Efficient Hardware Implementations of Grain-128AEAD

Jonathan Sönnerup; Martin Hell; Mattias Sönnerup; Ripudaman Khattar

doi:10.1007/978-3-030-35423-7_25

Efficient Hardware Implementations of Grain-128AEAD

Jonathan Sönnerup, Martin Hell, Mattias Sönnerup, Ripudaman Khattar

Lund University

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

Abstract

We implement the Grain-128AEAD stream cipher in hardware, using a 65 nm library. By exploring different optimization techniques, both at RTL level but also during synthesis, we first target high throughput, then low power. We reach over 33 GB/s targeting a high-speed design, at expense of power and area. We also show that, when targeting low power, the design only requires 0.23 $${\upmu }$$W running at 100 kHz. By unrolling the design, the energy consumed when encrypting a fixed length message decreases, making the 64 parallelized version the most energy efficient implementation, requiring only 11.2 nJ when encrypting a 64 kbit message. At the same time, the best throughput/power ratio is achieved at a parallelization of 4.

Original language	English
Title of host publication	Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings
Editors	Feng Hao, Sushmita Ruj, Sourav Sen Gupta
Publisher	Springer Gabler
Pages	495-513
Number of pages	19
ISBN (Print)	9783030354220
DOIs	https://doi.org/10.1007/978-3-030-35423-7_25
Publication status	Published - 2019
Event	20th International Conference on Cryptology in India, INDOCRYPT 2019 - Hyderabad, India Duration: 2019 Dec 15 → 2019 Dec 18

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	11898 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	20th International Conference on Cryptology in India, INDOCRYPT 2019
Country/Territory	India
City	Hyderabad
Period	2019/12/15 → 2019/12/18

Subject classification (UKÄ)

Computer Sciences

Free keywords

ASIC
Grain
Hardware design
NIST
Stream cipher

Access to Document

10.1007/978-3-030-35423-7_25

1 Licentiate Thesis

On Lightweight Security for Constrained Environments
Sönnerup, J., 2020, Lunds Universitet/Lunds Tekniska Högskola. 113 p.
Research output: Thesis › Licentiate Thesis

Open Access
File

1 Finished

Sec4Factory: Cyber Security for Next Generation Factory (SEC4FACTORY)
Gehrmann, C. (PI), Kihl, M. (CoPI), Hell, M. (CoI), Fitzgerald, E. (Researcher), Toorani, M. (Researcher), Fitzgerald, E. (Researcher), Tärneberg, W. (Researcher) & Akbarian, F. (Researcher)
Swedish Foundation for Strategic Research, SSF
2018/04/01 → 2024/12/31
Project: Research

Cite this

Sönnerup, J., Hell, M., Sönnerup, M., & Khattar, R. (2019). Efficient Hardware Implementations of Grain-128AEAD. In F. Hao, S. Ruj, & S. Sen Gupta (Eds.), Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings (pp. 495-513). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11898 LNCS). Springer Gabler. https://doi.org/10.1007/978-3-030-35423-7_25

Sönnerup, Jonathan ; Hell, Martin ; Sönnerup, Mattias et al. / Efficient Hardware Implementations of Grain-128AEAD. Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings. editor / Feng Hao ; Sushmita Ruj ; Sourav Sen Gupta. Springer Gabler, 2019. pp. 495-513 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{ff8efb29842141b6b904fc9dc11c0c8e,

title = "Efficient Hardware Implementations of Grain-128AEAD",

abstract = "We implement the Grain-128AEAD stream cipher in hardware, using a 65 nm library. By exploring different optimization techniques, both at RTL level but also during synthesis, we first target high throughput, then low power. We reach over 33 GB/s targeting a high-speed design, at expense of power and area. We also show that, when targeting low power, the design only requires 0.23 $${\upmu }$$W running at 100 kHz. By unrolling the design, the energy consumed when encrypting a fixed length message decreases, making the 64 parallelized version the most energy efficient implementation, requiring only 11.2 nJ when encrypting a 64 kbit message. At the same time, the best throughput/power ratio is achieved at a parallelization of 4.",

keywords = "ASIC, Grain, Hardware design, NIST, Stream cipher",

author = "Jonathan S{\"o}nnerup and Martin Hell and Mattias S{\"o}nnerup and Ripudaman Khattar",

year = "2019",

doi = "10.1007/978-3-030-35423-7_25",

language = "English",

isbn = "9783030354220",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Gabler",

pages = "495--513",

editor = "Feng Hao and Sushmita Ruj and {Sen Gupta}, Sourav",

booktitle = "Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings",

address = "Germany",

note = "20th International Conference on Cryptology in India, INDOCRYPT 2019 ; Conference date: 15-12-2019 Through 18-12-2019",

