高速Ed25519验签算法硬件架构的设计与实现

薛一鸣; 刘树荣; 郭书恒; 李岩; 胡彩娥

doi:10.11959/j.issn.1000-436x.2022061

您当前的位置：

首页 >

文章列表页 >

高速Ed25519验签算法硬件架构的设计与实现

学术论文 | 更新时间：2024-06-05

- 高速Ed25519验签算法硬件架构的设计与实现
- High-speed hardware architecture design and implementation of Ed25519 signature verification algorithm
- 通信学报 2022年43卷第3期页码：101-112
- 作者机构：
  
  1. 中国农业大学信息与电气工程学院，北京 100083
  2. 中国农业大学理学院，北京 100083
  3. 国网北京市电力公司，北京 100031
- 作者简介：
  
  [ "薛一鸣（1968- ），男，山西文水人，中国农业大学教授、硕士生导师，主要研究方向为信息安全、大规模集成电路设计" ]
  [ "刘树荣（1997- ），男，彝族，云南楚雄人，中国农业大学硕士生，主要研究方向为信息安全、集成电路设计" ]
  [ "郭书恒（1999- ），男，河南济源人，中国农业大学硕士生，主要研究方向为信息安全" ]
  [ "李岩（1982- ），男，内蒙古呼和浩特人，博士，中国农业大学副教授、硕士生导师，主要研究方向为数论、编码、密码" ]
  [ "胡彩娥（1971- ），女，山西文水人，博士，国网北京市电力公司高级工程师，主要研究方向为大数据分析与安全、电力系统自动化" ]
- 基金信息：
  
  国家自然科学基金资助项目(61872368);国家重点研发计划基金资助项目(2021QY2312)
- DOI：10.11959/j.issn.1000-436x.2022061
  中图分类号： TN918
- 网络出版日期：2022-03，
  
  纸质出版日期：2022-03-25
- 稿件说明：
移动端阅览
薛一鸣, 刘树荣, 郭书恒, 等. 高速Ed25519验签算法硬件架构的设计与实现[J]. 通信学报, 2022,43(3):101-112.

Yiming XUE, Shurong LIU, Shuheng GUO, et al. High-speed hardware architecture design and implementation of Ed25519 signature verification algorithm[J]. Journal on communications, 2022, 43(3): 101-112.
薛一鸣, 刘树荣, 郭书恒, 等. 高速Ed25519验签算法硬件架构的设计与实现[J]. 通信学报, 2022,43(3):101-112. DOI： 10.11959/j.issn.1000-436x.2022061.

Yiming XUE, Shurong LIU, Shuheng GUO, et al. High-speed hardware architecture design and implementation of Ed25519 signature verification algorithm[J]. Journal on communications, 2022, 43(3): 101-112. DOI： 10.11959/j.issn.1000-436x.2022061.

摘要

针对区块链等特定场景对验签速度有较高要求的特点，设计了一种高速Ed25519验签算法的硬件架构。提出了基于交错NAF的多点乘算法，通过预计算和查表的方式，有效减少了点加、倍点的次数；采用Karatsuba乘法和快速约简方法实现模乘运算，并设计了不需要模加、模减的点加、倍点操作步骤，有效提升了点加、倍点运算的性能。针对解压过程中耗时的模幂运算，设计了模逆和模乘并行的模幂计算方法，提高了解压运算的性能。整个设计充分考虑了资源的复用，在Zynq-7020平台上实现需要13 695个Slices，在81.61 MHz的时钟频率下，每秒能够完成8 347次验签运算。

Abstract

Aiming at the high performance requirements of signature verification for specific scenarios such as blockchain

a high-speed hardware architecture of Ed25519 was proposed.To reduce the number of calculations for point addition and point double

a multiple point multiplication algorithm based on interleaving NAF was conducted by using pre-computation and lookup tables.The modular multiplication operation was realized by using the Karatsuba multiplication and fast reduction method

and the point addition and point double operation was designed without modular addition and subtraction

which could effectively improve the performance of point addition and point double.Given that modular exponentiation was the most time-consuming operation in the decompression process

a new modular exponentiation approach was developed by parallelizing modular inverse and modular multiplication

and therefore the performance of the de-compression operation could be improved.The proposed architecture fully considers the use of resources and is implemented on the Zynq-7020 FPGA platform with 13 695 slices

achieving 8 347 verifications per second at 81.6 MHz.

关键词

Keywords

references

KOBLITZ N . Elliptic curve cryptosystems [J ] . Mathematics of Computation , 1987 , 48 ( 177 ): 203 - 209 .

MILLER V S , . Use of elliptic curves in cryptography [C ] // Lecture Notes in Computer Science . Berlin:Springer , 1986 : 417 - 426 .

王婧 , 吴黎兵 , 罗敏 , 等 . 安全高效的两方协同 ECDSA 签名方案 [J ] . 通信学报 , 2021 , 42 ( 2 ): 12 - 25 .

WANG J , WU L B , LUO M , et al . Secure and efficient two-party ECDSA signature scheme [J ] . Journal on Communications , 2021 , 42 ( 2 ): 12 - 25 .

