More Web Proxy on the site http://driver.im/

short-paper

Open access

Designing Hardware for Cryptography and Cryptography for Hardware

Authors:

Srinivas Devadas,

Simon Langowski,

Nikola Samardzic,

Sacha Servan-Schreiber,

Daniel SanchezAuthors Info & Claims

CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security

Pages 1 - 4

https://doi.org/10.1145/3548606.3559393

Published: 07 November 2022 Publication History

Abstract

There have been few high-impact deployments of hardware implementations of cryptographic primitives. We present the benefits and challenges of hardware acceleration of sophisticated cryptographic primitives and protocols, and briefly describe our recent work. We argue the significant potential for synergistic codesign of cryptography and hardware, where customized hardware accelerates cryptographic protocols that are designed with hardware acceleration in mind.

References

[1]

Gorjan Alagic, Jacob Alperin-Sheriff, Daniel Apon, David Cooper, Quynh Dang, John Kelsey, Yi-Kai Liu, Carl Miller, Dustin Moody, Rene Peralta, et al. Status report on the second round of the nist post-quantum cryptography standardization process. US Department of Commerce, NIST, 2020.

[2]

Martin R Albrecht, Valerio Cini, Russell WF Lai, Giulio Malavolta, and Sri AravindaKrishnan Thyagarajan. Lattice-based snarks: Publicly verifiable, preprocessing, and recursively composable. Cryptology ePrint Archive, 2022.

[3]

Gene M Amdahl. Validity of the single processor approach to achieving large scale computing capabilities. In Proceedings of the April 18--20, 1967, spring joint computer conference, pages 483--485, 1967.

Digital Library

[4]

Sebastian Banescu, Martín Ochoa, Nils Kunze, and Alexander Pretschner. Idea: benchmarking indistinguishability obfuscation--a candidate implementation. In International Symposium on Engineering Secure Software and Systems, pages 149-- 156. Springer, 2015.

[5]

Razvan Barbulescu and Sylvain Duquesne. Updating key size estimations for pairings. Journal of cryptology, 32(4):1298--1336, 2019.

Digital Library

[6]

Paulo SLM Barreto and Michael Naehrig. Pairing-friendly elliptic curves of prime order. In International workshop on selected areas in cryptography, pages 319--331. Springer, 2005.

[7]

Dan Boneh and Victor Shoup. A graduate course in applied cryptography. Draft 0.5, 2020.

[8]

Joppe W Bos, Craig Costello, Michael Naehrig, and Douglas Stebila. Post-quantum key exchange for the tls protocol from the ring learning with errors problem. In 2015 IEEE Symposium on Security and Privacy, pages 553--570. IEEE, 2015.

Digital Library

[9]

Joppe W Bos, Onur Özen, and Martijn Stam. Efficient hashing using the aes instruction set. In International Workshop on Cryptographic Hardware and Embedded Systems, pages 507--522. Springer, 2011.

[10]

Cecilia Boschini, Jan Camenisch, Max Ovsiankin, and Nicholas Spooner. Efficient post-quantum snarks for rsis and rlwe and their applications to privacy. In International Conference on Post-Quantum Cryptography, pages 247--267. Springer, 2020.

[11]

Elette Boyle, Niv Gilboa, and Yuval Ishai. Function secret sharing: Improvements and extensions. In Proceedings of the 2016 ACM SIGSAC Conference on Computer and Communications Security, pages 1292--1303, 2016.

Digital Library

[12]

Zvika Brakerski, Craig Gentry, and Vinod Vaikuntanathan. (leveled) fully homomorphic encryption without bootstrapping. In Proceedings of the 3rd Innovations in Theoretical Computer Science Conference, ITCS '12, New York, NY, USA, 2012. Association for Computing Machinery.

Digital Library

[13]

Wouter Castryck and Thomas Decru. An efficient key recovery attack on sidh (preliminary version). Cryptology ePrint Archive, 2022. https://eprint.iacr.org/ 2022/975.

[14]

Jung Hee Cheon, Andrey Kim, Miran Kim, and Yongsoo Song. Homomorphic encryption for arithmetic of approximate numbers. In Tsuyoshi Takagi and Thomas Peyrin, editors, Advances in Cryptology -- ASIACRYPT 2017, 2017.

[15]

Graeme Connell. Technology deep dive: Building a faster ORAM layer for enclaves. https://signal.org/blog/building-faster-oram/, 2022.

[16]

Graham Cormode, Michael Mitzenmacher, and Justin Thaler. Practical verified computation with streaming interactive proofs. In Proceedings of the 3rd Innovations in Theoretical Computer Science Conference, pages 90--112, 2012.

