Biao Min,Ray C. C. Cheung,Yan Han

DOI: https://doi.org/10.1109/iecon.2011.6119963

2011-01-01

Abstract:Hummingbird is an ultra-lightweight cryptography targeted for resource-constrained devices such as RFID tags, smart cards and sensor nodes. It has been implemented across different target platforms. In this paper, we present two different FPGA-based implementations for both throughput-oriented (TO) and area-oriented (AO) Hummingbird Cryptography (HC). The throughput-oriented design is optimized for operation speed while the area-oriented design consumes smaller area resource usage. Both proposed designs have been implemented on a Xilinx low-cost Spartan-3 XC3S200 FPGA. When compared with existed methods, the results from the proposed designs show that our designs cost less FPGA slices while the same throughput can be obtained. The proposed architectures are designed to best suit for adding customizable security to embedded control systems.

Daniel Engels,Xinxin Fan,Guang Gong,Honggang Hu,Eric M. Smith

DOI: https://doi.org/10.1201/9781420068405.ch6

2010-01-01

Abstract:Motivated by the design of the well-known Enigma machine, we present a novel ultra-lightweight encryption scheme, referred to as Hummingbird, and its applications to a privacy-preserving identiflcation and mutual authentication protocol for RFID applications. Hummingbird can provide the designed security with a small block size and is therefore ex- pected to meet the stringent response time and power consumption requirements described in the ISO protocol without any modiflcation of the current standard. We show that Hum- mingbird is resistant to the most common attacks such as linear and difierential cryptanalysis. Furthermore, we investigate some properties for integrating the Hummingbird into a privacy- preserving identiflcation and mutual authentication protocol.

Xinxin Fan,Honggang Hu,Guang Gong,Eric M. Smith,Daniel Engels

DOI: https://doi.org/10.1109/ICITST.2009.5402515

2009-01-01

Abstract:The radiofrequency identification (RFID) technology provides an extensible, flexible and secure measure against product counterfeiting. However, due to the harsh cost and power constraints of RFID tags only dedicated cryptographic engines or low-power consumption microcontrollers can be integrated into tags to implement various security mechanisms. In this contribution, we investigate efficient implementation of an ultra-lightweight cryptographic algorithm Hummingbird on a zero-power 4-bit MARC4 microcontroller from Atmel and compare the performance of Hummingbird to another ultra-lightweight block cipher PRESENT on the same platform. Our experimental results show that after a system initialization phase Hummingbird can achieve about 58% faster throughput than the block cipher PRESENT on a 4-bit ATAM893-D microcontroller running at 16 KHz, 500 KHz and 2 MHz, respectively. In particular, Hummingbird can process one data block with less than 12 ms under a typical low power configuration of 4-bit microcontrollers such as an 1.8 V supply voltage and a 500 kHz clock frequency.

Huafeng CHEN,Haibin SHEN,Xiaolang YAN

2008-01-01

Abstract:The design-for-testability structure based on scan-chain often compromises the security of crypto chips.A method to attack certain hardware implementation of elliptic curve cryptography was presented.And an easy but effective secure scan method against the attack was proposed,which would not compromise the security of the chip,while maintaining high fault coverage.By controlling operational mode of the chip,the disability mechanism of scan enable signal was applied.The scan function was disabled when there existed security information in the chip.It solved the problem of secure information disclosure caused by scan chain design.

MengQin Xiao,Xiang Shen,Yuqing Yang,Junyu Wang

DOI: https://doi.org/10.1109/ICSICT.2010.5667322

2010-01-01

Abstract:Hummingbird algorithm is a newly proposed lightweight cryptographic algorithm targeted for low-cost RFID tag. In this paper, we present a hardware implementation of this algorithm using SMIC0.13 μm CMOS process. Methods are used to reduce the unnecessary clock toggling and data toggling to reduce dynamic power. Simulation results show that the total area of our design is 14,735 μm2. It requires 16 clock cycles to encrypt 16-bit data (an additional 69 clock cycles for initialization is needed), and consumes 1.08 μw power for 1.2 V power supply at 100 KHz.

