Buqing Xu,Jinjiang Yang,Wei Ge,Qiyi Zhao,Min Zhu,Youyu Wu

DOI: https://doi.org/10.1117/12.2642606

2022-01-01

Abstract:Polynomial multiplication is the most compute-intensive in the Lattice-based post-quantum cryptography (PQC). This operation can be sped up using the number theoretic transform (NTT). A lot of research is currently being done on how to speed up the NTT algorithm. In light of these considerations, this study presents an NTT accelerator with a greatly simplified butterfly unit (BFU) architecture, a completely pipelined modular multiplication (MM) unit, and two parallel computing units. FPGA implementation is realized to evaluate this work. Through the experimental results, processing speed can achieve 2× improvements with controllable resource consumption.

Xianwei Gao,Lian Xue,Zishan Tian

DOI: https://doi.org/10.1109/EEI59236.2023.10212585

2023-06-30

Abstract:The Number Theoretical Transform (NTT) plays a crucial role in post-quantum cryptography algorithms, with its computational performance directly impacting system operating speed. This article proposes a high-performance NTT hardware architecture based on a pipeline architecture to address the challenges of lengthy computing processes and complex control logic in NTT hardware implementation. Firstly, a recursive NTT is advanced to simplify the calculation process and facilitate hardware implementation. Next, effective pipeline segmentation is applied to the computing process to reduce hardware architecture complexity. Finally, a two-stage butterfly operation is employed to implement butterfly elements, and the reduction calculation process is optimized using shift and addition, resulting in reduced hardware resource costs. The proposed NTT hardware architecture is implemented on Quartus II (EP2AGZ225FF35C3) taking the CRYSTALS-Kyber anti-quantum cryptography scheme as an example, since the selected prime number can meet requirements. Experimental results demonstrate that the proposed design outperforms other related designs in terms of computational performance and hardware overhead.

Engineering,Computer Science

Bin Li,Yunfei Yan,Yuanxin Wei,Heru Han

DOI: https://doi.org/10.1109/tvlsi.2023.3312423

2023-01-01

IEEE Transactions on Very Large Scale Integration (VLSI) Systems

Abstract:In lattice-based postquantum cryptography (PQC), polynomial multiplication is complex and time-consuming, which affects the overall computational efficiency. In addition, the parameters of different lattice-based algorithms require different number theoretic transform (NTT) structures, which limits the versatility of hardware design. To this end, this article proposes scalable and parallel optimization of the NTT based on a field-programmable gate array (FPGA). By analyzing the algorithm flow of the NTT, inverse NTT (INTT), and pointwise multiplication (PWM), an FPGA loosely coupled structure is designed, which can be used to place butterfly units of multiple pipelines in parallel and supports various modulo operations of a polynomial. In addition, to improve computing efficiency and scalability, key algorithm modules such as multipliers and modular reduction are deeply optimized. Moreover, the storage optimization of multiple RAM channels is carried out, and the alternate access control of data and the multiplexing of RAM resources reduce resource consumption and improve data access efficiency. For the SHA-3 algorithm, the scalable Keccak algorithm is implemented in a serial–parallel hybrid manner and supports multiple hash modes. Finally, taking the Dilithium algorithm as an example, through the parallelization of SHA-3 and NTT, the calculation cycle of key generation, signature, and verification is shortened. The experimental results and analysis show that the scheme in this article shortens the NTT calculation period while ensuring a high frequency, and the calculation time is significantly better than that of other schemes. Furthermore, it can support the optimized parallelization of multiple moduli and give full play to the computing advantages of an FPGA.

