The design of scalar AES Instruction Set Extensions for RISC-V

The design of scalar AES Instruction Set Extensions for RISC-V

Show other versions (1)

Secure, efficient execution of AES is an essential requirement on most computing platforms. Dedicated Instruction Set Extensions (ISEs) are often included for this purpose. RISC-V is a (relatively) new ISA that lacks such a standardized ISE. We survey the state-of-the-art industrial and academic IS...

Full description

Bibliographic Details
Main Authors: Ben Marshall, G. Richard Newell, Dan Page, Markku-Juhani O. Saarinen, Claire Wolf
Format: Article
Language:English
Published: Ruhr-Universität Bochum 2020-12-01
Series:Transactions on Cryptographic Hardware and Embedded Systems
Subjects:
ISE
AES
RISC-V
Online Access:https://ojs-dev.ub.rub.de/index.php/TCHES/article/view/8729
id doaj-fee8382140c84264b54f5f6c91afabbe
record_format Article
spelling doaj-fee8382140c84264b54f5f6c91afabbe2021-02-03T15:50:05ZengRuhr-Universität BochumTransactions on Cryptographic Hardware and Embedded Systems2569-29252020-12-0120211The design of scalar AES Instruction Set Extensions for RISC-VBen Marshall0G. Richard Newell1Dan Page2Markku-Juhani O. Saarinen3Claire Wolf4Department of Computer Science, University of BristolMicrochip Technology Inc., USADepartment of Computer Science, University of BristolPQShield, UKSymbiotic EDA Secure, efficient execution of AES is an essential requirement on most computing platforms. Dedicated Instruction Set Extensions (ISEs) are often included for this purpose. RISC-V is a (relatively) new ISA that lacks such a standardized ISE. We survey the state-of-the-art industrial and academic ISEs for AES, implement and evaluate five different ISEs, one of which is novel. We recommend separate ISEs for 32 and 64-bit base architectures, with measured performance improvements for an AES-128 block encryption of 4x and 10x with a hardware cost of 1.1K and 8.2K gates respectively, when compared to a software-only implementation based on use of T-tables. We also explore how the proposed standard bit-manipulation extension to RISC-V can be harnessed for efficient implementation of AES-GCM. Our work supports the ongoing RISC-V cryptography extension standardisation process. https://ojs-dev.ub.rub.de/index.php/TCHES/article/view/8729ISEAESRISC-V
collection DOAJ
language English
format Article
sources DOAJ
author Ben Marshall
G. Richard Newell
Dan Page
Markku-Juhani O. Saarinen
Claire Wolf
spellingShingle Ben Marshall
G. Richard Newell
Dan Page
Markku-Juhani O. Saarinen
Claire Wolf
The design of scalar AES Instruction Set Extensions for RISC-V
Transactions on Cryptographic Hardware and Embedded Systems
ISE
AES
RISC-V
author_facet Ben Marshall
G. Richard Newell
Dan Page
Markku-Juhani O. Saarinen
Claire Wolf
author_sort Ben Marshall
title The design of scalar AES Instruction Set Extensions for RISC-V
title_short The design of scalar AES Instruction Set Extensions for RISC-V
title_full The design of scalar AES Instruction Set Extensions for RISC-V
title_fullStr The design of scalar AES Instruction Set Extensions for RISC-V
title_full_unstemmed The design of scalar AES Instruction Set Extensions for RISC-V
title_sort design of scalar aes instruction set extensions for risc-v
publisher Ruhr-Universität Bochum
series Transactions on Cryptographic Hardware and Embedded Systems
issn 2569-2925
publishDate 2020-12-01
description Secure, efficient execution of AES is an essential requirement on most computing platforms. Dedicated Instruction Set Extensions (ISEs) are often included for this purpose. RISC-V is a (relatively) new ISA that lacks such a standardized ISE. We survey the state-of-the-art industrial and academic ISEs for AES, implement and evaluate five different ISEs, one of which is novel. We recommend separate ISEs for 32 and 64-bit base architectures, with measured performance improvements for an AES-128 block encryption of 4x and 10x with a hardware cost of 1.1K and 8.2K gates respectively, when compared to a software-only implementation based on use of T-tables. We also explore how the proposed standard bit-manipulation extension to RISC-V can be harnessed for efficient implementation of AES-GCM. Our work supports the ongoing RISC-V cryptography extension standardisation process.
topic ISE
AES
RISC-V
url https://ojs-dev.ub.rub.de/index.php/TCHES/article/view/8729
work_keys_str_mv AT benmarshall thedesignofscalaraesinstructionsetextensionsforriscv
AT grichardnewell thedesignofscalaraesinstructionsetextensionsforriscv
AT danpage thedesignofscalaraesinstructionsetextensionsforriscv
AT markkujuhaniosaarinen thedesignofscalaraesinstructionsetextensionsforriscv
AT clairewolf thedesignofscalaraesinstructionsetextensionsforriscv
AT benmarshall designofscalaraesinstructionsetextensionsforriscv
AT grichardnewell designofscalaraesinstructionsetextensionsforriscv
AT danpage designofscalaraesinstructionsetextensionsforriscv
AT markkujuhaniosaarinen designofscalaraesinstructionsetextensionsforriscv
AT clairewolf designofscalaraesinstructionsetextensionsforriscv
_version_ 1724286580857765888

Similar Items