Yier Jin,Haibin Shen

DOI: https://doi.org/10.1109/icsict.2006.306633

2006-01-01

Abstract:A new unbalanced exponent modular reduction over GF(2m) is proposed. The algorithm can achieve high efficiency when computing on a certain class of fields generated by f(x) = xm + T(x) where deg[T(x)] Lt C m. The algorithm is applied in modular multiplication on the basis of scalable polynomial basis(SPB) to form scalable modular multiplication. Most of irreducible polynomials used in elliptic curve cryptography(ECC) fulfil the characteristic mentioned above well. So the scalable algorithm is implemented in ECC computation with high flexibility and efficiency both in theoretic calculation and application

Yin Li,Gong-liang Chen,Yi-yang Chen,Jian-hua Li

DOI: https://doi.org/10.1016/j.ipl.2010.02.006

IF: 0.851

2010-01-01

Information Processing Letters

Abstract:This letter is concerned with an extension of Takagi et al. algorithm (TYT) for inversion computation in GF(2m). Unlike the original algorithm, the method introduced here uses a polynomial basis representation. As the main contribution, the proposed method reduces both the number of required multiplications and squaring operations by applying a modified decomposition for m−1. When the field is generated with an irreducible trinomial, our proposal shows almost the same practical complexity as the TYT algorithm using normal basis.

Haibin Shen,Yier Jin

DOI: https://doi.org/10.1016/j.ipl.2008.01.012

IF: 0.851

2008-01-01

Information Processing Letters

Abstract:Based on the shifted polynomial basis (SPB), a high efficient bit-parallel multiplier for the field GF(2m) defined by an equally-spaced trinomial (EST) is proposed. The use of SPB significantly reduces time delay of the proposed multiplier and at the same time Karatsuba method is combined with SPB to decrease space complexity. As a result, with the same time complexity, approximately 3/4 gates of previous multipliers are used in the proposed multiplier.

Lijuan Li,Shuguo Li

DOI: https://doi.org/10.1109/iscas.2017.8050627

2017-01-01

Abstract:Inversion over GF(2(m)) is crucial for cryptographic applications such as elliptic curve cryptography. The commonly used Itoh-Tsujii algorithm (ITA) computes the inversion by an entirely sequential process consisting of multiplications and squarings. In this paper, we first propose a modified ITA algorithm (MITA) for inversion with polynomial basis (PB). The MITA reduces the required clock cycles of ITA inversion by enabling the parallel computation between part of multiplications and squarings. Furthermore, we generalize the MITA to inversion with arbitrary addition chains. Several criteria are proposed to find the optimal addition chains (OACs) leading to the fastest inverters with given hardware resources. Implemented on Xilinx Virtex-4 FPGA, the proposed inversion architecture with a digit-serial multiplier achieves averagely 61% faster speed with 69% less resources than previous designs with normal basis. Using a fully combinational multiplier, the OAC inverters outperform existing PB-based designs by at least 60.9%, 35.1%, 94.9% for m = 163, 233, 283 respectively in terms of area-time product.

Yi’er Jin,Haibin Shen,Huafeng Chen,Xiaolang Yan

DOI: https://doi.org/10.1007/s11767-006-0257-4

2008-01-01

Abstract:A new structure of bit-parallel Polynomial Basis (PB) multiplier is proposed, which is based on a fast modular reduction method. The method was recommended by the National Institute of Standards and Technology (NIST). It takes advantage of the characteristics of irreducible polynomial, i.e., the degree of the second item of irreducible polynomial is far less than the degree of the polynomial in the finite fields GF(2 m ). Deductions are made for a class of finite field in which trinomials are chosen as irreducible polynomials. Let the trinomial be x m + x h +1, where 1 ≤ k ≤ [m/1]. The proposed structure has shorter critical path than the best known one up to date, while the space requirement keeps the same. The structure is practical, especially in real time cryptographic applications.