engineering, electrical & electronic,computer science, hardware & architecture

Xiangren Chen,Bohan Yang,Shouyi Yin,Shaojun Wei,Leibo Liu

DOI: https://doi.org/10.46586/tches.v2022.i1.94-126

2021-01-01

IACR Transactions on Cryptographic Hardware and Embedded Systems

Abstract:Number theoretic transform (NTT) is widely utilized to speed up polynomial multiplication, which is the critical computation bottleneck in a lot of cryptographic algorithms like lattice-based post-quantum cryptography (PQC) and homomorphic encryption (HE). One of the tendency for NTT hardware architecture is to support diverse security parameters and meet resource constraints on different computing platforms. Thus flexibility and Area-Time Product (ATP) become two crucial metrics in NTT hardware design. The flexibility of NTT in terms of different vector sizes and moduli can be obtained directly. Whereas the varying strides in memory access of in-place NTT render the design for different radix and number of parallel butterfly units a tough problem. This paper proposes an efficient conflict-free memory mapping scheme that supports the configuration for both multiple parallel butterfly units and arbitrary radix of NTT. Compared to other approaches, this scheme owns broader applicability and facilitates the parallelization of non-radix-2 NTT hardware design. Based on this scheme, we propose a scalable radix-2 and radix-4 NTT multiplication architecture by algorithm-hardware co-design. A dedicated schedule method is leveraged to reduce the number of modular additions/subtractions and modular multiplications in radix-4 butterfly unit by 20% and 33%, respectively. To avoid the bit-reversed cost and save memory footprint in arbitrary radix NTT/INTT, we put forward a general method by rearranging the loop structure and reusing the twiddle factors. The hardware-level optimization is achieved by excavating the symmetric operators in radix-4 butterfly unit, which saves almost 50% hardware resources compared to a straightforward implementation. Through experimental results and theoretical analysis, we point out that the radix-4 NTT with the same number of parallel butterfly units outperforms the radix-2 NTT in terms of area-time performance in the interleaved memory system. This advantage is enlarged when increasing the number of parallel butterfly units. For example, when processing 1024 14-bit points NTT with 8 parallel butterfly units, the ATP of LUT/FF/DSP/BRAM n radix-4 NTT core is approximately 2.2 × /1.2 × /1.1 × /1.9 × less than that of the radix-2 NTT core on a similar FPGA platform.

Changxu Liu,Danqing Tang,Jie Song,Hao Zhou,Shoumeng Yan,Fan Yang

DOI: https://doi.org/10.1145/3649476.3658734

2024-01-01

Abstract:In privacy-preserving applications like Post-Quantum Cryptography (PQC) and Fully Homomorphic Encryption (FHE), polynomial multiplication is common, and the Number Theoretic Transform (NTT) is a key algorithm for reducing its complexity. In this paper, we present HMNTT, a highly efficient MDC-NTT architecture. Utilizing the four-step NTT algorithm and a pipelined transpose module, HMNTT offers a highly efficient and scalable architecture for handling NTT with large degrees. We optimize the processing element (PE) to alleviate backpressure and data conflicts in data flow. Leveraging FPGA characteristics, we construct a modular multiplication module to reduce resource usage and improve operating frequency. Evaluation results indicate that HMNTT achieves an average of 2.34x and 1.26x reduction in Area-Time Product compared to the latest pipelined NTT architectures.

Jingyao Zhang,Mohsen Imani,Elaheh Sadredini

2023-04-22

Abstract:Number Theoretic Transform (NTT) is an essential mathematical tool for computing polynomial multiplication in promising lattice-based cryptography. However, costly division operations and complex data dependencies make efficient and flexible hardware design to be challenging, especially on resource-constrained edge devices. Existing approaches either focus on only limited parameter settings or impose substantial hardware overhead. In this paper, we introduce a hardware-algorithm methodology to efficiently accelerate NTT in various settings using in-cache computing. By leveraging an optimized bit-parallel modular multiplication and introducing costless shift operations, our proposed solution provides up to 29x higher throughput-per-area and 2.8-100x better throughput-per-area-per-joule compared to the state-of-the-art.

Hardware Architecture,Cryptography and Security

Raziyeh Salarifard,Hadi Soleimany

DOI: https://doi.org/10.1007/s13389-024-00357-1

2024-06-06

Journal of Cryptographic Engineering

Abstract:The number theoretic transform (NTT) is used to efficiently execute polynomial multiplication. It has become an important part of lattice-based post-quantum methods and the subsequent generation of standard cryptographic systems. However, implementing post-quantum schemes is challenging since they rely on intricate structures. This paper demonstrates how to develop a high-speed NTT multiplier highly optimized for FPGAs with few logical resources. We describe a novel architecture for NTT that leverages unique precomputation. Our method efficiently maps these specific pre-computed values into the built-in Block RAMs, which greatly reduces the area and time required for implementation when compared to previous works. We have chosen Kyber parameters to implement the proposed architectures. Compared to the most well-known approach for implementing Kyber's polynomial multiplication using NTT, the AC (area latency) is reduced by , and AT (area time) is improved by as a result of the pre-computation we suggest in this study.