Junyu Wang

2011-01-01

Abstract:Hummingbird algorithm needs small area for implementation and low power,so it is suitable for safety encryption of Radio Frequency Identification(RFID) tags.This paper uses SMIC 0.13 μm to implement Hummingbird algorithm.By reducing the unnecessary clock toggling and data toggling,it reduces dynamic power.Simulation experimental results prove that Hummingbird algorithm can meet the requirements of hardware cost,power consumption and response time.

MengQin Xiao,Xiang Shen,Junyu Wang,Joseph Crop

DOI: https://doi.org/10.1109/ASICON.2011.6157326

2011-01-01

Abstract:Radio frequency identification (RFID) is a technology for automatic object identification. It has wide applications in many areas such as manufacturing, transportation, healthcare, and so on. However, many RFID systems are suffering from security issues. In this paper, we present an implementation of a secure UHF RFID tag baseband with a Hummingbird (HB) cryptographic engine using the SMIC 0.13μm technology. An improvement of the Gen2 protocol based on our secure engine is proposed to enhance security. The implementation results show that the area of our baseband is 16,986 gate equivalents and the secure engine takes 23.6% of the entire die area. The overall power consumption of our baseband is 30.67μW at a clock frequency of 1.28MHz and with 1.2V power supply, which is suitable for resource-constrained RFID tags.

Hao Chen,Tao Wang,Xinjie Zhao,Fan Zhang,Yunfei Ma,Xiaohan Wang

DOI: https://doi.org/10.13232/j.cnki.jnju.2017.06.016

2017-01-01

Abstract:HIGHT is built by using ARX(addition modulo 2n,bit rotation and XOR)structure,which is suitable for resource-constrained environment such as Radio Frequency Identification(RFID)tag or ubiquitous computing system and it has been adopted as a standard block cipher by Telecommunications Technology Association(TTA)of Korea and ISO/IEC 18033-3.Since the accurate location of the injected fault cannot be successfully determined when fault failures are occurred,the success rate of the existing algebraic fault attack on HIGHT is always less than 100%.To improve the success rate and efficiency,a fault tolerant algebraic fault attack is proposed in this paper.Firstly,fault failures and its properties are studied and a complete distinguisher based on fault failures,fault locations and cipher differences for determining the accurate fault locations in all different scenarios is built.Then,HIGHT is described as a set of algebraic equations.The faulty ciphertext is generated via fault injections and fault differences are represented with algebraic equations.To make maximum use of the injected faults,fault failures are also described as a set of algebraic equations.In the meantime,the procedure of constructing algebraic equations for the inj ected faults is optimized to perform automatically to further make the attack easy to launch.Finally,the CryptoMiniSAT solver is applied to solve the equations for the key and the number of fault injections that required and success rate of the proposed attack are analyzed in theory.The simulation experiments show that compared with the existing algebraic fault attack on HIGHT,the success rate of the proposed attack has been improved to 100% and the method of con-structing algebraic equations for the injected faults is easier and can be performed automatically,the entire mater key bytes can be fully recovered in a rather smaller time by solving the algebraic equations with the CryptoMiniSAT solver,and the proposed attack can be easily extended to other cipher which has the similar structure.

Fan Zhang,Yiran Zhang,Shengwen Shi,Shize Guo,Ziyuan Liang,Samiya Qureshi,Congyuan Xu

DOI: https://doi.org/10.1109/PADSW.2018.8644906

2018-01-01

Abstract:An optimized lightweight Hardware Trojan (HT)based fault attack is proposed, especially for those resource-constrained environments such as IoT networks. Firstly, Algebraic fault analysis (AFA)is introduced to evaluate different fault models and search for the optimal one. Next, considering the limited resource, a lightweight HT is carefully designed which only flips one bit of the circuit in IoT device. Finally, AFA is applied again to exploit the fault and recover the secret key. An illustrative attack is demonstrated on DES implemented on an FPGA platform, SASEBO-GII. This paper shows that, for single bit fault injection at different rounds or different indexes in the same round, the reduced key search space of DES varies. The proposed technique can search for the optimal fault model, guide the lightweight Hardware Trojan design and automatically recover the secret key. Only one fault is required to recover the secret key of DES, which improves the stealthiness of the designed Hardware Trojan in IoT networks. The entire attack framework can also be applied to other block ciphers such as AES and PRESENT.