Digital Library

[17]

Henry Corrigan-Gibbs, Dan Boneh, and David Mazières. Riposte: An anonymous messaging system handling millions of users. In 2015 IEEE Symposium on Security and Privacy, pages 321--338. IEEE, 2015.

Digital Library

[18]

David Costenaro and Anthony Duer. The megawatts behind your megabytes: going from data-center to desktop. Proceedings of the 2012 ACEEE Summer Study on Energy Efficiency in Buildings, ACEEE, Washington, pages 13--65, 2012.

[19]

Emma Dauterman, Eric Feng, Ellen Luo, Raluca Ada Popa, and Ion Stoica. DORY: An encrypted search system with distributed trust. In 14th USENIX Symposium on Operating Systems Design and Implementation (OSDI 20), pages 1101--1119, 2020.

[20]

Natnatee Dokmai, L Jean Camp, and Ryan Henry. A proposal for assisted private information retrieval. Cryptology ePrint Archive, 2022.

[21]

Saba Eskandarian, Henry Corrigan-Gibbs, Matei Zaharia, and Dan Boneh. Express: Lowering the cost of metadata-hiding communication with cryptographic privacy. In 30th USENIX Security Symposium (USENIX Security 21), pages 1775-- 1792, 2021.

[22]

Axel Feldmann, Nikola Samardzic, Aleksandar Krastev, Srini Devadas, Ron Dreslinski, Christopher Peikert, and Daniel Sanchez. F1: A fast and programmable accelerator for fully homomorphic encryption. In Proceedings of the 54th annual ACM/IEEE International Symposium on Microarchitecture, 2021.

[23]

Ethereum Foundation. Zero-knowledge rollups. https://ethereum.org/en/ developers/docs/scaling/zk-rollups/, 2022.

[24]

Rosario Gennaro, Michele Minelli, Anca Nitulescu, and Michele Orrù. Latticebased zk-snarks from square span programs. In Proceedings of the 2018 ACM SIGSAC Conference on Computer and Communications Security, pages 556--573, 2018.

Digital Library

[25]

C. Gentry. Fully homomorphic encryption using ideal lattices. In STOC '09, pages 169--178, 2009.

Digital Library

[26]

Oded Goldreich. Foundations of cryptography: a primer, volume 1. Now Publishers Inc, 2005.

[27]

Shafi Goldwasser, Yael Tauman Kalai, and Guy N Rothblum. Delegating computation: interactive proofs for muggles. Journal of the ACM (JACM), 62(4):1--64, 2015.

[28]

Shay Gueron. Intel® advanced encryption standard (aes) new instructions set. https://www.intel.com/content/dam/doc/white-paper/advanced-encryptionstandard-new-instructions-set-paper.pdf, 2010.

[29]

Shay Gueron and Fabian Schlieker. Software optimizations of ntruencrypt for modern processor architectures. In Information Technology: New Generations, pages 189--199. Springer, 2016.

[30]

Alexandra Henzinger, Matthew M. Hong, Henry Corrigan-Gibbs, Sarah Meiklejohn, and Vinod Vaikuntanathan. One server for the price of two: Simple and fast single-server private information retrieval. Cryptology ePrint Archive, Paper 2022/949, 2022. https://eprint.iacr.org/2022/949.

[31]

Daira Hopwood, Sean Bowe, Taylor Hornby, and Nathan Wilcox. Zcash protocol specification. GitHub: San Francisco, CA, USA, page 1, 2016.

[32]

Mark Horowitz. 1.1 computing's energy problem (and what we can do about . In 2014 IEEE International Solid-State Circuits Conference Digest of Technical Papers (ISSCC), pages 10--14. IEEE, 2014.

[33]

Russell Impagliazzo and Steven Rudich. Limits on the provable consequences of one-way permutations. In Proceedings of the twenty-first annual ACM symposium on Theory of computing, pages 44--61, 1989.

Digital Library

[34]

Yuval Ishai, Hang Su, and David J Wu. Shorter and faster post-quantum designated-verifier zksnarks from lattices. In Proceedings of the 2021 ACM SIGSAC Conference on Computer and Communications Security, pages 212--234, 2021.

Digital Library

[35]

David Jao and Luca De Feo. Towards quantum-resistant cryptosystems from supersingular elliptic curve isogenies. In International Workshop on Post-Quantum Cryptography, pages 19--34. Springer, 2011.