computer science, theory & methods

Trong-Hung Nguyen,Binh Kieu-Do-Nguyen,Cong-Kha Pham,Trong-Thuc Hoang

DOI: https://doi.org/10.1109/access.2024.3371581

IF: 3.9

2024-03-12

IEEE Access

Abstract:The efficiency of polynomial multiplication execution majorly impacts the performance of lattice-based post-quantum cryptosystems. In this research, we propose a high-speed hardware architecture to accelerate polynomial multiplication based on the Number Theoretic Transform (NTT) in CRYSTAL-Kyber and CRYSTAL-Dilithium. We design a Digital Signal Processing (DSP) architecture for modular multiplication in butterfly and Point-Wise Multiplication (PWM) operations. Our method reduces the critical path delay of an -bit multiplier to that of a ( -2)-bit adder, optimizing both area and speed. These dedicated DSPs are employed in butterfly and PWM operations, completely eliminating the pre-process and post-process of NTT transforms. Furthermore, we introduce a novel unified pipelined architecture for the NTT and Inverse NTT (INTT) transformations of Kyber and Dilithium, with corresponding high-speed (Radix-2) and ultra-high-speed (Radix-4) versions. Lastly, we construct a complete hardware accelerator for polynomial matrix-vector multiplication in Kyber. The Field-Programmable Gate Array (FPGA) implementation results have proven that our designs have significantly improved execution time by – for the NTT transforms in Dilithium and – for Kyber polynomial multiplication, compared to previous studies reported to date. Additionally, the hardware footprint results indicate that our proposed architectures exhibit superior hardware performance in Area-Time-Product (ATP), corresponding to a 44%–96% improvement. The proposed architectures are efficient and well-suited for high-performance lattice-based cryptography systems.

computer science, information systems,telecommunications,engineering, electrical & electronic

Muhammad Rashid,Safiullah Khan,Omar S. Sonbul,Seong Oun Hwang

DOI: https://doi.org/10.1109/access.2024.3509625

IF: 3.9

2024-12-11

IEEE Access

Abstract:This paper demonstrates an efficient and flexible hardware accelerator for polynomial multiplication using number theoretic transform (NTT). The proposed architecture considers flexibility and performance requirements at the same time. Flexibility is achieved by computing the following three operations: (i) computing only the forward NTT operation using a Cooley-Tukey butterfly unit (CT-BFU), (ii) computing only the inverse NTT operation using a Gentleman-Sande butterfly unit (GS-BFU), and (iii) computing both forward and inverse NTT operations simultaneously. The performance is enhanced by supporting parallelism between one CT-BFU unit, one GS-BFU unit, and four Block-RAMs. Moreover, a dedicated control unit is implemented to ensure a flexible and parallel FP-NTT design. A throughput/area metric is used for evaluation of performance for the proposed design. The implementation results are presented after post-placement and route on various Xilinx field-programmable gate array (FPGA) devices. Specifically, on Virtex-7 FPGA, FP-NTT operates at a frequency of , utilising 1026 slices, and requires and for forward and inverse NTT computations, respectively. The calculated throughput/area is 211.41 and 190.36 for forward and inverse computations, respectively. A comparison with state-of-the-art designs emphasises the suitability of the FP-NTT accelerator for high-speed cryptographic applications.

computer science, information systems,telecommunications,engineering, electrical & electronic

Xiaojie Chen,Weicong Lu,Tao Su,Dihu Chen

DOI: https://doi.org/10.1109/iscas58744.2024.10558123

2024-01-01

Abstract:Lattice-Based Cryptography (LBC) emerges as a powerful cryptographic primitive, offering a solution for post-quantum security. Within LBC schemes, one of the most computationally intensive tasks is polynomial multiplication, which can be accelerated through the Number Theoretic Transform (NTT). This paper proposes SHP-FsNTT, a scalable, dynamically configurable and high-performance hardware accelerator based on four-step NTT algorithm to support both NTT and inverse NTT (INTT). SHP-FsNTT leverages pipeline parallelism and data parallelism, and optimizes the memory access pattern to avoid the implementation of a matrix transposition unit for the four-step algorithm. The proposed design achieves remarkable area-time efficiency improvement compared with state-of-the-art works on FPGA.