Hao Chen,Tao Wang,Fan Zhang,Xinjie Zhao,Wei He,Lumin Xu,Yunfei Ma

DOI: https://doi.org/10.1155/2017/8051728

IF: 1.968

2017-01-01

Security and Communication Networks

Abstract:HIGHT is a lightweight block cipher which has been adopted as a standard block cipher. In this paper, we present a bit-level algebraic fault analysis (AFA) of HIGHT, where the faults are perturbed by a stealthy HT. The fault model in our attack assumes that the adversary is able to insert a HT that flips a specific bit of a certain intermediate word of the cipher once the HT is activated. The HT is realized by merely 4 registers and with an extremely low activation rate of about 0.000025. We show that the optimal location for inserting the designed HT can be efficiently determined by AFA in advance. Finally, a method is proposed to represent the cipher and the injected faults with a merged set of algebraic equations and the master key can be recovered by solving the merged equation system with an SAT solver. Our attack, which fully recovers the secret master key of the cipher in 12572.26 seconds, requires three times of activation on the designed HT. To the best of our knowledge, this is the first Trojan attack on HIGHT.

Chao Jin,Zhejing Bao,Weiwei Miao,Zeng,Xiaogang Wei,Rui Zhang

DOI: https://doi.org/10.1109/access.2023.3290211

2021-01-01

Abstract:The white-box implementation of cryptography algorithm can hide key information even in the white-box attack context owing to the means of obfuscation. However, under the deliberately designed attack, there is still a risk of the information being recovered within a certain time complexity. In this paper, a lightweight nonlinear white-box SM4 implementation is proposed to prevent several typical attacks from extracting the secret key, which hides the encryption and decryption process in obfuscated lookup tables. Aiming to improve the diversity and ambiguity of the lookup tables as well as resist the different types of white-box attacks, the random bijective nonlinear mappings are applied as scrambling encodings of the lookup tables. Moreover, the memory occupation of the implementation doesn't increase significantly by simplifying the structure and using concatenation code. Through several quantitative indicators, including memory size, diversity, ambiguity, the time complexity required to extract the key, and the value space of the key and external encodings, it is proved that the security of the proposed implementation could been enhanced significantly, while no sacrificing the practicality, compared with the existing schemes.

Weihan Xu,Yongkang Xu,Guanting Huo,Yang,Yufeng Jin

DOI: https://doi.org/10.1109/csnt54456.2022.9787655

2022-01-01

Abstract:With the arrival of the 5G era, IoT develops and promotes rapidly and the security issues of IoT are concerned increasingly. SHA256 and SM3 are significant hash encryption algorithms that can improve the security of IoT systems. This paper proves the equivalence between partial Boolean functions of these two encryption algorithms and designs a shared security encryption circuit that can support SM3 and SHA256 modes. Compared with the traditional design, the area of this design decreases by 17.3%. To improve the speed and reduce power consumption, this design is optimized by precomputation and reducing the signal update frequency. The precomputation part shortens the critical path and increases the maximum frequency and throughput successfully. The power optimization part also improves energy efficiency. After function verification, this design can encrypt the original message correctly and efficiently and is synthesized based on the 65nm LVt process library of SMIC.

