Hai-bin SHEN,Hua-feng CHEN,Xiao-lang YAN

DOI: https://doi.org/10.3785/j.issn.1008-973X.2006.09.004

2006-01-01

Abstract:To accelerate point multiplication operation of elliptic curve cryptography (ECC), a fast reduction algorithm for modular operation was introduced. The algorithm applied the characteristic of the small second item's degree of irreducible polynomial in characteristic 2 finite field. Based on the algorithm and projective Montgomery point multiplication algorithm, a configurable ECC accelerator using very large scale integrated circuit technology was proposed. Scalable field design and unique pipeline technique was adapted in the accelerator. Simulation results show that the accelerator designed by the algorithm can rapidly complete ECC point multiplication operation. When 162 bits key and 192 bits key are selected, the point multiplication operation takes 0.22 ms and 0.43 ms respectively. The accelerator has simple interface and good flexibility, and provides a method for hardware implementation of public key cryptography algorithm.

Yier Jin,Haibin Shen

DOI: https://doi.org/10.1109/icsict.2006.306633

2006-01-01

Abstract:A new unbalanced exponent modular reduction over GF(2m) is proposed. The algorithm can achieve high efficiency when computing on a certain class of fields generated by f(x) = xm + T(x) where deg[T(x)] Lt C m. The algorithm is applied in modular multiplication on the basis of scalable polynomial basis(SPB) to form scalable modular multiplication. Most of irreducible polynomials used in elliptic curve cryptography(ECC) fulfil the characteristic mentioned above well. So the scalable algorithm is implemented in ECC computation with high flexibility and efficiency both in theoretic calculation and application

Jingqi Zhang,Zhiming Chen,Mingzhi Ma,Rongkun Jiang,An Wang,Weijiang Wang,Hua Dang

DOI: https://doi.org/10.1109/tvlsi.2024.3486312

2024-01-01

IEEE Transactions on Very Large Scale Integration (VLSI) Systems

Abstract:High-performance (HP) elliptic curve scalar multiplication (ECSM) hardware implementations hold significant importance in ensuring communication security in high-capacity and high-concurrence application scenarios. By analyzing the inherent priorities and parallelism in ECSMs, we proposed a novel HP ECSM algorithm and a partially parallel inversion algorithm based on the interleaved mechanism. With two dedicated multipliers and one interleaved multiplier, we introduced a compact hardware scheduling scheme to realize the consumption of four clock cycles within each loop of ECSM. The proposed HP ECSM architecture consists of two Karatsuba-Ofman multipliers (KOMs) and one classical multiplier (CM). The multiplexors and pipeline stages are meticulously designed to optimize the critical path (CP). The proposed architecture is implemented over Virtex-7 field-programmable gate array (FPGA), and the throughput reaches 158.03, 138.23, and 117.50 Mbps over $\text{GF}(2^{163})$ , $\text{GF}(2^{283})$ , and $\text{GF}(2^{571})$ using 8762, 20 451, and 41 974 slices, respectively. The comparisons with recent existing works demonstrate that the performance and throughput of our design are among the top.

Lijuan Li,Shuguo Li

DOI: https://doi.org/10.1109/tvlsi.2015.2453360

2016-01-01

IEEE Transactions on Very Large Scale Integration (VLSI) Systems

Abstract:This paper proposes an efficient pipelined architecture of elliptic curve scalar multiplication (ECSM) over GF(2m). The architecture uses a bit-parallel finite field (FF) multiplier accumulator (MAC) based on the Karatsuba-Ofman algorithm. The Montgomery ladder algorithm is modified for better sharing of execution paths. The data path in the architecture is well designed, so that the critical path contains few extra logic primitives apart from the FF MAC. In order to find the optimal number of pipeline stages, scheduling schemes with different pipeline stages are proposed and the ideal placement of pipeline registers is thoroughly analyzed. We implement ECSM over the five binary fields recommended by the National Institute of Standard and Technology on Xilinx Virtex-4 and Virtex-5 field-programmable gate arrays. The three-stage pipelined architecture is shown to have the best performance, which achieves a scalar multiplication over GF(2163) in 6.1 μs using 7354 Slices on Virtex-4. Using Virtex-5, the scalar multiplication for m = 163, 233, 283, 409, and 571 can be achieved in 4.6, 7.9, 10.9, 19.4, and 36.5 μs, respectively, which are faster than previous results.