Cong Zhang,Dongsheng Liu,Xingjie Liu,Xuecheng Zou,Guangda Niu,Bo Liu,Quming Jiang

DOI: https://doi.org/10.1109/iscas51556.2021.9401170

2021-01-01

Abstract:Kyber is a promising lattice-based post-quantum cryptography (PQC) for key encapsulation mechanisms. Since number theoretic transform (NTT) is the most computationally expensive operation in Kyber, this paper focuses on novel optimization techniques for efficient hardware implementation of NTT for Kyber. Benefiting from the proposed fast modular multiplication method and a doubled bandwidth ping-pong memory access scheme, our NTT architecture can complete an NTT operation in Kyber in 490 cycles using only 609 LUTs, 640 FFs, 2 DSPs on a Xlinx Artix-7 FPGA. The proposed NTT architecture is 3.95 times faster than the state-of-the-art design for Kyber while achieves an improvement of more than 1.5 times in the area time product (ATP). Compared with the state-of-the- art NTT designs for other algorithms, our NTT architecture reduces 24% FFs and 50% DSPs and ranks second smallest in ATPs, which can also confirm the high efficiency of our design.

Ali Yahya Hummdi,Amer Aljaedi,Zaid Bassfar,Sajjad Shaukat Jamal,Mohammad Mazyad Hazzazi,Mujeeb Ur Rehman

DOI: https://doi.org/10.1109/access.2024.3425813

IF: 3.9

2024-07-19

IEEE Access

Abstract:Polynomial multiplications based on the number theoretic transform (NTT) are critical in lattice-based post-quantum cryptography algorithms. Therefore, this paper presents a platform-agnostic unified hardware accelerator design (Unif-NTT) to compute the forward and inverse operations of the NTT for the CRYSTALS-Kyber algorithm. Moreover, a unified design (Unif-BU) of the Cooley-Tukey and Gentleman-Sande butterflies is presented using two adders, multipliers, subtractors, routing multiplexers and barret-based modular reduction units. Finally, a dedicated controller is implemented for efficient control functionalities. The implementation results are realized on field-programmable gate array (FPGA) and application-specific integrated circuit (ASIC) platforms. The Unif-NTT requires 1664 and 1792 clock cycles for one forward and inverse NTT computations, respectively. It can operate up to a maximum frequency of and over Virtex-7 FPGA and 28nm ASIC platforms, respectively. The Unif-NTT is 26% more efficient in Area-Time-Product compared to the most area-optimized NTT accelerator from the state-of-the-art. The Unif-NTT design is suited for applications that demand reasonable hardware resources with processing speed.

computer science, information systems,telecommunications,engineering, electrical & electronic

Suraj Mandal,Debapriya Basu Roy

2023-11-08

Abstract:Large-degree polynomial multiplication is an integral component of post-quantum secure lattice-based cryptographic algorithms like CRYSTALS-Kyber and Dilithium. The computational complexity of large-degree polynomial multiplication can be reduced significantly through Number Theoretic Transformation (NTT). In this paper, we aim to develop a unified and shared NTT architecture that can support polynomial multiplication for both CRYSTALS-Kyber and Dilithium. More specifically, in this paper, we have proposed three different unified architectures for NTT multiplication in CRYSTALS-Kyber and Dilithium with varying numbers of configurable radix-2 butterfly units. Additionally, the developed implementation is coupled with a conflict-free memory mapping scheme that allows the architecture to be fully pipelined. We have validated our implementation on Artix-7, Zynq-7000 and Zynq Ultrascale+ FPGAs. Our standalone implementations for NTT multiplication for CRYSTALS-Kyber and Dilithium perform better than the existing works, and our unified architecture shows excellent area and timing performance compared to both standalone and existing unified implementations. This architecture can potentially be used for compact and efficient implementation for CRYSTALS-Kyber and Dilithium.

Hardware Architecture,Cryptography and Security

Chi-Ming Marvin Chung,Vincent Hwang,Matthias J. Kannwischer,Gregor Seiler,Cheng-Jhih Shih,Bo-Yin Yang