BERNSTEIN D J , DUIF N , LANGE T , et al . High-speed high-security signatures [J ] . Journal of Cryptographic Engineering , 2012 , 2 ( 2 ): 77 - 89 .

JOSEFSSON S , LIUSVAARA I . Edwards-curve digital signature algorithm (EdDSA) [R ] . 2017 .

GAYOSO M V , HERNÁNDEZ E L , MARTÍN M A , et al . Secure elliptic curves and their performance [J ] . Logic Journal of the IGPL , 2018 , 27 ( 2 ): 277 - 238 .

姚前 , 张大伟 . 区块链系统中身份管理技术研究综述 [J ] . 软件学报 , 2021 , 32 ( 7 ): 2260 - 2286 .

YAO Q , ZHANG D W . Survey on identity management in block-chain [J ] . Journal of Software , 2021 , 32 ( 7 ): 2260 - 2286 .

RESCORLA E . The transport layer security (TLS) protocol version 1.3 [R ] . 2018 .

GROBSCHÄDL J , FRANCK C , LIU Z . Lightweight EdDSA signature verification for the ultra-low-power Internet of things [C ] // Information Security Practice and Experience . Berlin:Springer , 2021 : 263 - 282 .

FAZ-HERNÁNDEZ A , LÓPEZ J , DAHAB R . High-performance implementation of elliptic curve cryptography using vector instructions [J ] . ACM Transactions on Mathematical Software , 2019 , 45 ( 3 ): 1 - 35 .

FUJII H , ARANHA D F . Curve25519 for the Cortex-M4 and beyond [C ] // International Conference on Cryptology and Information Security in Latin America . Berlin:Springer , 2017 : 109 - 127 .

SCOTT M . On the deployment of curve based cryptography for the Internet of things [J ] . IACR Cryptol ePrint Arch,2020 , 2020 :514.

ISLAM M M , HOSSAIN M S , HASAN M K , et al . FPGA implementation of high-speed area-efficient processor for elliptic curve point multiplication over prime field [J ] . IEEE Access , 2019 , 7 : 178811 - 178826 .

YANG H J , SHIN K W . A hardware implementation of point scalar multiplication on Edwards25519 curve [C ] // Proceedings of 2021 International Conference on Electronics,Information,and Communication (ICEIC) . Piscataway:IEEE Press , 2021 : 1 - 3 .

MEHRABI M A , DOCHE C . Low-cost,low-power FPGA implementation of ED25519 and Curve25519 point multiplication [J ] . Information , 2019 , 10 ( 9 ): 285 .

TURAN F , VERBAUWHEDE I . Compact and flexible FPGA implementation of Ed25519 and X25519 [J ] . ACM Transactions on Embedded Computing Systems , 2019 , 18 ( 3 ): 1 - 21 .

于斌 , 黄海 , 刘志伟 , 等 . 高性能 Ed25519 算法硬件架构设计与实现 [J ] . 电子与信息学报 , 2021 , 43 ( 7 ): 1821 - 1827 .

YU B , HUANG H , LIU Z W , et al . High-performance hardware archi-tecture design and implementation of Ed25519 algorithm [J ] . Journal of Electronics ＆ Information Technology , 2021 , 43 ( 7 ): 1821 - 1827 .

BISHEH-NIASAR M , AZARDERAKHSH R , MOZAFFARI-KERMANI M , . Cryptographic accelerators for digital signature based on Ed25519 [J ] . IEEE Transactions on Very Large Scale Integration (VLSI) Systems , 2021 , 29 ( 7 ): 1297 - 1305 .

徐明 , 史量 . 基于伪四维投射坐标的多基链标量乘法 [J ] . 通信学报 , 2018 , 39 ( 5 ): 74 - 84 .

XU M , SHI L . Pseudo 4D projective coordinate-based multi-base scalar multiplication [J ] . Journal on Communications , 2018 , 39 ( 5 ): 74 - 84 .

尤文珠 , 葛海波 . 利用多基数系统的高效椭圆曲线多标量乘算法 [J ] . 计算机工程 , 2021 , 47 ( 2 ): 182 - 187 .

YOU W Z , GE H B . Efficient algorithm for multi-scalar multipli-cation of elliptic curves using multi-base number system [J ] . Computer Engineering , 2021 , 47 ( 2 ): 182 - 187 .

HANKERSON D , VANSTONE S , MENEZES A J . Guide to elliptic curve cryptography [M ] . Berlin : Springer Science ＆ Business Media , 2006 .

SALARIFARD R , BAYAT-SARMADI S , . An efficient low-latency point-multiplication over Curve25519 [J ] . IEEE Transactions on Circuits and Systems I:Regular Papers , 2019 , 66 ( 10 ): 3854 - 3862 .

浏览量

637

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

基于Zynq平台的BFV全同态加密算法高效实现

CDBS：基于CRYSTALS-Dilithium算法的盲签名方案

基于ISRSAC数字签名算法的适配器签名方案

基于带智能卡的移动终端实现的隐私保护的属性票据方案

面向无人机网络的属性代理签名方案