AES抗差分功耗分析高效门限实现  

作　　者：蒲金伟 郑欣 徐迎晖 PU Jinwei;ZHENG Xin;XU Yinghui(College of Automation,Guangdong University of Technology,Guangzhou 510006,China;School of Integrated Circuits,Guangdong University of Technology,Guangzhou 510006,China)

机构地区：[1]广东工业大学自动化学院,广州510006 [2]广东工业大学集成电路学院,广州510006

出　　处：《小型微型计算机系统》2024年第10期2522-2528,共7页Journal of Chinese Computer Systems

基　　金：广东省基础与应用基础研究基金项目(2021A1515110777)资助;广东省重点领域研发计划项目(2022B0701180001)资助.

摘　　要：针对AES门限实现结构中存在流水线等待而导致加密效率低的问题,提出一种AES高效门限实现方案.S盒门限实现的流水线级数以及流水线等待严重影响AES门限实现的加密效率.采用Native-AES结构,合并S盒线性映射阶段到状态寄存器中完成,引入面向域掩码共3种方法,设计实现了流水线级数仅为3,随机数消耗仅为32bit的2输入共享的S盒门限实现方案.优化调度AES门限实现的加密顺序,降低S盒输入空闲时间到0,从而避免了流水线等待,提高了门限AES的加密吞吐率.实验结果表明,所提出的门限AES完成一次加密仅需179个时钟周期,较目前已提出AES门限实现方案加密吞吐率提高约22%以上.经t检验,所提出的AES高效门限实现具备抗一阶差分功耗分析能力.Aiming at the problem of low encryption efficiency caused by the pipeline waiting in the AES threshold implementation(TI)structure,a high-efficiency scheme for TI-based AES was proposed.The number of pipeline stages for the TI-based Sbox and the waiting clock cycles in the pipeline significantly affect the encryption efficiency of AES.Using the Native-AES structure,merging the Sbox linear mapping stage into the state register,and introducing domain oriented masking,a 2-share TI-based Sbox scheme with only three pipeline stages and the random number consumption only 32 bits has been designed and implemented.Optimize the encryption order of scheduling AES algorithm,so that the waiting clock cycles of the Sbox input is reduced to 0,avoiding the waiting of the pipeline,and improving the encryption throughput of TI-based AES.The experimental results show that the proposed TI-based AES only needs 179 clock cycles to complete one encryption,which is about 22%higher than the encryption throughput of the proposed TI-based AES scheme.After t-test,the high-efficiency TI-based AES has the ability to resist first-order differential power analysis.

关 键 词：AES 差分功耗分析 门限实现 S盒 高效 

分 类 号：TP309[自动化与计算机技术—计算机系统结构]