Yin Li,Gong-liang Chen,Jian-hua Li

DOI: https://doi.org/10.1007/978-3-642-12165-4_2

2010-01-01

Abstract:This contribution is concerned with an improvement of Itoh and Tsujii's algorithm for inversion in finite field GF(2m) using polynomial basis. Unlike the standard version of this algorithm, the proposed algorithm uses forth power and multiplication as main operations. When the field is generated with a special class of irreducible trinomials, an analytical form for fast bit-parallel forth power operation is presented. The proposal can save 1TX compared with the classic approach, where TX is the delay of one 2-input XOR gate. Based on this result, the proposed algorithm for inversion achieves even faster performance, roughly improves the delay by $\frac{m}{2}T_X$, at the cost of slight increase in the space complexity compared with the standard version. To the best of our knowledge, this is the first work that proposes the use of forth power in computation of multiplicative inverse using polynomial basis and shows that it can be efficient.

Qiucheng Deng,Xuefei Bai,Li Guo,Yao Wang

DOI: https://doi.org/10.1109/primeasia.2009.5397344

2009-01-01

Abstract:In this paper, a fast hardware implementation of multiplicative inversion in GF(2m) using the optimal normal basis of type II is presented. The approach followed is based on the Sunar-Koc multiplier and the Itoh-Tsujii algorithm. Our design is able to compute multiplicative inversion in GF(2233) using only 26 clock cycles.

YUAN Dan-shou,RONG Meng-tian,CHEN Bo

DOI: https://doi.org/10.3321/j.issn:1006-2467.2005.04.032

2005-01-01

Abstract:The parallel multiplier architecture over Galois field GF(2~m) was proposed. The finite field multiplication requires two steps: polynomial multiplication and reduction modulo the irreducible f(x). The polynomial multiplicand and multiplicator are equally split into three sub-polynomials, respectively. The polynomial multiplication is performed by sub-polynomial multiplications and additions. When the degree m of the finite field is 500, compared to the traditional Mastrivito polynomial multiplication, it can reduce the number of the XOR gates by 33.1%, and that of the AND gates by 33.3%. To simplify reduction modulo, the special polynomials are used to generate finite field. The proposed multiplier architecture suits elliptic curve cryptosystems with large finite field.

ZHANG Jian,SI Qin-fu

DOI: https://doi.org/10.3969/j.issn.1000-1638.2012.04.013

2012-01-01

Abstract:Using the idea of the improved m-ary method over elliptic curve cryptography,a further improvement of a fast scalar multiplication algorithm is given.Results show that the computational of scalar multiplication and the storage space are reduced by the improved algorithm,and the computation efficiency is improved.

Pan Jeng-Shyang,Dong Shu-Xia,Yang Chun-Sheng

2017-01-01

Abstract:The multiplication is one of the most time-consuming and hardware-consuming operations in finite field for the applications of elliptic curve cryptography. In this paper, in order to reduce the complexities of multiplication, a new polynomial basis is proposed, which is generated by the irreducible trinomial and called modified polynomial basis (MPB). The modified polynomial basis multiplication can be transformed into the matrix-vector form. The obtained matrix satisfies the properties of Toeplitz matrix. According to the properties of Toeplitz matrix, a digit-serial multiplier over GF (2m) by irreducible trinomials is presented. From theoretical analysis, the proposed multiplier involves lower area complexity, less energy consumption than the other existing digit-serial multipliers. © 2017, Ubiquitous International. All rights reserved.

