FPGA based Hardware Accleration for Elliptic Curve Cryptography ...

More documents

Recommendations

Info

6 v | } v Yg5 ¦î 3 ¾ v ®SaP| Yg5 î 3 ¾ | ®S 6 v Y | Yg5 ¾ v Y | ®[5 î 3 ¾ v ® | Yg5 ¦î 3 ¾ v ® | ® 6 6 v Y | Y ú ü v Y | Y ü v ® | ® Y 0ó6 v Y | Y l 3 0ó6 v Ya¾ v ®Sb=| Ya¾ | ®S l v Y | ®Ú¾ v ® | YD¾ v Y | Yb¾ v ® | ® 6 l 8 8 8 2.3. SEQUENTIAL MULTIPLICATION SCHEMES 15 Fig. 2.4a illustrates the schoolbook multiplication for 6°ñ . The gray boxes represent the results of the degree+ respective polynomial multiplications, which are denoted next to the boxes. The horizontal position of a box indicates its ò 5 0ó6 59ô offset . The ordering of the partial products by ¯ decreasing allows for the accumulation of the final result in a shift register and the application of an interleaved reduction scheme as detailed in Sec. 3.4.6. 5 ± with ò 2.3.2 Polynomial Karatsuba Multiplication In 1963 A. Karatsuba and Y. Ofman developed an algorithm of complexity õ7K(Úöø÷Cù 8 that computes the product of two( -bit integers [17]. Like the Schoolbook Multiplication, this algorithm divides the operands into two equal parts. Adopting the arithmetical operations tohÁ5.Â leads to ¢ £h¤ ¥ ¢ £¤ ¥ ¢ £h¤ ¥ ¢ £h¤ ¥ ¢ £h¤ ¥ úû 5 ¾ÆÁ–v Ya¾ v ®Sh| Ya¾ | ®S úBý ÂÈ5 î 3 ¾ v ® | ® úû úBý 6 l Y 5 ¾²Ál 3 ü l Y ü l 8 ÂÈ5 ¦î 3 ¾ l 8 (2.11) 6 l Y 5 ¾²Ál Y ¾ l 3 ¾ l 8 given by 8 ÂÈ5 ¦î 3 ¾ l withl YZ@ l 3 andl v ® | ®k\ 0ó6 Thus, the final product can be computed by 3 multiplications and 2 additions degree(b†¦ of polynomials and 4 additions degree( of polynomials as illustrated in Fig. 2.5. Again, since the addition can be computed combinationally in the same cycle as a partial multiplication, the complete multiplication takes 3 cycles only. By splitting the into 6 ± factors segments any¯ EN© (for ), the product can be withþ=öø÷Cù ¦ computed multiplications by a recursive application of this scheme. Due to the need to store intermediate results and to maintain a stack, recursive algorithms are not appropriate for hardware implementations. The recursion has thus to be unrolled. Fig. 2.4b shows the resulting degree+ multiplication scheme for an unrolled recursion of the Karatsuba with 6Šñ multiplication . Each pattern in Fig. 2.4b, which is additionally surrounded by a gray box, can be composed from one partial multiplication. The labels at the right side of the boxes determine the indices of the segments, whose sums have been multiplied. E.g., the label "13" denotes the termv Ya¾ v 8 . 6 v Y | ®Ú¾ v ® | YD¾ l Ya¾ l 8 b=| Yb¾ |
