CryptoManiac

Subscribe (Full Service)


	Search: The ACM Digital Library The Guide

	Feedback

CryptoManiac: a fast flexible architecture for secure communication

Full text

Pdf (836 KB)

Source

International Symposium on Computer Architecture archive
Proceedings of the 28th annual international symposium on Computer architecture table of contents

Göteborg, Sweden

Pages: 110 - 119

Year of Publication: 2001

ISBN:0-7695-1162-7

Also published in ...

Authors

Lisa Wu	Advanced Computer Architecture Laboratory, University of Michigan, Ann Arbor, MI
Chris Weaver	Advanced Computer Architecture Laboratory, University of Michigan, Ann Arbor, MI
Todd Austin	Advanced Computer Architecture Laboratory, University of Michigan, Ann Arbor, MI

Sponsors

SIGARCH: ACM Special Interest Group on Computer Architecture
IEEE-CS\TCCA : TC on Computer Arhitecture

Publisher

ACM New York, NY, USA

Bibliometrics

Downloads (6 Weeks): 14, Downloads (12 Months): 44, Citation Count: 21

Additional Information:

abstract references cited by index terms collaborative colleagues

Tools and Actions:	Review this Article Save this Article to a Binder Display Formats: BibTeX EndNote ACM Ref

DOI Bookmark:	Use this link to bookmark this Article: http://doi.acm.org/10.1145/379240.379256 What is a DOI?

ABSTRACT

The growth of the Internet as a vehicle for secure communication and electronic commerce has brought cryptographic processing performance to the forefront of high throughput system design. This trend will be further underscored with the widespread adoption of secure protocols such as secure IP (IPSEC) and virtual private networks (VPNs).

In this paper, we introduce the CryptoManiac processor, a fast and flexible co-processor for cryptographic workloads. Our design is extremely efficient; we present analysis of a 0.25um physical design that runs the standard Rijndael cipher algorithm 2.25 times faster than a 600MHz Alpha 21264 processor. Moreover, our implementation requires 1/100^th the area and power in the same technology. We demonstrate that the performance of our design rivals a state-of-the-art dedicated hardware implementation of the 3DES (triple DES) algorithm, while retaining the flexibility to simultaneously support multiple cipher algorithms. Finally, we define a scalable system architecture that combines CryptoManiac processing elements to exploit inter-session and inter-packet parallelism available in many communication protocols. Using I/O traces and detailed timing simulation, we show that chip multiprocessor configurations can effectively service high throughput applications including secure web and disk I/O processing.

REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

	1	Advanced Enct3ptionStandard (AES) Development Effbrt. US Government, http://csrc.nist.gov/eneryption/aes/.
	2	Martin F. Arlitt , Carey L. Williamson, Web server workload characterization: the search for invariants, Proceedings of the 1996 ACM SIGMETRICS international conference on Measurement and modeling of computer systems, p.126-137, May 23-26, 1996, Philadelphia, Pennsylvania, United States
	3	R. Atkinson. Security architecture for the internet protocol. IETF Draft Architecture ipsec-arch-secO0, 1996.
	4	Thomas Blum, Montgomery Modular Exponentiation on Reconfigurable Hardware, Proceedings of the 14th IEEE Symposium on Computer Arithmetic, p.70, April 14-16, 1999
	5	Jerome Burke , John McDonald , Todd Austin, Architectural support for fast symmetric-key cryptography, Proceedings of the ninth international conference on Architectural support for programming languages and operating systems, p.178-189, November 2000, Cambridge, Massachusetts, United States
	6	D.C. Burger and T. M. Austin. The simplescalar tool set, version 2.0. Technical Report CS-TR-97-1342, Unniversity of Wisconsin, Madison, June 1997.
	7	C. Burnwick and et al. The Mars Encryption Algorithm. IBM, http://csrc.nist.gov/encryption/aes/round2/AESAIgs/MARS, 1999
	8	Chrysalis-ITS Corporation. http://www.chrysalis-its.com
	9	Compaq Corporation. http :/ /www.research.compaq.com/wrl/techreports/abstracts/9 3.5.html.
	10	Counterpane Systems. http://www.couterpane.com
	11	CryptSoft Technologies. http://www.cryptsoft.com, 2000.
	12	J. Daemen and V. Rijmen. AES Proposal; Rijndael. http://csrc,nist.gov/encryption/aes/round2/AESAlgs/Rijndael, 1999.
	13	D.W. Davis and W. L. Price. Security for Computer Net3vorks. Wiley, 1989.
	14	DiskSIM simulator, http://www.ece.cmu.edu/ganger/disksim.
	15	P. Fergguson and G. Huston. What is a VPN. hnp:/Twww.emplovees.org/ferguson/vlm.pd l, 1998.
	16	David A. Patterson , John L. Hennessy, Computer architecture: a quantitative approach, Morgan Kaufmann Publishers Inc., San Francisco, CA, 1990
	17	Hi/Fn Corporation. http:/lwww.hifil.com
	18	Jin-Hua Hong , Cheng-Wen Wu, Radix-4 modular multiplication and exponentiation algorithms for the RSA public-key cryptosystem, Proceedings of the 2000 conference on Asia South Pacific design automation, p.565-570, January 2000, Yokohama, Japan [doi>10.1145/368434.368726]
	19	lnternet Traffic Archive. hnp://ita.ee.lbl.gov.
	20	S/390 and 0S/390 Crryptography. htpp://www.s390.ibm.com/security/cryptography.html.
	21	Charlie Kaufman , Radia Perlman , Mike Speciner, Network security: private communication in a public world, Prentice-Hall, Inc., Upper Saddle River, NJ, 1995
	22	J. Keller. A superscalar alpha processor with out-of-order exeecution. 9 th Annual Microprocessor Forum, 1996.
	23	Xuejia Laai. On the Design and Security, of Block Ciphers. Hartung- Gorre Veerlag, 1992.
	24	Mikko H. Lipasti , John Paul Shen, Exceeding the dataflow limit via value prediction, Proceedings of the 29th annual ACM/IEEE international symposium on Microarchitecture, p.226-237, December 02-04, 1996, Paris, France
	25	Mark S. Merkow , James Breithaupt, The Complete Guide to Internet Security, American Management Assoc., Inc., New York, NY, 2000
	26	U. Meyer-Base and R. Watzel. A comparison of DES and LFSR based FPGA implementable cryptography algorithms. 3 rd International Symposium on Communication Theory and Applications, pages 290-298, 1995.
	27	Micron Corporation. http://www.micro.com/rdram.
	28	P.L. Montgomery. Modular Multiplication Without Trial Division. Mathematics of Computation, 44(170):519-521, April 1985.
	29	Stephen Mooore.E nhancing Securi O, PeL'formance Through IA-64 Architecture. lntel Corporation, http://developer.intel.com/dcsign/securitv/rsa2000/itanium.pd{, 1999.
	30	An Introduction to Ct3ptography. Network Associates, Inc., http://www.pt{pi.org/doc/pgpintro/, 1999.
	31	Quantum Corporation. http://www.quantum.com.
	32	R.L. Rivest and et al. The RC6 Block Cipher. RSA Security, http://csrc.nist.gov/encrs, ptiorvaes/round2/AESAlgs/RC6.
	33	RSA Security. http://www.rsa.ocm.
	34	B. Schneier and et al. Twofish: A 128-Bit Block Cipher. Couterpane Systems, http://csrc.nist.gov/encryptiorv'aes/round2/AESAIgs/Twofish, 1998.
	35	Zhijie Shi , Ruby B. Lee, Bit Permutation Instructions for Accelerating Software Cryptography, Proceedings of the IEEE International Conference on Application-Specific Systems, Architectures, and Processors, p.138, July 10-12, 2000
	36	Shiva Corporation. http://www.shiva.com.
	37	Synopsys. http://www.synopsys.com.
	38	The SSL Protocol, version 3.0. Netscape, Inc., http://homc.netscape.com/eng/ss13/draft302.txt, 1999.

