论文信息 - On Optimized FPGA Implementations of the SHA-3 Candidate Groestl

On Optimized FPGA Implementations of the SHA-3 Candidate Groestl

Actual and future developments of the automotive market (e.g. the AUTOSAR project or car2car communication systems) will increase the need for a suitable cryptographic infrastructure in modern vehicles. A core component for such a generic cryptographic core is a secure cryptographic hash function, because these functions are the base for a lot of applications like challenge-reponse authentication systems and digital signature schemes. In the present paper we evaluate the SHA-3 candidate Grostl with respect to area requirements, which play a very important role for cost-sensitive markets. The National Institute of Standards and Technology (NIST) has started a competition for a new secure hash standard. In this context third party implementations of all proposed hash functions are regarded as an important part of the competition. We chose to implement the Grostl hash function for FPGAs, for its resemblance to AES. More precisely we developed two optimized versions, one optimized for throughput, the other one for area. Both implementations improve the results and estimates presented in the original submission to the competition. The performance of both implementations may be improved further, thus Grostl seems to be a good candidate for implementations on medium sized FPGAs. Besides that, it is shown that Grostl needs a significant amount of resources, which will hinder its use for automotive applications.

Steffen Reith | Bernhard Jungk | Jürgen Apfelbeck

[1] Ingrid Verbauwhede,et al. A Systematic Evaluation of Compact Hardware Implementations for the Rijndael S-Box , 2005, CT-RSA.

[2] J. Leasure,et al. Announcing request for candidate algorithm nominations for a new cryptographic hash algorithm (SHA-3 , 2007 .

[3] Vincent Rijmen,et al. A compact FPGA implementation of the hash function whirlpool , 2006, FPGA '06.

[4] Vincent Rijmen,et al. Using Normal Bases for Compact Hardware Implementations of the AES S-Box , 2008, SCN.

[5] Máire O'Neill,et al. High Performance Single-Chip FPGA Rijndael Algorithm Implementations , 2001, CHES.

[6] Florian Mendel,et al. Symmetric Cryptography , 2009 .

[7] Joan Daemen,et al. AES Proposal : Rijndael , 1998 .

[8] David Canright,et al. A Very Compact S-Box for AES , 2005, CHES.

[9] Sandra Dominikus,et al. Efficient AES Implementations on ASICs and FPGAs , 2004, AES Conference.

[10] Kris Gaj,et al. Very Compact FPGA Implementation of the AES Algorithm , 2003, CHES.