8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors

Erich Wenger; Thomas Unterluggauer; Mario Werner

doi:10.1007/978-3-319-03515-4_16

8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors

Erich Wenger, Thomas Unterluggauer, Mario Werner

Institute of Applied Information Processing and Communications (7050)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

The decision regarding the best suitable microprocessor for a given task is one of the most challenging assignments a hardware designer has to face. In this paper, we make a comparison of cycle-accurate VHDL clones of the 8-bit Atmel ATmega, the 16-bit Texas Instruments MSP430, and the 32-bit ARM Cortex-M0+. We investigate their runtime, chip area, power, and energy characteristics regarding Elliptic Curve Cryptography (ECC), one of the practically most resource-critical public-key cryptography systems. If ECC is not implemented with greatest care, its implementation can lead to excruciating runtimes or enable practical side-channel attacks. Considering those important requirements, we present a constant runtime, side-channel protected, and resource saving scalar multiplication algorithm. To tap the full potential of all three microprocessors, we perform assembly optimizations and add carefully crafted instruction-set extensions. To the best of our knowledge, this is the first thorough software and hardware comparison of these three embedded microprocessors

Original language	English
Title of host publication	Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings
Place of Publication	Berlin Heidelberg
Publisher	Springer
Pages	244-261
DOIs	https://doi.org/10.1007/978-3-319-03515-4_16
Publication status	Published - 2013

Publication series

Name	Lecture Notes in Computer Science
Volume	8250

Fields of Expertise

Information, Communication & Computing

Treatment code (Nähere Zuordnung)

Experimental
Application
Review

Access to Document

10.1007/978-3-319-03515-4_16

Leipzig_WohlmuthAccepted author manuscript, 2.47 MB

NewP@ass - New verification & valdidation methods enabling widespread use of Privacy and @nonymity in electronically secured systems
Röck, F., Unterluggauer, T., Könighofer, R., Mangard, S., Wenger, E., Spreitzer, R. C., Mendel, F., Schmidt, J. & Bloem, R.
1/05/12 → 31/05/15
Project: Research project
EU - TAMPRES - TAMper Resistant Sensor node
Hutter, M., Kirschbaum, M., Plos, T., Korak, T., Wenger, E. & Schmidt, J.
1/10/10 → 30/09/13
Project: Research project
VLSI Design
Medwed, M., Wenger, E., Aigner, M. J., Posch, K., Hutter, M., Kirschbaum, M., Schmidt, J., Posch, R., Dominikus, S., Szekely, A., Feldhofer, M. & Plos, T.
1/01/95 → 15/07/19
Project: Research area

Cite this

Wenger, E., Unterluggauer, T., & Werner, M. (2013). 8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors. In Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings (pp. 244-261). (Lecture Notes in Computer Science; Vol. 8250). Springer. https://doi.org/10.1007/978-3-319-03515-4_16

8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors. / Wenger, Erich; Unterluggauer, Thomas; Werner, Mario.
Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings. Berlin Heidelberg: Springer, 2013. p. 244-261 (Lecture Notes in Computer Science; Vol. 8250).

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Wenger, E, Unterluggauer, T & Werner, M 2013, 8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors. in Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings. Lecture Notes in Computer Science, vol. 8250, Springer, Berlin Heidelberg, pp. 244-261. https://doi.org/10.1007/978-3-319-03515-4_16

@inproceedings{ce396301cc534357aad527c845e74e0a,

title = "8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors",

abstract = "The decision regarding the best suitable microprocessor for a given task is one of the most challenging assignments a hardware designer has to face. In this paper, we make a comparison of cycle-accurate VHDL clones of the 8-bit Atmel ATmega, the 16-bit Texas Instruments MSP430, and the 32-bit ARM Cortex-M0+. We investigate their runtime, chip area, power, and energy characteristics regarding Elliptic Curve Cryptography (ECC), one of the practically most resource-critical public-key cryptography systems. If ECC is not implemented with greatest care, its implementation can lead to excruciating runtimes or enable practical side-channel attacks. Considering those important requirements, we present a constant runtime, side-channel protected, and resource saving scalar multiplication algorithm. To tap the full potential of all three microprocessors, we perform assembly optimizations and add carefully crafted instruction-set extensions. To the best of our knowledge, this is the first thorough software and hardware comparison of these three embedded microprocessors",

author = "Erich Wenger and Thomas Unterluggauer and Mario Werner",

year = "2013",

doi = "10.1007/978-3-319-03515-4_16",

language = "English",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "244--261",

booktitle = "Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings",

}

TY - GEN

T1 - 8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors

AU - Wenger, Erich

AU - Unterluggauer, Thomas

AU - Werner, Mario

PY - 2013

Y1 - 2013

N2 - The decision regarding the best suitable microprocessor for a given task is one of the most challenging assignments a hardware designer has to face. In this paper, we make a comparison of cycle-accurate VHDL clones of the 8-bit Atmel ATmega, the 16-bit Texas Instruments MSP430, and the 32-bit ARM Cortex-M0+. We investigate their runtime, chip area, power, and energy characteristics regarding Elliptic Curve Cryptography (ECC), one of the practically most resource-critical public-key cryptography systems. If ECC is not implemented with greatest care, its implementation can lead to excruciating runtimes or enable practical side-channel attacks. Considering those important requirements, we present a constant runtime, side-channel protected, and resource saving scalar multiplication algorithm. To tap the full potential of all three microprocessors, we perform assembly optimizations and add carefully crafted instruction-set extensions. To the best of our knowledge, this is the first thorough software and hardware comparison of these three embedded microprocessors

AB - The decision regarding the best suitable microprocessor for a given task is one of the most challenging assignments a hardware designer has to face. In this paper, we make a comparison of cycle-accurate VHDL clones of the 8-bit Atmel ATmega, the 16-bit Texas Instruments MSP430, and the 32-bit ARM Cortex-M0+. We investigate their runtime, chip area, power, and energy characteristics regarding Elliptic Curve Cryptography (ECC), one of the practically most resource-critical public-key cryptography systems. If ECC is not implemented with greatest care, its implementation can lead to excruciating runtimes or enable practical side-channel attacks. Considering those important requirements, we present a constant runtime, side-channel protected, and resource saving scalar multiplication algorithm. To tap the full potential of all three microprocessors, we perform assembly optimizations and add carefully crafted instruction-set extensions. To the best of our knowledge, this is the first thorough software and hardware comparison of these three embedded microprocessors

U2 - 10.1007/978-3-319-03515-4_16

DO - 10.1007/978-3-319-03515-4_16

M3 - Conference paper

T3 - Lecture Notes in Computer Science

SP - 244

EP - 261

BT - Progress in Cryptology - INDOCRYPT 2013, 14th International Conference on Cryptology in India, Mumbai, India, December 2013, Proceedings

PB - Springer

CY - Berlin Heidelberg

ER -

8/16/32 Shades of Elliptic Curve Cryptography on Embedded Processors

Abstract

Publication series

Fields of Expertise

Treatment code (Nähere Zuordnung)

Access to Document

Fingerprint

Projects

NewP@ass - New verification & valdidation methods enabling widespread use of Privacy and @nonymity in electronically secured systems

EU - TAMPRES - TAMper Resistant Sensor node

VLSI Design

Cite this