DOI: https://doi.org/10.46586/tches.v2021.i2.159-188

2021-02-23

IACR Transactions on Cryptographic Hardware and Embedded Systems

Abstract:In this paper, we show how multiplication for polynomial rings used in the NIST PQC finalists Saber and NTRU can be efficiently implemented using the Number-theoretic transform (NTT). We obtain superior performance compared to the previous state of the art implementations using Toom–Cook multiplication on both NIST’s primary software optimization targets AVX2 and Cortex-M4. Interestingly, these two platforms require different approaches: On the Cortex-M4, we use 32-bit NTT-based polynomial multiplication, while on Intel we use two 16-bit NTT-based polynomial multiplications and combine the products using the Chinese Remainder Theorem (CRT).For Saber, the performance gain is particularly pronounced. On Cortex-M4, the Saber NTT-based matrix-vector multiplication is 61% faster than the Toom–Cook multiplication resulting in 22% fewer cycles for Saber encapsulation. For NTRU, the speed-up is less impressive, but still NTT-based multiplication performs better than Toom–Cook for all parameter sets on Cortex-M4. The NTT-based polynomial multiplication for NTRU-HRSS is 10% faster than Toom–Cook which results in a 6% cost reduction for encapsulation. On AVX2, we obtain speed-ups for three out of four NTRU parameter sets.As a further illustration, we also include code for AVX2 and Cortex-M4 for the Chinese Association for Cryptologic Research competition award winner LAC (also a NIST round 2 candidate) which outperforms existing code.

Neng Zhang,Qiao Qin,Hang Yuan,Chenggao Zhou,Shouyi Yin,Shaojun Wei,Leibo Liu

DOI: https://doi.org/10.1109/tc.2019.2958334

IF: 3.183

2020-01-01

IEEE Transactions on Computers

Abstract:Large integer multiplication, or large degree polynomial multiplication, is the most time-consuming operation in fully homomorphic encryption (FHE). Low area and power consumption are difficult to maintain while achieving high performance for a large size multiplier. To address this issue, an area-efficient low-power architecture for multiplication, named NTTU, is proposed in this article. First, a combined number theoretic transform (NTT) method consisting of decimation-in-time (DIT) NTT for input in natural order and bit-reversed order is proposed to eliminate the steps of zero padding, scramble, and the first stage in NTT, thereby achieving a reduction of $7N/2$7N/2 clock cycles compared with the single-type NTT method. Second, the NTT-uncoupled architecture is proposed to uncouple the multiplication components, decreasing the storage space for coefficients by 1/2 compared with state-of-the-art designs. Third, a parallel computing architecture based on a crossed memory access scheme is proposed, therein reducing the corresponding execution time by one-half compared with serial execution. Synthesized using 65 nm technology, the proposed architecture can multiply two 1024k/768k integers in 1.7 ms at 500 MHz at a cost of 13.66/7.67 million gates and 726.7/550.2 mW, and a 71.17 percent/30.37 percent area time product (ATP) reduction is achieved compared with the state-of-the-art ASIC designs.

Zhenyu Guan,Yongqing Zhu,Yicheng Huang,Luchang Lei,Xueyan Wang,Hongyang Jia,Yi Chen,Bo Zhang,Jin Dong,Song Bian

DOI: https://doi.org/10.23919/date58400.2024.10546833

2024-01-01

Abstract:Fully homomorphic encryption (FHE) and post-quantum cryptography (PQC) heavily rely on number theoretic transform (NTT) to accelerate polynomial multiplication. However, most existing NTT accelerators lack flexibility when the underlying modulus and polynomial lengths change. Current designs often store twiddle factors in on-chip storage, facing a noticeable drawback when frequent parameter changes occur, leading to a potential 50% decrease in computation speed due to the input bandwidth limitations. To address this challenge, we propose ESC-NTT, a fully-pipelined and flexible architecture for handling NTTs with varying parameters. ESC-NTT, a complete custom architecture, continuously performs N-point (inverse) NTT, negacyclic NTT (NCN), and inverse NCN (INCN) without introducing bubbles during modulus and NTT length switches. Additionally, we introduce a twiddle factor generator (TFG) module to replace on-chip factor storage and save 68.7% twiddle factors' bandwidth compared to inputting every factor. In the experiment, ESC-NTT is implemented on a Xilinx Alveo U280 FPGA and synthesized in a 28nm CMOS technology. In the case of frequent modulus switching and same on-chip storage, the calculation speed of ESC-NTT is 1.05x to 241.39x that of existing FHE accelerators when performing 4096-point NTT.

