Hardware Operators for Pairing-Based Cryptography

Ce module nécessite que Javascript soit activé sur votre navigateur pour fonctionner correctement.

Sommaire

Cet exposé a été présenté le 13 mars 2009.

Description

Orateur

Jean-Luc Beuchat - University of Tsukuba

This talk is devoted to the design of fast parallel accelerators for the cryptographic Tate pairing. We propose here a novel hardware implementation of Miller's loop based on a pipelined Karatsuba-Ofman multiplier. Thanks to a careful choice of the mean of computing the Tate pairing and algorithms for tower field arithmetic, we manage to keep the pipeline busy. We also describe the strategies we considered to design our parallel multiplier. They are included in a VHDL code generator allowing for the exploration of a wide range of operators. Then, we sketch the architecture of two coprocessors for the Tate pairing over GF(2^m) and GF(3^m). However, a final exponentiation is still needed to obtain a unique value, which is desirable in most of the cryptographic protocols. We supplement our pairing accelerators with a coprocessor responsible for this task. An improved exponentiation algorithm allows us to save hardware resources.<br/> According to our place-and-route results on Xilinx FPGAs, our designs improve both the computation time and the area-time trade-off compared to previoulsy published coprocessors.

Prochains exposés

Journées C2: pas de séminaire
- 03 avril 2026 (13:45 - 14:45)
- IRMAR - Université de Rennes - Campus Beaulieu Bat. 22, RDC, Rennes - Amphi Lebesgue
Endomorphisms via Splittings
- 10 avril 2026 (13:45 - 14:45)
- IRMAR - Université de Rennes - Campus Beaulieu Bat. 22, RDC, Rennes - Amphi Lebesgue
Orateur : Min-Yi Shen - No Affiliation

One of the fundamental hardness assumptions underlying isogeny-based cryptography is the problem of finding a non-trivial endomorphism of a given supersingular elliptic curve. In this talk, we show that the problem is related to the problem of finding a splitting of a principally polarised superspecial abelian surface. In particular, we provide formal security reductions and a proof-of-concept[…]
- Cryptography
Schéma de signature à clé publique : Frobénius-UOV
- 29 mai 2026 (13:45 - 14:45)
- IRMAR - Université de Rennes - Campus Beaulieu Bat. 22, RDC, Rennes - Amphi Lebesgue
Orateur : Gilles Macario-Rat - Orange

L'exposé présente un schéma de signature à clé publique post-quantique inspiré du schéma UOV et introduisant un nouvel outil : les formes de Frobénius. L'accent est mis sur le rôle et les propriétés des formes de Frobénius dans ce nouveau schéma : la simplicité de description, la facilité de mise en oeuvre et le gain inédit sur les tailles de signature et de clé qui bat RSA-2048 au niveau de[…]

Voir les exposés passés