Flexible and Scalable FPGA-Oriented Design of Multipliers for Large Binary Polynomials

Zoni, Davide; Galimberti, Andrea; Fornaciari, William

doi:10.1109/access.2020.2989423

Cited by 38 publications

(22 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Implementations of the Q-decoder have already appeared in the literature [19]- [22]. Moreover, a multiplier specifically designed to handle the arithmetic required in LEDAcrypt has been studied in [23], but it has an area comparable to complete implementations of the LEDAcrypt decoder, like those discussed in [19], [22]. The present work aims to provide an architecture suitable for low-cost implementation on both programmable logic devices, namely Field Programmable Gate Arrays (FPGAs), as well as Application Specific Integrated Circuits (ASICs).…”

Section: Our Contributionmentioning

confidence: 99%

“…2, the complexity of the Schoolbook algorithm grows as p 2 , while for the Karatsuba and Schönhage-Strassen multiplications it evolves as p log 2 (3) and p log 2 (p) log 2 (log 2 (p)), respectively [33]. While Karatsuba and Schönhage-Strassen are generally faster than the Schoolbook multiplication, they are however characterized by a larger hardware complexity [23], [34], [35]. Indeed, while the Schoolbook algorithm uses only a large adder, the Karatsuba multiplier (in its basic version) employs two adders and a small multiplier, while Schönhage-Strassen requires a multiplier plus a Fast Fourier Transform (FFT) module.…”

Section: A State Of the Artmentioning

confidence: 99%

See 1 more Smart Citation

Efficient Hardware Implementation of the LEDAcrypt Decoder

et al. 2021

View full text Add to dashboard Cite

This work describes an efficient implementation of the iterative decoder that is the main part of the decryption stage in the LEDAcrypt cryptosystem, recently proposed for post-quantum cryptography based on low-density parity-check (LDPC) codes. The implementation we present exploits the structure of the variables in order to accelerate the decoding process while keeping the area bounded. In particular, our focus is on the design of an efficient multiplier, the latter being a fundamental component also in view of considering different values of the cryptosystem's parameters, as it might be required in future applications. We aim to provide an architecture suitable for low cost implementation on both Field Programmable Gate Array (FPGA) and Application Specific Integrated Circuit (ASIC) implementations. As for the FPGA, the total execution time is 0.6 ms on the Artix-7 200 platform, employing at most 30% of the total available memory, 15% of the total available Look-up Tables and 3% of the Flip-Flops. The ASIC synthesis has been performed for both STM FDSOI 28 nm and UMC CMOS 65 nm technologies. After logic synthesis with the STM FDSOI 28 nm, the proposed decoder achieves a total latency of 0.15 ms and an area occupation of 0.09 mm 2 . The post-Place&Route implementation results for the UMC 65 nm show a total execution time of 0.3 ms, with an area occupation of 0.42 mm 2 and a power consumption of at most 10.5 mW.INDEX TERMS applied cryptography, post-quantum cryptography, hardware design, ASIC, FPGA, bitflipping decoding, LDPC codes.

show abstract

Section: Our Contributionmentioning

confidence: 99%

Section: A State Of the Artmentioning

confidence: 99%

Efficient Hardware Implementation of the LEDAcrypt Decoder

et al. 2021

View full text Add to dashboard Cite

show abstract

“…Modern embedded systems, especially those at the edge of the computing continuum, are no longer only smart sensors, but also general-purpose computing platforms performing data-processing, for which the computational efficiency is a standing design requirement. To this end, the design of (i) efficient hardware accelerators [1,2] and (ii) run-time energy-performance strategies [3] represents the de-facto solution to cope with the requirements of these new workload scenarios. In particular, such workloads are strongly heterogeneous, encompassing both critical and best-effort classes of applications.…”

Section: Introductionmentioning

confidence: 99%

An FPU design template to optimize the accuracy-efficiency-area trade-off

Zoni

Galimberti

Fornaciari

2021

Sustainable Computing: Informatics and Systems

Self Cite

View full text Add to dashboard Cite

“…Consequently, they cannot be readily employed to support QC-LDPC codes for post-quantum cryptography, for which the key-sizes are in the range of dozens of thousands of bits and the operativity is expected far beyond the range supposed for telecommunication applications. To the best of our knowledge, the work in [10] presents a flexible and scalable binary polynomial multiplier conceived for postquantum QC-LDPC-based cryptosystems, while no equivalent solution is available to support the syndrome decoding of large codes.…”

Section: Introductionmentioning

confidence: 99%

Efficient and Scalable FPGA-Oriented Design of QC-LDPC Bit-Flipping Decoders for Post-Quantum Cryptography

2020

Self Cite

View full text Add to dashboard Cite

Considering code-based cryptography, quasi-cyclic low-density parity-check (QC-LDPC) codes are foreseen as one of the few solutions to design post-quantum cryptosystems. The bit-flipping algorithm is at the core of the decoding procedure of such codes when used to design cryptosystems. An effective design must account for the computational complexity of the decoding and the code size required to ensure the security margin against attacks led by quantum computers. To this end, it is of paramount importance to deliver efficient and flexible hardware implementations to support quantum-resistant publickey cryptosystems, since available software solutions cannot cope with the required performance. This manuscript proposes an efficient and scalable architecture for the implementation of the bit-flipping procedure targeting large QC-LDPC codes for post-quantum cryptography. To demonstrate the effectiveness of our solution, we employed the nine configurations of the LEDAcrypt cryptosystem as representative use cases for QC-LDPC codes suitable for post-quantum cryptography. For each configuration, our template architecture can deliver a performance-optimized decoder implementation for all the FPGAs of the Xilinx Artix-7 mid-range family. The experimental results demonstrate that our optimized architecture allows the implementation of large QC-LDPC codes even on the smallest FPGA of the Xilinx Artix-7 family. Considering the implementation of our decoder on the Xilinx Artix-7 200 FPGA, the experimental results show an average performance speedup of 5 times across all the LEDAcrypt configurations, compared to the official optimized software implementation of the decoder that employs the Intel AVX2 extension. INDEX TERMS QC-LDPC codes, bit-flipping decoding, code-based cryptography, post-quantum cryptography, applied cryptography, FPGA, hardware design

show abstract

Flexible and Scalable FPGA-Oriented Design of Multipliers for Large Binary Polynomials

Cited by 38 publications

References 20 publications

Efficient Hardware Implementation of the LEDAcrypt Decoder

Efficient Hardware Implementation of the LEDAcrypt Decoder

An FPU design template to optimize the accuracy-efficiency-area trade-off

Efficient and Scalable FPGA-Oriented Design of QC-LDPC Bit-Flipping Decoders for Post-Quantum Cryptography

Contact Info

Product

Resources

About