Zhanzhan Chen,Liji Wu,Zhenhui Zhang,Dehang Xiao,Xiangmin Zhang,Yan Liu

DOI: https://doi.org/10.1109/asid56930.2022.9995777

2022-01-01

Abstract:SM2 algorithm is widely used in financial IC cards. It has the advantages of fast operation speed and short signature, but it may also contain security vulnerabilities. Attackers can crack the secret key via Simple Power Analysis (SPA), which is the inexpensive and extremely effective method, causing a great threat to the security of SM2 algorithm. In order to improve the safety of SM2 algorithm, this paper introduces atomic algorithm to implement point addition and point doubling operation, and proposes precomputed Non Adjacent Form (NAF) random window algorithm to achieve scalar multiplication. Based on experimental analysis with SAKURA-G FPGA board, the improved SM2 algorithm can resist successfully SPA. Compared with the original algorithm, the time of computation is reduced by 67.5%, and the number of slice registers has increased by less than 5%. The security and speed of SM2 algorithm has been significantly improved.

Anxiao He,Xiang Li,Jiandong Fu,Haoyu Hu,Kai Bu,Chenlu Miao,Kui Ren

DOI: https://doi.org/10.1109/tifs.2023.3236806

IF: 7.231

2023-01-01

IEEE Transactions on Information Forensics and Security

Abstract:Path validation has already been incrementally deployed in the Internet architecture. It secures packet forwarding by enabling end hosts to negotiate specific forwarding paths and enforcing on-path routers to prove their forwarding behaviors along these paths. Most existing path validation solutions target static paths, paying less attention to fully dynamic paths that support flexible routing. In this paper, we present Hummingbird as the first validation solution over fully dynamic paths. It features a hidden equal-probability sampling technique. Gaining efficiency via routers probabilistically sampling packets to validate, we craft the sampling probability such that each router validates a similar amount of packets given an unknown path length. We further hide the state of whether a packet has been sampled and validated using a lightweight, non-cryptographic scheme. This prevents attackers from differentiating and selectively mis-forwarding packets. We validate security and efficiency of Hummingbird through both theoretical proof and experimental evaluation.

Umesh Uttamrao Shinde,Ravikumar Bandaru

DOI: https://doi.org/10.1038/s41598-024-65182-2

IF: 4.6

2024-06-23

Scientific Reports

Abstract:The error correction model's main purpose in heavy hexagonal quantum codes is to improve their reliability for quantum computing applications. Existing challenges include finding the optimal decoder for quantum error correction in heavy hexagonal codes. This research propels the frontier of quantum error correction, with a specific focus on tailoring topological quantum error-correcting codes for the unique challenges posed by superconducting qubits in quantum computers. In response, this research harnesses the power of deep learning, presenting a Humming sparrow optimization based self-adaptive deep CNN (HSO-based SADCNN) model designed for heavy hexagonal codes. This decoder incorporates a Self-adaptive Deep CNN (SADCNN) Noise Correction Module, a sophisticated component to refine error correction. The proposed decoder's efficacy is rigorously evaluated across varying code distances (three, five, and seven) using the Humming Sparrow Optimization (HSO) algorithm. HSO, intricately designed to fine-tune the SADCNN decoder, significantly enhances its error correction capabilities for heavy hexagonal quantum codes. The algorithm seamlessly integrates advantageous characteristics of herding and tracing from Humming Bird optimization and Sparrow search optimization, representing a critical stride in advancing the reliability of quantum computing applications, particularly within the intricate domain of heavy hexagonal quantum codes. Based upon the achievements, the Training Percentage (TP) 90 metrics demonstrate significant progress, boasting a commendable accuracy of , coupled with reduced logical error probability and a diminished bit error rate, marked at 5.51 and 3.72, respectively.

multidisciplinary sciences

Dongxia Bai,Hongbo Yu,Gaoli Wang,Xiaoyun Wang

DOI: https://doi.org/10.1007/978-3-642-39059-3_17

2013-01-01

Abstract:The cryptographic hash function SM3 is designed by X. Wang et al. and published by Chinese Commercial Cryptography Administration Office for the use of electronic certification service system in China. It is based on the Merkle-Damgård design and is very similar to SHA-2 but includes some additional strengthening features. In this paper, we apply the boomerang attack to SM3 compression function, and present such distinguishers on up to 34/35/36/37 steps out of 64 steps, with time complexities 231.4, 233.6, 273.4 and 293 compression function calls respectively. Especially, we are able to obtain the examples of the distinguishers on 34-step and 35-step on a PC due to their practical complexities. In addition, incompatible problems in the recent boomerang attack are pointed out. © 2013 Springer-Verlag.