B. E. Wang,Y. Ouyang,Songsong LI,Honggang Hu

DOI: https://doi.org/10.3934/amc.2021026

2021-01-01

Abstract:We focus on exploring more potential of Longa and Sica's algo-rithm (ASIACRYPT 2012), which is an elaborate iterated Cornacchia algo-rithm that can compute short bases for 4-GLV decompositions. The algo-rithm consists of two sub-algorithms, the first one in the ring of integers Z and the second one in the Gaussian integer ring Z[i]. We observe that Z[i] in the second sub-algorithm can be replaced by another Euclidean do-main Z[omega] (omega = -1+root-3/2 ). As a consequence, we design a new twofold Cornacchia-type algorithm with a theoretic upper bound of output C center dot n(1/4), where C = 3+root 3 2 root 1 + |r| + |s| with small values r, s given by the curves. 2 The new twofold algorithm can be used to compute 4-GLV decompositions on two classes of curves. First it gives a new and unified method to compute all 4-GLV decompositions on j-invariant 0 elliptic curves over Fp2. Second it can be used to compute the 4-GLV decomposition on the Jacobian of the hyperel-liptic curve defined as C/F-p : y(2) = x(6) + ax(3) + b, which has an endomorphism phi with the characteristic equation phi(2) + phi + 1 = 0 (hence Z[phi] = Z[omega]). As far as we know, none of the previous algorithms can be used to compute the 4-GLV decomposition on the latter class of curves.

Kai Liao,Xiaoxin Cui,Nan Liao,Tian Wang,Xiao Zhang,Ying Huang,Dunshan Yu

DOI: https://doi.org/10.1109/ISCAS.2014.6865261

2014-01-01

Abstract:To achieve high performance scalar multiplication arithmetic in Elliptic Curve Cryptography (ECC) based on GF(2m), a high-speed constant-time division module with optimized architecture is proposed in this paper. Modified from the traditional extended Euclidean Great Common Divisor (GCD) division algorithm, the presented algorithm computes a single multiplicative inverse or division in constant m iterations, i.e. m clock cycles, in GF(2m), which obtains a tremendous reduction (specifically more than 50%) on computing time compared with previous works. Combined with the meticulously optimized architecture, this novel division module achieves lower area-time complexity, which makes it an excellent option for high performance ECC design.

Jiangtao Han,Haining Fan

DOI: https://doi.org/10.1109/tc.2013.2297106

IF: 3.183

2015-01-01

IEEE Transactions on Computers

Abstract:Besides Karatsuba's algorithm, optimal Toeplitz matrix-vector product (TMVP) formulae is another approach to design GF(2(n)) subquadratic multipliers. However, when GF(2(n)) elements are represented using a polynomial basis or its generalization-shifted polynomial basis-this approach is currently appliable only to fields GF(2(n)) generated by an irreducible trinomial or a special type of irreducible pentanomials, but not to a general irreducible pentanomial. The reason is that no transformation matrix, which transforms the Mastrovito matrix into a Toeplitz matrix, has been found. In this article, we propose such a transformation matrix and its inverse matrix for an arbitrary irreducible pentanomial.

M. M. Wong,Mou Ling Dennis Wong,Ka Lok Man

DOI: https://doi.org/10.1007/978-3-642-35606-3_58

2012-01-01

Abstract:This paper presents a compact design of a multiplicative inverter for elliptic curve cryptosystems. Using a methodology based on the composite field arithmetic, we propose a combinatorial solution to mitigate the usage of look up tables as commonly adopted by the conventional software based approach. In particular, we perform further isomorphism in the subfield, such that the required arithmetic are constructed using logical AND and XOR gates only. In this work, we demonstrate our proposed methodology with the field GF((28)41) ≅ GF((((22)2)2)41) in optimal normal type II basis. The chosen field is both secure and results in efficient computation. An analysis of the resultant hardware complexity of our inverter is reported towards the end.

YUAN Dan-shou,RONG Meng-tian

DOI: https://doi.org/10.3321/j.issn:1006-2467.2006.01.009

2006-01-01

Abstract:A scalable architecture for inversion over Galois field GF(2~k)(1k≤m) was proposed based on an extended Euclid's algorithm.The degree k of the irreducible polynomial F(x) can be changed by adding extra configure signals,which leads to the scalability of the inversion architecture.The computing inversion of an element in GF(2~k) requires 2k clock cycles.The gated clock technique is used to reduce power consumption.The proposed inversion architecture has high order of flexibility,low hardware complexity and low power consumption.It suits VLSI design of high-security cryptographic algorithms with small silicon area requirement.

