Computer Arithmetic for Cryptography and Reliable Security: Algorithms and Architectures

密码学和可靠安全的计算机算法：算法和架构

• 批准号: RGPIN-2020-05798
• 负责人: ReyhaniMasoleh, Arash
• 金额: $ 2.4万
• 依托单位: University of Western Ontario
• 依托单位国家: 加拿大
• 项目类别: Discovery Grants Program - Individual
• 财政年份: 2022
• 资助国家: 加拿大
• 起止时间: 2022-01-01 至 2023-12-31
• 项目状态: 已结题
• 来源: https://www.nserc-crsng.gc.ca/ase-oro/Details-Detailles_eng.asp?id=752242
• 关键词: Computer; Arithmetic; Cryptography; Reliable; Security

Technology is accelerating, computing systems are becoming more powerful, and attackers are using sophisticated techniques and artificial intelligence. As a result, stronger security and cryptographic schemes with larger keys need to be implemented into smart devices and systems to protect sensitive data, computing systems, and network. The cryptographic systems are computationally complex and so their performance heavily relies on their efficient computations, specially in resource constrained embedded systems, such as smart cards, radio frequency identification tags, Internet of Things, and nodes in wireless sensor networks, where the power consumption, memory, and bandwidth are very limited. Efficient and reliable designs and implementations of cryptographic computations are challenging due to their complex nature. The main objective of this research is to propose novel computer arithmetic algorithms and architectures for cryptographic primitives and reliable security systems based on state of the art Advanced Encryption Standard (AES), the AES-GCM (Galois/counter mode) authenticated encryption, and Elliptic Curve Cryptography (ECC) as well as several submissions to the NIST lightweight cryptography standardization process. We are interested in devising the hardware implementations of such cryptographic systems for lightweight, low-power and high-speed target applications. We investigate the design of original algorithms and architectures for field arithmetic operations used in the AES, AES-GCM, and ECC cryptosystems. Choosing an appropriate field representation plays a critical role on the implementation performance of these cryptosystems. We consider different bases and representations to design the high-level and low-level arithmetic computations based on different design metrics. We investigate the effects of architectural design in terms of types of inputs and outputs (serial or parallel) and appropriate digit-level operations to find novel arithmetic algorithms/architectures with optimum digit sizes. Then, the optimum designs of the underlying arithmetic operations will be incorporated into the corresponding cryptosystems. Also, we design innovative reliable security systems to counteract natural faults and fault attacks. This research is very important for current and future technologies due to the increase in the density, clock frequency, and power dissipation per unit in very large scale integrated circuits. More importantly, fault attacks have become a serious concern in cryptography. This part of research will be based on adopting efficient concurrent error control coding approaches which has low overhead with acceptable error coverage. The outcome of this research leads to more secure and reliable cryptographic and security systems with lower cost and higher performance. It will also contribute to training highly qualified personnel for academia and Canadian industry.

技术正在加速发展，计算系统变得越来越强大，攻击者正在使用复杂的技术和人工智能。因此，需要在智能设备和系统中实现更强的安全性和更大密钥的加密方案，以保护敏感数据、计算系统和网络。加密系统的计算复杂，其性能在很大程度上依赖于其高效的计算，特别是在资源受限的嵌入式系统中，如智能卡、射频识别标签、物联网和无线传感器网络中的节点，这些系统的功耗、内存和带宽都非常有限。由于加密计算的复杂性，高效可靠的设计和实现具有挑战性。本研究的主要目标是基于先进的高级加密标准（AES）、AES- gcm（伽罗瓦/计数器模式）认证加密和椭圆曲线加密（ECC），以及向NIST轻量级加密标准化过程提交的几个文件，为加密原语和可靠的安全系统提出新的计算机算法和架构。我们有兴趣为轻量级、低功耗和高速目标应用设计这种加密系统的硬件实现。我们研究了用于AES、AES- gcm和ECC密码系统的域算术运算的原始算法和架构的设计。选择合适的字段表示对这些密码系统的实现性能起着至关重要的作用。基于不同的设计度量，我们考虑了不同的基和表示来设计高级和低级的算法计算。我们根据输入和输出类型（串行或并行）和适当的数字级操作来研究架构设计的影响，以找到具有最佳数字大小的新颖算术算法/架构。然后，将基础算术运算的优化设计纳入相应的密码系统中。此外，我们设计了创新可靠的安全系统，以抵消自然故障和故障攻击。由于大规模集成电路的密度、时钟频率和单位功耗的增加，本研究对当前和未来的技术非常重要。更重要的是，错误攻击已经成为密码学中的一个严重问题。这部分的研究将基于采用高效的并发错误控制编码方法，这种方法开销低，错误覆盖率可接受。本研究的成果将带来更安全可靠、成本更低、性能更高的加密和安全系统。它还将有助于为学术界和加拿大工业界培训高素质人才。