Pedro Peris-Lopez,Julio C. Hernandez-Castro,J. M. E. Tapiador,Jan C. A. van der Lubbe

DOI: https://doi.org/10.48550/arXiv.0910.2115

2009-10-12

Abstract:In 2006, Peris-Lopez et al. [1, 2, 3] initiated the design of ultralightweight RFID protocols -with the UMAP family of protocols- involving only simple bitwise logical or arithmetic operations such as bitwise XOR, OR, AND, and addition. This combination of operations was revealed later to be insufficient for security. Then, Chien et al. proposed the SASI protocol [4] with the aim of offering better security, by adding the bitwise rotation to the set of supported operations. The SASI protocol represented a milestone in the design of ultralightweight protocols, although certain attacks have been published against this scheme [5, 6, 7]. In 2008, a new protocol, named Gossamer [8], was proposed that can be considered a further development of both the UMAP family and SASI. Although no attacks have been published against Gossamer, Lee et al. [9] have recently published an alternative scheme that is highly reminiscent of SASI. In this paper, we show that Lee et al.'s scheme fails short of many of its security objectives, being vulnerable to several important attacks like traceability, full disclosure, cloning and desynchronization.

Cryptography and Security

DeWei Wang,ZhenHui Zhang,LiJi Wu,XiangMin Zhang

DOI: https://doi.org/10.1109/icasid.2018.8693234

2018-01-01

Abstract:With the development of the Internet of Things (IoT), the application of micro-computing strips,such as RFID chips and wireless sensor networks,has become more and more widespread, bringing great convenience to people's lives. At the same time, how to ensure the security of information has attracted more and more attention. Because of the limited resources of micro-computing devices, lightweight block cipher algorithms that pursue efficiency and ensure security have emerged. The paper proposes to modify the lightweight PUFFIN algorithm in the forwarding engine switch to solve the problem of information security in the switch. The hardware circuit design of the algorithm is optimized, and each module is compiled and implemented. The serial and parallel combination is adopted in the overall implementation of the algorithm, and the simulation is successfully implemented by ModelSim software. The pipeline delay of the de-synchronization plus descrambling module is 8 TCLKs, and the data throughput rate is 100Gbps when entering the pipeline input.

Tianjie Cao,Yong Zhang

2009-01-01

Journal of Computational Information Systems

Abstract:Three effective attacks, namely impersonation attack, de-synchronization attack and backward tracing attack, against Song and Mitchell's RFID authentication scheme are identified in this paper. The impersonation attack can spoof the reader though a replay attack. The de-synchronization attack can break the synchronization between the RFID reader and the tag so that they can not authenticate each other in any following protocol runs. The backward tracing attack can identify the past interactions of a tag if the attacker knows the tag's present internal stat e. An improved RFID scheme resistant to these attacks is also proposed. © 2009 Binary Information Press August, 2009.

Jia-wei Ma,Xu-guang Guan,Tong Zhou,Tao Sun

DOI: https://doi.org/10.1109/asicon.2017.8252479

2017-01-01

Abstract:With the application of Hash-based Message Authentication Code(HMAC) in the field of security, the research on its Side Channel Attack(SCA) has been paid more and more attention. In this paper, a new countermeasure against side channel attack for HMAC-SM3 is proposed, which uses the ring oscillator technology to construct the power disorder module. Through analyzing the power consumption of the improved HMAC-SM3 hardware circuit on FPGA, we proved the effectiveness of this countermeasure. Compared with the traditional masking protection technique, the power disorder module has the advantages of simpler design, less hardware cost, and no influence on the performance at all.