Hybrid Montgomery Reduction

In this article, we present a hybrid method to improve the performance of the Montgomery reduction by taking advantage of the Karatsuba technique. We divide the Montgomery reduction into two sub-parts, including one for the conventional Montgomery reduction and the other one for Karatsuba-aided multiplication. This approach reduces the multiplication complexity of <i>n</i>-limb Montgomery reduction from θ(<i>n</i><sup>2</sup> + <i>n</i>) to asymptotic complexity θ (7<i>n</i><sup>2</sup>/8 +<i>n</i>). Our practical implementation results over an 8-bit microcontroller also show performance enhancements by 11%.

[1]  Zhe Liu,et al.  Efficient arithmetic on ARM-NEON and its application for high-speed RSA implementation , 2015, Secur. Commun. Networks.

[2]  Erich Wenger,et al.  Fast Multi-precision Multiplication for Public-Key Cryptography on Embedded Microprocessors , 2018, Journal of Cryptology.

[3]  Anatolij A. Karatsuba,et al.  Multiplication of Multidigit Numbers on Automata , 1963 .

[4]  Paul G. Comba,et al.  Exponentiation Cryptosystems on the IBM PC , 1990, IBM Syst. J..

[5]  Peter Schwabe,et al.  High-speed Curve25519 on 8-bit, 16-bit, and 32-bit microcontrollers , 2015, Des. Codes Cryptogr..

[6]  Peter Schwabe,et al.  Multiprecision multiplication on AVR revisited , 2015, Journal of Cryptographic Engineering.

[7]  Hans Eberle,et al.  Comparing Elliptic Curve Cryptography and RSA on 8-bit CPUs , 2004, CHES.

[8]  Ç. Koç,et al.  Incomplete reduction in modular arithmetic , 2002 .

[9]  Roberto Maria Avanzi,et al.  Energy-Efficient Software Implementation of Long Integer Modular Arithmetic , 2005, CHES.

[10]  O. Khan,et al.  ACM Transactions on Embedded Computing Systems continued on back cover , 2018 .

[11]  Daniel Shumow,et al.  Montgomery Multiplication Using Vector Instructions , 2013, Selected Areas in Cryptography.

[12]  Tolga Acar,et al.  Analyzing and comparing Montgomery multiplication algorithms , 1996, IEEE Micro.

[13]  Tanja Lange,et al.  Curve41417: Karatsuba revisited , 2014, IACR Cryptol. ePrint Arch..

[14]  Daniel J. Bernstein,et al.  Batch Binary Edwards , 2009, CRYPTO.

[15]  Stefan Mangard,et al.  Power analysis attacks - revealing the secrets of smart cards , 2007 .

[16]  Zhe Liu,et al.  Multi-precision Squaring for Public-Key Cryptography on Embedded Microprocessors , 2013, INDOCRYPT.

[17]  Hwajeong Seo,et al.  Multi-precision Multiplication for Public-Key Cryptography on Embedded Microprocessors , 2012, WISA.

[18]  Zhe Liu,et al.  Reverse Product-Scanning Multiplication and Squaring on 8-Bit AVR Processors , 2014, ICICS.

[19]  Zhe Liu,et al.  New Speed Records for Montgomery Modular Multiplication on 8-Bit AVR Microcontrollers , 2014, AFRICACRYPT.

[20]  Younho Lee,et al.  Improved multi-precision squaring for low-end RISC microcontrollers , 2013, J. Syst. Softw..

[21]  Peter L. Montgomery,et al.  Five, six, and seven-term Karatsuba-like formulae , 2005, IEEE Transactions on Computers.

[22]  P. L. Montgomery Modular multiplication without trial division , 1985 .

[23]  Ilya Kizhvatov,et al.  Efficient and Side-Channel Resistant RSA Implementation for 8-bit AVR Microcontrollers , 2010 .