Efficient key-dependent message authentication in reconfigurable hardware

Dec 12, 2011·

Jérémie Crenne

Pascal Cotret

Guy Gogniat

Russell Tessier

Jean-Philippe Diguet

· 0 min read

PDF

Abstract

Cryptographic message authentication is a growing need for FPGA-based embedded systems. In this paper a customized FPGA implementation of a GHASH function that is used in AES-GCM, a widely-used message authentication protocol, is described. The implementation limits GHASH logic utilization by specializing the hardware implementation on a per-key basis. The implemented module can generate a 128bit message authentication code in both pipelined and unpipelined versions. The pipelined GHASH version achieves an authentication throughput of more than 14 Gbit/s on a Spartan-3 FPGA and 292 Gbit/s on a Virtex-6 device. To promote adoption in the field, the complete source code for this work has been made publically-available.

Type

Conference paper

Publication

In Field-Programmable Technolog

Last updated on Dec 12, 2011

Cryptography Security Hardware

Authors

Pascal Cotret

Associate Professor

← Bus-based MPSoC security through communication protection: A latency-efficient alternative May 1, 2012

Protecting communications in bus-based MPSoCs using hardware firewalls Jun 18, 2011 →