YongPing Dan,Xuecheng Zou,Zhenglin Liu,Yu Han

2008-01-01

Abstract:A efficient hardware architecture accelerators to speed up the scalar multiplications on elliptic curves over GF(2m) in polynomial basis representation was proposed. The performance and area trade-off is considered reasonably. The point addition module and point doubling module can operation in parallel. They are optimized and implemented by the method of combining parallel and serial. Initialization and the final coordinates conversion module are decomposed into a series of multiplication and addition operations, which can be merged into one module finally. The implementation results based on Xilinx VirtexE XCV2600 FPGA show that our proposed design is able to compute general GF(2163) elliptic curve scalar multiplication operations in 36.5 μs, which indicates this architecture is suitable for high-performance application.

Jingqi Zhang,Zhiming Chen,Mingzhi Ma,Rongkun Jiang,Hongshuo Li,Weijiang Wang

DOI: https://doi.org/10.1109/tvlsi.2023.3321772

2024-01-01

IEEE Transactions on Very Large Scale Integration (VLSI) Systems

Abstract:Elliptic curve scalar multiplication (ECSM) is the essential operation in elliptic curve cryptography (ECC) for achieving high performance and security. We introduce a novel high-performance ECSM architecture over binary fields to meet the growing demand for performance and security. A low-latency window (LLW) recoding algorithm for hardware implementation is proposed to enhance the resistance toward side-channel attacks (SCAs). Based on the LLW algorithm, we propose an enhanced comb method for ECSM with a unified point addition (PA) and point doubling (PD) pattern. The theoretical analysis demonstrates that the enhanced comb method with $w=4$ strikes the balance of computation burden for both extreme cases. To achieve short clock cycle latency and high frequency, the data dependency of ECSM is thoroughly analyzed, and we explore a timing schedule with one two-stage pipelined Karatsuba multiplier accumulator (MAC). The datapath of the proposed architecture is well-designed, ensuring that the critical path (CP) only contains minimal logic primitives apart from the MAC. Besides, the ideal placement of pipeline stages for MAC is illustrated. The proposed architecture has been implemented on Xilinx Virtex-7 series field-programmable gate arrays (FPGAs) and performs ECSM in 2.51, 4.93, and $10.85 ~\mu \text { s}$ with 3422, 7983, and 20158 slices over $\text {GF}(2^{163})$ , $\text {GF}(2^{283})$ , and $\text {GF}(2^{571})$ , respectively. Implementation results reveal that our design shows 53.60%, 39.36%, and 32.64% performance improvement over the existing state-of-the-art works, respectively.

Yong-ping Dan,Xue-cheng Zou,Zheng-lin Liu,Yu Han,Li-hua Yi

DOI: https://doi.org/10.1631/jzus.a0820024

2009-01-01

Abstract:We propose a novel high-performance hardware architecture of processor for elliptic curve scalar multiplication based on the Lopez-Dahab algorithm over GF(2163) in polynomial basis representation. The processor can do all the operations using an efficient modular arithmetic logic unit, which includes an addition unit, a square and a carefully designed multiplication unit. In the proposed architecture, multiplication, addition, and square can be performed in parallel by the decomposition of computation. The point addition and point doubling iteration operations can be performed in six multiplications by optimization and solution of data dependency. The implementation results based on Xilinx VirtexII XC2V6000 FPGA show that the proposed design can do random elliptic curve scalar multiplication GF(2163) in 34.11 μs, occupying 2821 registers and 13 376 LUTs.

Yong-ping Dan,Xue-cheng Zou,Zheng-lin Liu,Yu Han,Li-hua Yi

DOI: https://doi.org/10.1631/jzus.a0820024

2009-01-01

Journal of Zhejiang University SCIENCE A

Abstract:We propose a novel high-performance hardware architecture of processor for elliptic curve scalar multiplication based on the Lopez-Dahab algorithm over GF(2163) in polynomial basis representation. The processor can do all the operations using an efficient modular arithmetic logic unit, which includes an addition unit, a square and a carefully designed multiplication unit. In the proposed architecture, multiplication, addition, and square can be performed in parallel by the decomposition of computation. The point addition and point doubling iteration operations can be performed in six multiplications by optimization and solution of data dependency. The implementation results based on Xilinx VirtexII XC2V6000 FPGA show that the proposed design can do random elliptic curve scalar multiplication GF(2163) in 34.11 μs, occupying 2821 registers and 13 376 LUTs.

