The Journal of Korean Institute of Communications and Information Sciences (한국통신학회논문지)

The Korean Institute of Commucations and Information Sciences (한국통신학회)
권호 표지

Design of a Bit-Serial Divider in GF(2$^{m}$ ) for Elliptic Curve Cryptosystem

타원곡선 암호시스템을 위한 GF(2$^{m}$ )상의 비트-시리얼 나눗셈기 설계

  • 김창훈 (대구대학교 컴퓨터정보공학과) ;
  • 홍춘표 (대구대학교 컴퓨터정보공학과) ;
  • 김남식 (성균관대학교 수학과) ;
  • 권순학 (성균관대학교 수학과)
  • Published : 2002.12.01
Download PDF
⟨ Previous Next ⟩

Abstract

To implement elliptic curve cryptosystem in GF(2$\^$m/) at high speed, a fast divider is required. Although bit-parallel architecture is well suited for high speed division operations, elliptic curve cryptosystem requires large m(at least 163) to support a sufficient security. In other words, since the bit-parallel architecture has an area complexity of 0(m$\^$m/), it is not suited for this application. In this paper, we propose a new serial-in serial-out systolic array for computing division operations in GF(2$\^$m/) using the standard basis representation. Based on a modified version of tile binary extended greatest common divisor algorithm, we obtain a new data dependence graph and design an efficient bit-serial systolic divider. The proposed divider has 0(m) time complexity and 0(m) area complexity. If input data come in continuously, the proposed divider can produce division results at a rate of one per m clock cycles, after an initial delay of 5m-2 cycles. Analysis shows that the proposed divider provides a significant reduction in both chip area and computational delay time compared to previously proposed systolic dividers with the same I/O format. Since the proposed divider can perform division operations at high speed with the reduced chip area, it is well suited for division circuit of elliptic curve cryptosystem. Furthermore, since the proposed architecture does not restrict the choice of irreducible polynomial, and has a unidirectional data flow and regularity, it provides a high flexibility and scalability with respect to the field size m.

타원곡선 암호시스템을 GF(2$^{m}$ )상에서 고속으로 구현하기 위해서는 빠른 나눗셈기가 필요하다. 빠른 나눗셈 연산을 위해선 비트-패러럴 구조가 적합하나 타원곡선 암호시스템이 충분한 안전도를 가지기 위해서는 m의 크기가 최소한 163보다 커야 한다. 즉 비트-패러럴 구조는 0(m$^2$)의 면적 복잡도를 가지기 때문에 이러한 응용에는 적합하지 않다. 따라서, 본 논문에서는 CF(2$^{m}$ )상에서 표준기저 표기법을 사용하여 모듈러 나눗셈 A(x)/B(x) mod G(x)를 고속으로 수행하는 새로운 비트-시리얼 시스톨릭 나눗셈기를 제안한다. 효율적인 나눗셈기 구조를 얻기 위해, 새로운 바이너리 최대공약수(GCD) 알고리즘을 유도하고, 이로부터 자료의존 그래프를 얻은 후, 비트-시리얼 시스톨릭 나눗셈기를 설계한다. 본 논문에서 제안한 나눗셈기는 0(m)의 시간 및 면적 복잡도를 가지며, 연속된 입력 데이터에 대하여, 초기 5m-2 사이클의 지연 후, m 사이클 마다 나눗셈의 결과를 출력한다. 제안된 나눗셈기를 동일한 입출력 구조를 가지는 기존의 연구 결과들과 비교 분석한 결과 칩 면적 및 계산 지연시간 모두에 있어 상당한 개선을 보인다. 따라서 제안된 나눗셈기는 적은 하드웨어를 사용하면서 고속으로 나눗셈 연산을 수행할 수 있기 때문에 타원곡선 암호화시스템의 나눗셈 연산기로 매우 적합하다. 또한 제안한 구조는 기약 다항식(irreducible polynomial) 선택에 있어 어떤 제약도 두지 않고, 단 방향의 신호흐름을 가지면서, 매우 규칙적이기 때문에 필드 크기 m에 대해 높은 유연성 및 확장성을 제공한다.였다. an extraction system, a new optical nonlinear joint transform correlator(NJTC) is introduced to extract the hidden data from a stego image in real-time, in which optical correlation between the stego image and each of the stego keys is performed and from these correlation outputs the hidden data can be asily exacted in real-time. Especially, it is found that the SNRs of the correlation outputs in the proposed optical NJTC-based extraction system has been improved to 7㏈ on average by comparison with those of the conventional JTC system under the condition of having a nonlinear parameter less than k=0.4. This good experimental results might suggest a possibility of implementation of an opto-digital multiple information hiding and real-time extracting system. 촉각에 있는 지각신경세포가 뇌의 촉각엽으로 뻗어 들어가 위의 5가지 신경연접중 어느 형을 형성하는지를 관찰하기 위하여 좌측 촉각의

Keywords

References

  1. Standard Specifications for Publickey Cryptography IEEE P1363
  2. Elliptic Curves in Cryptography I.F.Blake;G.Seroussi;N.P.Smart
  3. Implementing Elliptic Curve Cryptography M.Rosing
  4. CHES 2000, LNCS 1965 Implementation of Elliptic Curve Cryptography Over Binary Fields D.Hankerson;J.L.Hernandez;A.Menezes
  5. J. of Cryptology v.14 no.3 Efficient Arithmetic in Finite Field Extensions with Application in Elliptic Curve Cryptography D.Bailey;C.Paar
  6. CHES 2000, LNCS 1965 A High- Performance Reconfigurable Elliptic Curve Processor for GF($2^m$) G.Orlando;C.Parr
  7. IEEE J. Selected Areas in Comm.. v.11 no.5 An Implementation for Elliptic Curve Cryptosystems Over $F_2^{155_2}$ G.B.Agnew;R.C.Mullin;S.A.Vanstone
  8. CHES 2000, LNCS 1717 Elliptic Curve Scalar Multiplier Design Using FPGAs L.Gao;S.Shrivastava;G.E.Solbelman
  9. IEEE Trans. Comput. v.42 no.9 A Systolic Architecture for Computing Inverses and Divisions in Finite Fields GF($2^m$) C.L.Wang;J.L.Lin
  10. IEEE Trans. Circuits Syst. II v.44 VLSI Architecutres for Computing exponentiations, Multiplicative Inverses, and Divisions in GF($2^m$) S.W.Wei
  11. IEE Proc. Comput. Digit. Tech. v.145 no.4 Hardware Efficient Systolic Architecture for Inversion and Division in GF($2^m$)/ J.H.Guo;C.L.Wang
  12. Proc. 1997 Int. Symp. VLSI Tech. Systems and Applications Bit-serial Systolic Array Implementation of Euclid's Algorithm for Inversion and Division in GF($2^m$)/ J.H.Guo;C.L.Wang
  13. IEEE Trans. Comput. v.42 no.8 On Computing Multiplicative Inverses in GF($2^m$)/ H.Brunner;A.Curiger;M.Hofstetter
  14. VLSI Array Processors S.Y.Kung
  15. The art of computer programming : Seminumerical algorithms(3rd edn), Reading D.E.Knuth
  16. Algorithmic Number Theory-Volume I:Efficient Algorithms E.Bach;J.Shallit
  17. Principles of CMOS VLSI Design: A System Perspective N.Weste;K.Eshraghian
  18. $APEX^ {TM}$ II Programable Logic Device Family Data Sheet Altera