccarini and Dr Patrick OBrien The lightweight beam for Heavyweight applications Patent Applied For

479 views • 12 slides
New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K.

New Lightweight DES Variants Suited for RFID Applications G. Leander, C. Paar, A. Poschmann, K. Schramm Workshop on Fast Software Encryption 2007 Outline Introduction Why lightweight? Why choose DES? DESL: DES Lightweight Why change DES?

364 views • 12 slides
Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -> C enciphering functions D: C x K

446 views • 40 slides
Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY

Intro to Cryptography Definitions Cryptography Cryptanalysis Cryptology CRYPTOGRAPHY Plaintext Cyphertext More definitions block cipher stream cipher hash function shared key public key digital signature

383 views • 16 slides
Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do?

PQCRYPTO Summer School on Post-Quantum Cryptography 2017 Stefan Klbl June 20th, 2017 DTU Compute, Technical University of Denmark Symmetric Key Cryptography Introduction to Symmetric Key Cryptography What can we do? Authentication

711 views • 47 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

453 views • 11 slides
Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and

Cryptography Cryptography Concepts and Terminology Security Concepts Cryptography Concepts and Terminology Cryptography Concepts Cryptography Notation and Terminology Cryptography School of Engineering and Technology CQUniversity

322 views • 11 slides

More recommend