Wang Xu,Zhang Yan

DOI: https://doi.org/10.1109/edssc.2009.5394270

2009-01-01

Abstract:Two elliptic curve scalar multiplications (ECMLT) are used in some important elliptic curve encryption algorithms, a pseudo-pipelined VLSI architecture of two ECMLTs over GF(2(m)) is proposed for these algorithms. The proposed architecture includes three word-serial finite field (FF) multipliers, and each FF multiplier has word size w. Implemented using FPGA, two ECMLTs are computed in approximately 4[m/w](m-1) clock cycles in the proposed architecture. Compared with the architectures proposed by other authors recently, it is shown that the computation time for two ECMLTs is the shortest by using our proposed architecture.

Jiakun Li,Weijiang Wang,Jingqi Zhang,Yixuan Luo,Shiwei Ren

DOI: https://doi.org/10.1109/access.2021.3051282

IF: 3.9

2021-01-01

IEEE Access

Abstract:High-performance Elliptic Curve Cryptography (ECC) implementation in encryption authentication severs has become a challenge due to the explosive growth of e-commerce's demand for speed and security. Point multiplication (PM) is the most common and complex operation in ECC which directly determines the performance of the whole system. This article proposes a 6CC-6CC (clock cycle) dual-field PM architecture and a 6CC-4CC dual-field PM architecture based on maximizing utilization of Karatsuba multipliers and re-ordering schedule strategy in PM. The Montgomery Ladder algorithm used in PM is modified to a 4CC algorithm for better resource utilization and parallel computation. To solve the frequency drop problem while working on large finite field, the PM architectures for high and low field are carefully studied to have universal critical path length and balanced performance. Both of the architectures are implemented over GF(2571) and GF(2283) on Xilinx Virtex-5 and Virtex-7 FPGAs (Field-Programmable Gate Array) for comparison. The 6CC-6CC architecture is shown to have the best performance on GF(2571), which achieves one PM operation in $17.44~\mu s$ using 81549 LUTs (Look-Up-Table) with the frequency of 197.2 MHz on Virtex-5, and $12.55~\mu s$ using 80970 LUTs with the frequency of 274.1 MHz on Virtex-7. The 6CC-4CC architecture performs better on GF(2283) with the shortest computation time. It takes only $3.21~\mu s$ to finish one PM operation on Virtex-5 and $2.22~\mu s$ on Virtex-7, which are faster than all the previous designs. The implementation results prove that the proposed architectures have state-of-the-art performance as well as higher versatility for ECC designs.

Shiyang He,Hui Li,Qingwen Li,Fenghua Li

DOI: https://doi.org/10.23919/cje.2022.00.267

IF: 1.019

2023-01-01

Chinese Journal of Electronics

Abstract:The elliptic curve scalar multiplication (ECSM) is the core of elliptic curve cryptography (ECC), which directly determines the performance of ECC. In this paper, a novel time-area-efficient and compact design of a 256-bit ECSM processor over GF (p) for the resource-constrained device is proposed, where p can be selected flexibly according to the application scenario. A compact and efficient 256-bit modular adder/subtractor and an improved 256-bit Montgomery multiplier are designed. We select Jacobian coordinates for point doubling and mixed Jacobian-affine coordinates for point addition. We have improved the binary expansion algorithm to reduce 75% of the point addition operations. The clock consumption of each module in this architecture is constant, which can effectively resist side-channel attacks. Reuse technology is adopted in this paper to make the overall architecture more compact and efficient. The design architecture is implemented on Xilinx Kintex-7 (XC7K325T-2FFG900I), consuming 1439 slices, 2 DSPs, and 2 BRAMs. It takes about 7.9 ms at the frequency of 222.2 MHz and 1763k clock cycles to complete once 256-bit ECSM operation over GF (p).

Yue Hao,Shun'an Zhong,Mingzhi Ma,Rongkun Jiang,Shihan Huang,Jingqi Zhang,Weijiang Wang

DOI: https://doi.org/10.3390/electronics11142234

IF: 2.9

2022-01-01

Electronics

Abstract:In this paper, we present a novel lightweight elliptic curve scalar multiplication architecture for random Weierstrass curves over prime field F-p. The elliptic curve scalar multiplication is executed in Jacobian coordinates based on the Montgomery ladder algorithm with (X,Y)-only common Z coordinate arithmetic. At the finite field operation level, the adder-based modular multiplier and modular divider are optimized by the pre-calculation method to reduce the critical path while maintaining low resource consumption. At the group operation level, the point addition and point doubling methods in (X,Y)-only common Z coordinate arithmetic are modified to improve computation parallelism. A compact scheduling method is presented to improve the architecture's performance, which includes appropriate scheduling of finite field operations and specific register connections. Compared with existing works, our design is implemented on the FPGA platform without using DSPs or BRAMs for higher portability. It utilizes 6.4k similar to 6.5k slices in Kintex-7, Virtex-7, and ZYNQ FPGA and executes an elliptic curve scalar multiplication for a field size of 256-bit in 1.73 ms, 1.70 ms, and 1.80 ms, respectively. Additionally, our design is resistant to timing attacks, simple power analysis attacks, and safe-error attacks. This architecture outperforms most state-of-the-art lightweight designs in terms of area-time products.