Hang Yang,Rongmao Chen,Qiong Wang,Zixuan Wu,Wei Peng

DOI: https://doi.org/10.1007/978-981-97-0945-8_7

2024-01-01

Abstract:CRYSTALS-Kyber is a promising post-quantum encryption candidate and has been selected for standardization. However, its operational efficiency faces challenges due to complex and time-consuming polynomial multiplication, which can be accelerated using number-theoretic transform (NTT). In this work, we propose a novel approach of hardware acceleration for NTT-based polynomial multiplication in CRYSTALS-Kyber on FPGA. Our approach leverages pipeline technology and optimized butterfly operation units with Montgomery and Barrett reductions, significantly improving computational efficiency. By running eight butterfly units in parallel, we achieve remarkably shorter computation cycles for key operations such as NTT, INTT, and PWM. Moreover, we introduce a dedicated Kyber algorithm PWM unit and optimized multi-RAM channel storage, greatly boosting memory access efficiency. This comprehensive optimization results in superior energy efficiency, surpassing other existing schemes and propelling the practical application of CRYSTALS-Kyber to new levels of efficiency.

Yue Geng,Xiao Hu,Minghao Li,Zhongfeng Wang

DOI: https://doi.org/10.1109/tcsii.2023.3260811

2023-01-01

IEEE Transactions on Circuits & Systems II Express Briefs

Abstract:Number theoretic transform (NTT) is widely applied as a fundamental component of next-generation cryptosystems. This brief introduces a novel high-low interactive memory access pattern for an out-of-place NTT design, which can be configurable in degree of parallelism. To achieve high area efficiency, the memory component of the proposed pattern is flexibly selected referring to the design parameters. Then for the first time, we present a quantitative analysis about the relevance between the degree of parallelism and the number of computing cycles. More importantly, we put forward a universal method of avoiding the memory conflict and obtaining the minimal number of computing cycles in a configurable NTT design. Based on the above optimization techniques, we develop the first parameterized out-of-place NTT architecture. Experimental results on FPGA show that our design can achieve higher efficiency in LUTs and BRAMs compared with previous works.

Hui-Qin Li,Tao Chen,Ai-Qing Wu,Chao-Xing Xu,Wei Li,Long-Mei Nan

DOI: https://doi.org/10.1109/apccas55924.2022.10090300

2022-01-01

Abstract:In July 2022, among the finalists for the fourth round of NIST's post-quantum public key cryptography, lattice-based algorithms using NTT to implement polynomial multiplication are CRYSTALS-KYBER and CRYSTALS-Dilithium. Therefore, in this paper, we design an efficient structure for polynomial multiplication based on the 2KNTT method for the purpose of improving the practical performance and satisfying variable parameters for these two algorithms. According to the existing 2KNTT algorithm, an eight-way parallel practical model that adapts to the requirements of the algorithm is designed under the premise of determining the storage granularity in advance. Specifically, the modulo multiplication unit can meet the operation of different moduli at the same time, and the control unit can meet the requirements of different number of terms. Experimental results show that this design can meet the polynomial multiplication with modulus 12 similar to 32 bits, term number 128, 256, 512, 1024, and modulus polynomial number x(n)+1, in which it takes 2052 cycles to perform a polynomial multiplication operation with the maximum parameter (n=1024, q=8380417).

Xiangchen Meng,Zijun Jiang,Yangdi Lyu

2024-10-07

Abstract:Polynomial multiplication is one of the fundamental operations in many applications, such as fully homomorphic encryption (FHE). However, the computational inefficiency stemming from polynomials with many large-bit coefficients poses a significant challenge for the practical implementation of FHE. The Number Theoretic Transform (NTT) has proven an effective tool in enhancing polynomial multiplication, but a fast and adaptable method for generating NTT accelerators is lacking. In this paper, we introduce HF-NTT, a novel NTT accelerator. HF-NTT efficiently handles polynomials of varying degrees and moduli, allowing for a balance between performance and hardware resources by adjusting the number of Processing Elements (PEs). Meanwhile, we introduce a data movement strategy that eliminates the need for bit-reversal operations, resolves different hazards, and reduces the clock cycles. Furthermore, Our accelerator includes a hardware-friendly modular multiplication design and a configurable PE capable of adapting its data path, resulting in a universal architecture. We synthesized and implemented prototype using Vivado 2022.2, and evaluated it on the Xilinx Virtex-7 FPGA platform. The results demonstrate significant improvements in Area-Time-Product (ATP) and processing speed for different polynomial degrees. In scenarios involving multi-modulus polynomial multiplication, our prototype consistently outperforms other designs in both ATP and latency metrics.

Hardware Architecture,Cryptography and Security