}

Sönnerup, J, Hell, M, Sönnerup, M & Khattar, R 2019, Efficient Hardware Implementations of Grain-128AEAD. in F Hao, S Ruj & S Sen Gupta (eds), Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 11898 LNCS, Springer Gabler, pp. 495-513, 20th International Conference on Cryptology in India, INDOCRYPT 2019, Hyderabad, India, 2019/12/15. https://doi.org/10.1007/978-3-030-35423-7_25

Efficient Hardware Implementations of Grain-128AEAD. / Sönnerup, Jonathan; Hell, Martin; Sönnerup, Mattias et al.
Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings. ed. / Feng Hao; Sushmita Ruj; Sourav Sen Gupta. Springer Gabler, 2019. p. 495-513 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 11898 LNCS).

Research output: Chapter in Book/Report/Conference proceeding › Paper in conference proceeding › peer-review

TY - GEN

T1 - Efficient Hardware Implementations of Grain-128AEAD

AU - Sönnerup, Jonathan

AU - Hell, Martin

AU - Sönnerup, Mattias

AU - Khattar, Ripudaman

PY - 2019

Y1 - 2019

N2 - We implement the Grain-128AEAD stream cipher in hardware, using a 65 nm library. By exploring different optimization techniques, both at RTL level but also during synthesis, we first target high throughput, then low power. We reach over 33 GB/s targeting a high-speed design, at expense of power and area. We also show that, when targeting low power, the design only requires 0.23 $${\upmu }$$W running at 100 kHz. By unrolling the design, the energy consumed when encrypting a fixed length message decreases, making the 64 parallelized version the most energy efficient implementation, requiring only 11.2 nJ when encrypting a 64 kbit message. At the same time, the best throughput/power ratio is achieved at a parallelization of 4.

AB - We implement the Grain-128AEAD stream cipher in hardware, using a 65 nm library. By exploring different optimization techniques, both at RTL level but also during synthesis, we first target high throughput, then low power. We reach over 33 GB/s targeting a high-speed design, at expense of power and area. We also show that, when targeting low power, the design only requires 0.23 $${\upmu }$$W running at 100 kHz. By unrolling the design, the energy consumed when encrypting a fixed length message decreases, making the 64 parallelized version the most energy efficient implementation, requiring only 11.2 nJ when encrypting a 64 kbit message. At the same time, the best throughput/power ratio is achieved at a parallelization of 4.

KW - ASIC

KW - Grain

KW - Hardware design

KW - NIST

KW - Stream cipher

U2 - 10.1007/978-3-030-35423-7_25

DO - 10.1007/978-3-030-35423-7_25

M3 - Paper in conference proceeding

AN - SCOPUS:85077135782

SN - 9783030354220

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 495

EP - 513

BT - Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings

A2 - Hao, Feng

A2 - Ruj, Sushmita

A2 - Sen Gupta, Sourav

PB - Springer Gabler

T2 - 20th International Conference on Cryptology in India, INDOCRYPT 2019

Y2 - 15 December 2019 through 18 December 2019

ER -

Sönnerup J, Hell M, Sönnerup M, Khattar R. Efficient Hardware Implementations of Grain-128AEAD. In Hao F, Ruj S, Sen Gupta S, editors, Progress in Cryptology – INDOCRYPT 2019 - 20th International Conference on Cryptology Proceedings. Springer Gabler. 2019. p. 495-513. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-030-35423-7_25

Efficient Hardware Implementations of Grain-128AEAD

Abstract

Publication series

Conference

Subject classification (UKÄ)

Free keywords

Access to Document

Fingerprint

Research output

On Lightweight Security for Constrained Environments

Projects

Sec4Factory: Cyber Security for Next Generation Factory (SEC4FACTORY)

Cite this