Yingchao Cui,Qing Liu,Yingbiao Yao,Xiaorong Xu,Wei Wu,Xin Xu

DOI: https://doi.org/10.1016/j.micpro.2023.104944

IF: 3.503

2023-10-18

Microprocessors and Microsystems

Abstract:For the elliptic curve cryptography (ECC) over prime field, this paper presents an area-efficient and low-latency elliptic curve scalar multiplication (ECSM) accelerator, which supports to process any prime number p ≤ 256 bits. The proposed accelerator is based on a parallel hardware implementation of iterative digit-digit Montgomery multiplication and an optimized data flow architecture for elliptic curve point operations. The proposed design is implemented in Xilinx Virtex-7 FPGA. The experimental results show that the proposed architecture occupies 23.7k look-up tables (LUTs) and performs single 256-bit scalar multiplication in 0.56 ms. The area-time product of the proposed architecture is only 13.36. Compared with other state-of-the-art ECSM implementations, the proposed architecture has obvious advantage in terms of the area-time product.

computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

Shuai Liu,Lei Ju,Xiaojun Cai,Zhiping Jia,Zhiyong Zhang

DOI: https://doi.org/10.1109/trustcom.2014.23

2014-01-01

Abstract:In this paper, we propose a high performance hardware implementation architecture of elliptic curve scalar multiplication over binary fields. The proposed architecture is based on the Montgomery ladder method and uses polynomial basis for finite field (FF) arithmetic. A single Karatsuba multiplier runs with no idle cycle significantly increases the performance of FF multiplication while spending small amount of hardware resources, and other FF operations performed in parallel with the FF multiplier. The optimized circuits lead to a lesser area requirement compared to other high performance implementations. An implementation for the National Institute of Standards and Technology (NIST) recommended curve with degree 163 is shown, the proposed design can reach 121 MHz with 10,417 slices when implemented on Xilinx Virtex-4 XC4VLX200 FPGA device, the total time required for one elliptic curve scalar multiplication is 9.0 μs.

Hui Zhao,Long Wang,Guoqiang Bai

DOI: https://doi.org/10.1109/EDST.2007.4289807

2007-01-01

Abstract:In this paper we propose a low-cost coprocessor architecture for elliptic curves cryptography which supports the main mathematical operations for the computation of ECDSA over GF(2193), including point doubling, point addition and scalar multiplication over field ECC. As the field is fixed, we use this special property to design special operational units and pipeline structure. Although only increasing 4% area, it speeds around 40% faster at the same time. Our design allows to perform a scalar multiplication over GF(2193) in 24 ms at a clock frequency of 10 MHz, and is only 11,486 NAND gates large. The advantages of both the performance and hardware cost are much favorable compared with previous similar work.

Jiakun Li,Shun'an Zhong,Zhe Li,Shan Cao,Jingqi Zhang,Weijiang Wang

DOI: https://doi.org/10.1109/access.2019.2903170

IF: 3.9

2019-01-01

IEEE Access

Abstract:This paper introduces a novel speed-oriented architecture of point multiplication in elliptic curve cryptography. A balanced full-precision multiplier is proposed to shorten latency, and a new modular inversion architecture is integrated to reduce the total number of clock cycles in point multiplication. A modified Montgomery Ladder algorithm that takes three clock cycles to calculate one input bit is proposed to best utilize hardware resources. A mixed-pipeline technique is used to balance the delay of different paths and increase frequency. The proposed architecture is implemented on GF(2(163)) and GF(2(571)), based on Xilinx Virtex-5 and Virtex-7 FPGA. For GF(2 (163)), the design reaches 211 MHz, with 29309 LUTs, and 547 clock cycles or 2.6 mu s latency on Virtex-5; 320.5 MHz, with 28911 LUTs and 1.7 mu s latency on Virtex-7. For GF(2(571)), the design reaches 186 MHz, with 286400 LUTs, and 1813 clock cycles or 9.6 mu s latency on Virtex-5; 267 MHz, 290001 LUTs and 6.79 mu s latency on Virtex-7. The proposed design achieves the lowest latency among all existing works, and its performance is also among the top. Furthermore, it is demonstrated that the proposed architecture maintains a high speed for larger binary fields, making it more suitable to be implemented in large-bit-length platforms with a higher security level. Since the multiplier and its segments work in different bit-length and refer to different fields, the proposed architecture can also be upgraded to a reconfigurable design to support multiple-field point multiplication in the future.

