Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

Presentation

Optimized Threshold Implementations: Number of Shares and Area/Latency Trade-off

March 12, 2019

Presenters

Ventzislav Nikov - NXP Semiconductors

Description

Joint work with: Dušan Božilov, Miroslav Knežević.

Abstract. Threshold implementation (TI) is a popular hardware masking technique, being used in some of the current most efficient side-channel secure designs. Earlier versions of TI are characterized by the number of input shares being dependant on both security order d and algebraic degree of a function t, namely td + 1. Later, the bound was reduced to d + 1, with the cost of increasing the number of output shares and requirements of the input shares. In this work, we utilize the optimized sharing method to investigate the impact of the number of S-box stages on the area and latency of the final design, with the two extreme cases of fully decomposed S-box and a single stage S-box. Finally, we show the trade-off on d+1 and td + 1 TI, for first- and second-order secure, low-latency and low-energy implementations of the PRINCE block cipher.

Optimized Threshold Implementations: Number of Shares and Area/Latency Trade-off. Click to watch the video.

(Click the above image to see video on Youtube)

Presented at

NIST Threshold Cryptography Workshop 2019

Downloads

Presentation (PDF)

Event Details

Location

    NIST, Gaithersburg campus

Related Topics

Security and Privacy: cryptography

Created March 12, 2019, Updated June 11, 2021