Digital Library

[36]

Chiraag Juvekar, Vinod Vaikuntanathan, and Anantha Chandrakasan. GAZELLE: A low latency framework for secure neural network inference. In 27th USENIX Security Symposium (USENIX Security 18), pages 1651--1669, 2018.

[37]

Taechan Kim and Razvan Barbulescu. Extended tower number field sieve: A new complexity for the medium prime case. In Annual international cryptology conference, pages 543--571. Springer, 2016.

Digital Library

[38]

Jilan Lin, Ling Liang, Zheng Qu, Ishtiyaque Ahmad, Liu Liu, Fengbin Tu, Trinabh Gupta, Yufei Ding, and Yuan Xie. Inspire: In-storage private information retrieval via protocol and architecture co-design. In Proceedings of the 49th Annual International Symposium on Computer Architecture, ISCA '22, page 102--115, New York, NY, USA, 2022. Association for Computing Machinery.

[39]

Luciano Maino and Chloe Martindale. An attack on sidh with arbitrary starting curve. Cryptology ePrint Archive, 2022. https://eprint.iacr.org/2022/1026.

[40]

Pratyush Mishra, Ryan Lehmkuhl, Akshayaram Srinivasan, Wenting Zheng, and Raluca Ada Popa. Delphi: A cryptographic inference service for neural networks. In 29th USENIX Security Symposium (USENIX Security 20), pages 2505--2522, 2020.

[41]

Tilo Müller, Felix C Freiling, and Andreas Dewald. TRESOR runs encryption securely outside RAM. In 20th USENIX Security Symposium (USENIX Security 11), 2011.

[42]

James Nechvatal, Elaine Barker, Lawrence Bassham, William Burr, Morris Dworkin, James Foti, and Edward Roback. Report on the development of the advanced encryption standard (aes). Journal of research of the National Institute of Standards and Technology, 106(3):511, 2001.

[43]

Zachary Newman, Sacha Servan-Schreiber, and Srinivas Devadas. Spectrum: High-bandwidth anonymous broadcast. In 19th USENIX Symposium on Networked Systems Design and Implementation (NSDI 22), pages 229--248, 2022.

[44]

Mike O'Connor, Niladrish Chatterjee, Donghyuk Lee, John Wilson, Aditya Agrawal, Stephen W Keckler, and William J Dally. Fine-grained dram: Energyefficient dram for extreme bandwidth systems. In Proceedings of the 50th Annual IEEE/ACM International Symposium on Microarchitecture, pages 41--54, 2017.

Digital Library

[45]

Brandon Reagen, Woo-Seok Choi, Yeongil Ko, Vincent T Lee, Hsien-Hsin S Lee, Gu-Yeon Wei, and David Brooks. Cheetah: Optimizing and accelerating homomorphic encryption for private inference. In 2021 IEEE International Symposium on High-Performance Computer Architecture (HPCA), pages 26--39. IEEE, 2021.

[46]

Oded Regev. On lattices, learning with errors, random linear codes, and cryptography. Journal of the ACM (JACM), 56(6):1--40, 2009.

[47]

M. Sadegh Riazi, Kim Laine, Blake Pelton, and Wei Dai. Heax: An architecture for computing on encrypted data. In Proceedings of the Twenty-Fifth International Conference on Architectural Support for Programming Languages and Operating Systems, page 1295--1309, New York, NY, USA, 2020. Association for Computing Machinery.

Digital Library

[48]

Ronald L Rivest. A description of a single-chip implementation of the rsa cipher. LAMBDA Fourth Quarter, 1980.

[49]

Damien Robert. Breaking sidh in polynomial time. Cryptology ePrint Archive, 2022. https://eprint.iacr.org/2022/1038.pdf.

[50]

Nikola Samardzic, Axel Feldmann, Aleksandar Krastev, Nathan Manohar, Nicholas Genise, Srini Devadas, Karim Eldefrawy, Christopher Peikert, and Daniel Sanchez. Craterlake: A hardware accelerator for efficient unbounded computation on encrypted data. In Proceedings of the 49th annual International Symposium on Computer Architecture (ISCA-49), 2022.

Digital Library

[51]

Eli Ben Sasson, Alessandro Chiesa, Christina Garman, Matthew Green, Ian Miers, Eran Tromer, and Madars Virza. Zerocash: Decentralized anonymous payments from bitcoin. In 2014 IEEE symposium on security and privacy, pages 459--474. IEEE, 2014.

Digital Library

[52]

Peter Schwabe, Douglas Stebila, and Thom Wiggers. Post-quantum tls without handshake signatures. In Proceedings of the 2020 ACM SIGSAC Conference on Computer and Communications Security, pages 1461--1480, 2020.