6 v |!6 v 3 5 3 î 8 ¾ v Yg5 î 8 ¾ v ®S#P| 3 5 3 ¦î 8 ¾ | YC5 ¦î 8 ¾ | ®Z } v 3 | 3 5 $ î 8 ¾Æv 3 | YD¾ v Y | 3 º5 ¾²v 3 | ®:¾ v Y | Yb¾ v ® | 3 º5 3 î 8 6 Y | ®:¾ v ® | Y[º5 î 8 ¾Æv ® | ®Z ¾7v 6 v 3 | 3 ú ü v Y | Y 2.3. SEQUENTIAL MULTIPLICATION SCHEMES 16 m/2 m/2−1 1 m/2−1 m/2 T 1 T 1 T 2 T 3 m/2 A=A 1x + A 0 m/2 B=B 1x + B0 T 1=A 1B1 T =(A +A )(B +B ) 2 1 0 1 0 T T =A B 3 3 0 0 . A B 2m−1 Figure 2.5: Polynomial Karatsuba multiplication scheme 2.3.3 Multi-Segment Karatsuba Multiplication The basic Karatsuba multiplication for polynomials in-hÁ5.Â is based on the idea of divide and conquer, since the operands are divided into two segments each. One may attempt to generalize this idea by subdividing the operands into more than two segments. [18] reports on such an implementation with a fixed number of three segments denoted as Karatsuba-variant multiplication. The proof for that multiplication scheme follows directly out of the classical Karatsuba algorithm by dividing the operands into three parts: ¢ £¤ ¥ ¢ £h¤ ¥ ¢ £h¤ ¥ ¢ £h¤ ¥ ü v 3 | 3 úû úû 5 $ î 8 ¾ÆÁ–v 3 ¾ v Y[h| 3 ¾ | YX úBý ÂÈ5 ü l 3 ü l (2.12) 3 ¾ v Ya¾ v ®Sh| 3 ¾ | Ya¾ | ®Z ¢ £¤ ¥ ¾7Á–v 8 ü l ç ü l 8 ÂÈ5 3 î 8 úBÿ Ya¾ v ®Zh| Y#¾ | ®Z ¢ £h¤ ¥ ¾7Á–v ¢ £h¤ ¥ ¢ £h¤ ¥ ¢ £h¤ ¥ Comparing Eqn. 2.11 and Eqn. 2.12 one might assume that a generalized Karatsuba scheme is possible by following the same scheme again. This assumption has been verified forñ to ¤ segments manually. This had lead to a generalized scheme that will be called Multi-Segment Karatsuba (MSK). Disregarding some slight arithmetic variations, the Karatsuba-variant multiplication is a special case of the MSK approach. The MSK multiplication scheme, which is proposed in this work, is more general because an arbitrary number of segments is supported. Two polynomials of degree ( over -hÁ5ÃÂ are multiplied by a -segment Karatsuba multiplication ú ¡ ü v Y | Y ü v ® | ® úBý ÂÈ5 î 8:¾ v ® | ® ú£¢ ú£¢
Page 1 and 2: Fachbereich Informatik Integrierte
Page 3 and 4: Contents List of Figures iv 1 Intro
Page 5 and 6: List of Figures c)! #"%$ d)& #"'$ 2
Page 7 and 8: 1.2. PREVIOUS WORK 2 of dividing a
Page 9 and 10: Chapter 2 Mathematical Background T
Page 11 and 12: Ymonpn _ #qkr9;=stPuiY[ v l _ wr9xK
Page 13 and 14: 2.2. FINITE FIELD ARITHMETIC 8 k P
Page 15 and 16: 2.2.4 Addition in-·‰¸º¹ » 2
Page 17 and 18: Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì
Page 19: 2.3. SEQUENTIAL MULTIPLICATION SCHE
Page 23 and 24: 2.3. SEQUENTIAL MULTIPLICATION SCHE
Page 25 and 26: 3.2. REGISTER FILE 20 3.2 Register
Page 27 and 28: 3.4. FINITE FIELD ARITHMETIC 22 3.4
Page 29 and 30: Ì Ì Ì Ì Ì 3.4. FINITE FIELD AR
Page 31 and 32: 3.6. EVALUATION SOFTWARE 26 used fo
Page 33 and 34: 4.2. XILINX XCV405E 28 implementati
Page 35 and 36: Chapter 5 Conclusions and Outlook 5
Page 37 and 38: Bibliography [1] National Institute
Page 39 and 40: Ô Ô bY©®v @ | ò 6 6 Y©® v
Page 41: 3 m°e'Ỹ %jijY l Y Ym°5 l l $ƒm

FPGA based Hardware Accleration for Elliptic Curve Cryptography ...

Create successful ePaper yourself

Delete template?

Save as template?