DAN Yong-ping,ZOU Xue-cheng,LIU Zheng-lin,HAN Yu,YI Li-hua

DOI: https://doi.org/10.1016/s1005-8885(08)60206-x

2009-01-01

Abstract:In this article, a parallel hardware processor is presented to compute elliptic curve scalar multiplication in polynomial basis representation. The processor is applicable to the operations of scalar multiplication by using a modular arithmetic logic unit (MALU). The MALU consists of two multiplications, one addition, and one squaring. The two multiplications and the addition or squaring can be computed in parallel. The whole computations of scalar multiplication over GF(2163) can be performed in 3 064 cycles. The simulation results based on Xilinx Virtex2 XC2V6000 FPGAs show that the proposed design can compute random GF(2163) elliptic curve scalar multiplication operations in 31.17 μs, and the resource occupies 3 994 registers and 15 527 LUTs, which indicates that the crypto-processor is suitable for high-performance application.

Zhantao Zhang,Weijiang Wang,Jingqi Zhang,Xiang He,Mingzhi Ma,Shiwei Ren,Hua Dang

DOI: https://doi.org/10.3390/mi15101238

IF: 3.4

2024-10-08

Micromachines

Abstract:With the development of mobile communication, digital signatures with low latency, low area, and high security are in increasing demand. Elliptic curve cryptography (ECC) is widely used because of its security and lightweight. Elliptic curve scalar multiplication (ECSM) is the basic arithmetic in ECC. Based on this background information, we propose our own research objectives. In this paper, a low-latency and low-area ECSM architecture based on the comb algorithm is proposed. The detailed methodology is as follows. The recoding-k algorithm and randomization-Z algorithm are used to improve security, which can resist sample power analysis (SPA) and differential power analysis (DPA). A low-area multi-functional architecture for comb is proposed, which takes into account different stages of the comb algorithm. Based on this, the data dependency is considered and the comb architecture is optimized to achieve a uniform and efficient execution pattern. The interleaved modular multiplication algorithm and modified binary inverse algorithm are used to achieve short clock cycle delay and high frequency while taking into account the need for a low area. The proposed architecture has been implemented on Xilinx Virtex-7 series FPGA to perform ECSM on 256-bits prime field GF(p). In the hardware architecture with only 7351 slices of resource usage, a single ECSM only takes 0.74 ms, resulting in an area-time product (ATP) of 5.41. The implementation results show that our design can compete with the existing state-of-the-art engineering in terms of performance and has higher security. Our design is suitable for computing scenarios where security and computing speed are required. The implementation of the overall architecture is of great significance and inspiration to the research community.

chemistry, analytical,nanoscience & nanotechnology,instruments & instrumentation,physics, applied

Jian-Yang Zhou,Xiao-Gang Jiang,Hui-Huang Chen

DOI: https://doi.org/10.1109/icasic.2005.1611303

2005-01-01

Abstract:In the computing system, division is normally programmed as an multiplication operation following with a multiplicative inversion process. It is the most time consuming operation in the computing of Elliptic Curve Cryptography (ECC) for portable applications. This paper introduces a new architecture for hardware implementation of computing division based on the binary Extended Euclidean Algorithm. With the new architecture, ECC can be implemented with low power consumption and more computing efficiency for application in real-time system. In order to show the advantages, we also detail on the modified algorithm of our new architecture and compare the synthesis results of hardware implementations. © 2005 IEEE.

JIANG Jing-fei,NI Xiao-qiang,ZHANG Min-xuan

DOI: https://doi.org/10.3969/j.issn.1000-3428.2007.18.002

2007-01-01

Abstract:This paper analyzes the point multiplication in EC and educes the modular multiplication formula in GF(2m)for systolic implementation with partial-parallelism in MSB mode.Following the formula,it designs an efficient architecture of systolic array,studies the performance of the array element and compares with the performance in LSB mode.The simulation result proves that the partial-parallel architecture in MSB mode which supports flexible irreducible polynomials of GF(2m)can process modular multiplication efficiently with proper hardware cost,while the partial-parallel architecture which supports fixed irreducible polynomials can save the hardware cost and archive high performance at the same time.Both can improve the performance of ECC algorithms in GF(2m)efficiently.