Digital Library

[53]

Amazon Web Services. Using hybrid post-quantum tls with aws kms. https: //docs.aws.amazon.com/kms/latest/developerguide/pqtls.html, 2022. Accessed: 2022-08--30.

[54]

McKenzie van der Hagen and Brandon Lucia. Practical encrypted computing for iot clients. arXiv preprint arXiv:2103.06743, 2021.

[55]

Frank Wang, Catherine Yun, Shafi Goldwasser, Vinod Vaikuntanathan, and Matei Zaharia. Splinter: Practical private queries on public data. In 14th USENIX Symposium on Networked Systems Design and Implementation (NSDI 17), pages 299--313, 2017.

[56]

Ye Zhang, Shuo Wang, Xian Zhang, Jiangbin Dong, Xingzhong Mao, Fan Long, Cong Wang, Dong Zhou, Mingyu Gao, and Guangyu Sun. Pipezk: Accelerating zero-knowledge proof with a pipelined architecture. In 2021 ACM/IEEE 48th Annual International Symposium on Computer Architecture (ISCA), pages 416--428. IEEE, 2021.

Digital Library

Cited By

Bertolini RCarloni FConficconi D(2023)Co-designing an FPGA-Accelerated Encryption Library With PYNQ: The Pynqrypt Case StudyIEEE EUROCON 2023 - 20th International Conference on Smart Technologies10.1109/EUROCON56442.2023.10198938(683-688)Online publication date: 6-Jul-2023
https://doi.org/10.1109/EUROCON56442.2023.10198938

Index Terms

Designing Hardware for Cryptography and Cryptography for Hardware
1. Security and privacy
  1. Cryptography
  2. Security in hardware

Recommendations

Hardware-Accelerated Cryptography for Software-Defined Networks with P4
Innovative Security Solutions for Information Technology and Communications
Abstract
The paper presents a hardware-accelerated cryptographic solution for Field Programmable Gate Array (FPGA) based network cards that provide throughput up to 200 Gpbs. Our solution employs a Software-Defined Network (SDN) concept based on the high-...
Hardware coprocessors for high-performance symmetric cryptography

This work presents two hardware coprocessors for high-performance symmetric cryptographic algorithms. Two algorithms have been implemented, that is, Advanced Encryption Standard Algorithm and International Data Encryption Algorithm, using two different ...
Designing secure systems on reconfigurable hardware

The extremely high cost of custom ASIC fabrication makes FPGAs an attractive alternative for deployment of custom hardware. Embedded systems based on reconfigurable hardware integrate many functions onto a single device. Since embedded designers often ...

Comments

Please enable JavaScript to view thecomments powered by Disqus.

Information & Contributors

Information

Published In

cover image ACM Conferences

CCS '22: Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security

November 2022

3598 pages

ISBN:9781450394505

DOI:10.1145/3548606

General Chairs:
Heng Yin
University of California, Riverside
,
Angelos Stavrou
Virginia Tech
,
Program Chairs:
Cas Cremers
CISPA Helmholtz Center for Information Security
,
Elaine Shi
Carnegie Mellon University

Copyright © 2022 Owner/Author.

This work is licensed under a Creative Commons Attribution International 4.0 License.

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 07 November 2022

Check for updates

Author Tags

Qualifiers

Short-paper

Funding Sources

National Science Foundation

Conference

CCS '22

Sponsor:

SIGSAC

CCS '22: 2022 ACM SIGSAC Conference on Computer and Communications Security

November 7 - 11, 2022

CA, Los Angeles, USA

Acceptance Rates

Overall Acceptance Rate 1,261 of 6,999 submissions, 18%

Upcoming Conference

CCS '25

Sponsor:
sigsac

ACM SIGSAC Conference on Computer and Communications Security

October 13 - 17, 2025

Taipei , Taiwan

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

1
Total Citations
View Citations
1,749
Total Downloads

Downloads (Last 12 months)476
Downloads (Last 6 weeks)47

Reflects downloads up to 03 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Bertolini RCarloni FConficconi D(2023)Co-designing an FPGA-Accelerated Encryption Library With PYNQ: The Pynqrypt Case StudyIEEE EUROCON 2023 - 20th International Conference on Smart Technologies10.1109/EUROCON56442.2023.10198938(683-688)Online publication date: 6-Jul-2023
https://doi.org/10.1109/EUROCON56442.2023.10198938

View Options

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

Media

Figures

Other

Tables

View Table of Contents