CITED BY 21

	Chris Weaver , Rajeev Krishna , Lisa Wu , Todd Austin, Application specific architectures: a recipe for fast, flexible and power efficient designs, Proceedings of the 2001 international conference on Compilers, architecture, and synthesis for embedded systems, November 16-17, 2001, Atlanta, Georgia, USA
	Nathan Clark , Hongtao Zhong , Wilkin Tang , Scott Mahlke, Automatic design of application specific instruction set extensions through dataflow graph exploration, International Journal of Parallel Programming, v.31 n.6, p.429-449, December 2003
	Dino Oliva , Rainer Buchty , Nevin Heintze, AES and the cryptonite crypto processor, Proceedings of the 2003 international conference on Compilers, architecture and synthesis for embedded systems, October 30-November 01, 2003, San Jose, California, USA
	Dirk Grunwald , Soraya Ghiasi, Microarchitectural denial of service: insuring microarchitectural fairness, Proceedings of the 35th annual ACM/IEEE international symposium on Microarchitecture, November 18-22, 2002, Istanbul, Turkey
	Alireza Hodjat , Ingrid Verbauwhede, High-Throughput Programmable Cryptocoprocessor, IEEE Micro, v.24 n.3, p.34-45, March 2004
	Srivaths Ravi , Paul Kocher , Ruby Lee , Gary McGraw , Anand Raghunathan, Security as a new dimension in embedded system design, Proceedings of the 41st annual conference on Design automation, June 07-11, 2004, San Diego, CA, USA
	Byeong Kil Lee , Lizy Kurian John, Implications of Executing Compression and Encryption Applications on General Purpose Processors, IEEE Transactions on Computers, v.54 n.7, p.917-922, July 2005
	Jun Yang , Lan Gao , Youtao Zhang, Improving Memory Encryption Performance in Secure Processors, IEEE Transactions on Computers, v.54 n.5, p.630-640, May 2005
	Timothy Sherwood , Mark Oskin , Brad Calder, Balancing design options with Sherpa, Proceedings of the 2004 international conference on Compilers, architecture, and synthesis for embedded systems, September 22-25, 2004, Washington DC, USA
	Armando Solar-Lezama , Rodric Rabbah , Rastislav Bodík , Kemal Ebcioğlu, Programming by sketching for bit-streaming programs, ACM SIGPLAN Notices, v.40 n.6, June 2005
	Allen C. Cheng , Gary S. Tyson, An Energy Efficient Instruction Set Synthesis Framework for Low Power Embedded System Designs, IEEE Transactions on Computers, v.54 n.6, p.698-713, June 2005
	Nathan T. Clark , Hongtao Zhong , Scott A. Mahlke, Automated Custom Instruction Generation for Domain-Specific Processor Acceleration, IEEE Transactions on Computers, v.54 n.10, p.1258-1270, October 2005
	Adam J. Elbirt , Christof Paar, An Instruction-Level Distributed Processor for Symmetric-Key Cryptography, IEEE Transactions on Parallel and Distributed Systems, v.16 n.5, p.468-480, May 2005
	Chen-Hsing Wang , Chih-Yen Lo , Min-Sheng Lee , Jen-Chieh Yeh , Chih-Tsun Huang , Cheng-Wen Wu , Shi-Yu Huang, A network security processor design based on an integrated SOC design and test platform, Proceedings of the 43rd annual conference on Design automation, July 24-28, 2006, San Francisco, CA, USA
	A. C. Cheng , G. S. Tyson, High-quality ISA synthesis for low-power cache designs in embedded microprocessors, IBM Journal of Research and Development, v.50 n.2/3, p.299-309, March 2006
	Divya Arora , Anand Raghunathan , Srivaths Ravi , Murugan Sankaradass , Niraj K. Jha , Srimat T. Chakradhar, Exploring software partitions for fast security processing on a multiprocessor mobile SoC, IEEE Transactions on Very Large Scale Integration (VLSI) Systems, v.15 n.6, p.699-710, June 2007
	Nathan Clark , Hongtao Zhong , Scott Mahlke, Processor Acceleration Through Automated Instruction Set Customization, Proceedings of the 36th annual IEEE/ACM International Symposium on Microarchitecture, p.129, December 03-05, 2003
	Karthikeyan Sankaralingam , Stephen W. Keckler , William R. Mark , Doug Burger, Universal Mechanisms for Data-Parallel Architectures, Proceedings of the 36th annual IEEE/ACM International Symposium on Microarchitecture, p.303, December 03-05, 2003
	Jun Yang , Youtao Zhang , Lan Gao, Fast Secure Processor for Inhibiting Software Piracy and Tampering, Proceedings of the 36th annual IEEE/ACM International Symposium on Microarchitecture, p.351, December 03-05, 2003
	Hsing-Chung Chen , Shiuh-Jeng Wang , Jyh-Horng Wen, Packet construction for secure conference call request in ad hoc network systems, Information Sciences: an International Journal, v.177 n.24, p.5598-5610, December, 2007
	A. J. Elbirt, Accelerated AES implementations via generalized instruction set extensions, Journal of Computer Security, v.16 n.3, p.265-288, August 2008