Zhang HaiBin,Ji XiaoPing,Wu BoYing,Li GuangYu

DOI: https://doi.org/10.4028/www.scientific.net/amm.441.1044

2013-01-01

Applied Mechanics and Materials

Abstract:Scalar point multiplication operation on elliptic curve is the most expensive part of the elliptic curve cryptosystem, also has always been the hot spot of the research. Recoding the positive integer and reducing the amount of inversion in the operation are the two main ideas. In this article, we use the balanced ternary form to recode the positive integer, at the same time, improve the part of calculation way of, reducing the amount of inversion, decreasing operation cost, and improving operation efficiency

Chen Su,Haining Fan

DOI: https://doi.org/10.1016/j.ipl.2012.03.012

IF: 0.851

2012-01-01

Information Processing Letters

Abstract:PCLMULQDQ, a new instruction that supports GF(2)[x] multiplication, was introduced by Intel in 2010. This instruction brings dramatic change to software implementation of multiplication in GF(2^m) fields. In this paper, we present improved Karatsuba formulae for multiplying two small binary polynomials, compare different strategies for PCLMULQDQ-based multiplication in the five GF(2^m) fields recommended by NIST and conclude the best design approaches to software implementation of GF(2)[x] multiplication.

Yin Li,Gong-liang Chen,Jian-hua Li

DOI: https://doi.org/10.1016/j.ipl.2011.01.005

IF: 0.851

2011-01-01

Information Processing Letters

Abstract:In this letter, we present a speedup of bit-parallel Karatsuba multiplier in GF(2m) generated with a class of irreducible trinomials. Applying a slightly modified Karatsuba approach, we can save one XOR gate delay at the cost of little increase of space complexity. The proposed multiplier has a lower time complexity than the previous Karatsuba multipliers except for those based on equal-space trinomial or all-one polynomial. In counterpart it only requires one more XOR time delay than the best known multipliers for trinomials but maintains a smaller number of logic gates.

Xinchun Yin,Ting Yang,Jianting Ning

DOI: https://doi.org/10.1109/CIS.2011.216

2011-01-01

Abstract:As a generalization of double base chains, multi-base number system were very suitable for efficient computation of scalar multiplications of elliptic curves because of shorter representation length and less Hamming weight. Thus it is needed to search efficient multi-base chains. We considered settings with different computing cost of point operations and introduced an optimized tree-based method for searching multi-base chains. Experimental results show that compared with NAF, greedy algorithm and tree based computing double base chain method, applying the multi-base representation returned by our proposed algorithms, the scalar computing costs reduced by 22%, 12.9%, 10.6% respectively on prime elliptic curves and 20.2%, 11.5%, 9.7% on binary elliptic curves.

Sen Xu,Haihua Gu,Lingyun Wang,Zheng Guo,JunRong Liu,Xiangjun Lu,Dawu Gu

DOI: https://doi.org/10.1109/cis.2017.00122

2017-01-01

Abstract:As an important operation, modular inversion is crucial for high-performance public key cryptosystems (PKC), especially in Elliptic curve-based schemes over prime fields. Both security and efficiency must be considered in a specific implementation. Straightforward implementation leaks side channel information which can be used for breaking Elliptic curve signature algorithm (ECDSA) through a combination attack. Modular inversion is also the most time-consuming operation which has important impact on the performance. Therefore, efficient and constant time modular inversion is an optimal option to ensure both security and efficiency. In this paper, we describe a general principle on how to construct efficient constant time modular inversion based on Fermat's little theorem (FLT) over prime fields. We give the tight upper bounder of multiplications needed in our schemes. Improvements are obtained from both algorithm architecture and Montgomery trick. We extended our scheme to NIST and Chinese Elliptic curve standard, which can save 90% multiplications. The total improvement is a factor of 2 by comparing the straightforward implementation.