FPGA based Hardware Accleration for Elliptic Curve Cryptography ...

More documents

Recommendations

Info

Chapter 3 Hardware Architecture The architecture of the EC coprocessor (depicted in Fig. 3.1) mainly consists of four modules denoted as part (a) to (d). It has been implemented on several FPGA platforms (see Chap. 4 for implementation results) which allowed fast and easy practical evaluation of the design. Since the implementation of the modules (a) to (c) is basically straight forward and not expensive in terms of logic resources Sec. 3.1 to Sec. 3.3 give a brief overview on these components. In Sec. 3.4 the more complex and resource intensive finite field arithmetic is described in detail. Finally the software parts (VHDL generator and evaluation software) are illustrated in Sec. 3.5 and Sec. 3.6. a) b) Address 16 * n bit Register File DataFromPci DataToPci PCI Interface c) d) Interrupt EC Arithmetic FF Arithmetic Figure 3.1: Generic Datapath of the EC coprocessor 3.1 PCI Interface The interface component denoted as part (a) in Fig. 3.1 provides the external 32-bit wide PCI interface and an internal( -bit wide interface to the Register File. Data formats are converted across the interface by the use of appropriate shift registers. Most of this module could be reused from the previous ONB implementation.
3.2. REGISTER FILE 20 3.2 Register File Part (b) of Fig. 3.1 covers the Register File. It provides c registers of( -bit width. These registers are implemented by using FPGA internal Lookup Tables (LUT) and provide a dual ported interface allowing concurrent read and write access to the data. Currently ¤ registers are used as internal temporary registers for the EC algorithms and can therefore not be accessed by the user. The remaining ¤ register are left for field parameters, input operands and results. By modifying the EC level algorithms the requirements for internal temporary registers might change. 3.3 EC Arithmetic The EC Arithmetic, highlighted as part (c) in Fig. 3.1, implements the algorithm and the underlying EC operations EC-Add and EC-Double. It also implements the FF-Inversion that is intrinsically not an EC level operation. But since it is realized by the control flow oriented algorithm and composed of basic arithmetic operations in just like the EC level operations, FF-Inversion has been implemented here (see Alg. 4). Beside of the controller the module contains a single shift register of( -bit size. This register is needed to scan bit-wise as required by Eqn. 3. The controller is implemented by several Finite State Machines (FSM) in a hierarchical order. Each FSM controls one arithmetical operation, i.e., the algorithm, the EC-Add and the EC-Double operation. The hierarchical ordering of FSMs is considered to be the best tradeoff between speed and flexibility. Leaving the controller logic inside the software would provide more flexibility for changing EC level algorithms at the cost that pipelining delays and parallel operation of different modules becomes much more complicated (or might even be impossible). Furthermore the overhead and the delay for communication over the PCI interface makes this solution impracticable. The other way would be a single controller to prevent possible delays emerging from communication between the different FSMs. The great disadvantage of this approach is, that due to the unmanageable side-effects inside such an FSM, modifications of one algorithm (e.g. the EC algorithm) would lead to a rewrite of the whole controller and not just the EC controller. 3.4 Finite Field Arithmetic The finite field arithmetic that is denoted as part (d) in Fig. 3.1 is the most expensive part of the EC coprocessor. Due to the complexity it is split into separate modules that provide the functionality of the operations described in Sec. 2.2. A general overview of the datapath is given in Fig. 3.2. The particular parts depicted in this picture are described subsequently and the corresponding gate counts are summarized in Tab. 3.2. 3.4.1 Addition According to Eqn. 2.4 the addition inhÁ5ÃÂ is a just an( -bit wide XOR with no need for a subsequent reduction step. A complete addition can be performed in one cycle. So part (a) of Fig. 3.2 takes( XORgates of logic resources for it’s implementation. Please note, that the input registers are part of the Register File and the result register is used by all finite field operations together, because of which it’s FlipFlops are counted only once in part (f).
Page 1 and 2: Fachbereich Informatik Integrierte
Page 3 and 4: Contents List of Figures iv 1 Intro
Page 5 and 6: List of Figures c)! #"%$ d)& #"'$ 2
Page 7 and 8: 1.2. PREVIOUS WORK 2 of dividing a
Page 9 and 10: Chapter 2 Mathematical Background T
Page 11 and 12: Ymonpn _ #qkr9;=stPuiY[ v l _ wr9xK
Page 13 and 14: 2.2. FINITE FIELD ARITHMETIC 8 k P
Page 15 and 16: 2.2.4 Addition in-·‰¸º¹ » 2
Page 17 and 18: Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì Ì
Page 19 and 20: 2.3. SEQUENTIAL MULTIPLICATION SCHE
Page 21 and 22: 6 v |!6 v 3 5 3 î 8 ¾ v Yg5 î 8
Page 23: 2.3. SEQUENTIAL MULTIPLICATION SCHE
Page 27 and 28: 3.4. FINITE FIELD ARITHMETIC 22 3.4
Page 29 and 30: Ì Ì Ì Ì Ì 3.4. FINITE FIELD AR
Page 31 and 32: 3.6. EVALUATION SOFTWARE 26 used fo
Page 33 and 34: 4.2. XILINX XCV405E 28 implementati
Page 35 and 36: Chapter 5 Conclusions and Outlook 5
Page 37 and 38: Bibliography [1] National Institute
Page 39 and 40: Ô Ô bY©®v @ | ò 6 6 Y©® v
Page 41: 3 m°e'Ỹ %jijY l Y Ym°5 l l $ƒm

FPGA based Hardware Accleration for Elliptic Curve Cryptography ...

You also want an ePaper? Increase the reach of your titles

Delete template?

Save as template?