| Presentation | 2008-05-22 Bitstream encryption and authentication with AES-GCM in dynamically reconfigurable systems Yohei HORI, Akashi SATOH, Hirofumi SAKANE, Kenji TODA, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | A high-speed and secure dynamic partial reconfiguration (DPR) system is realized with AES-GCM that guarantees both confidentiality and authenticity of FPGA bitstreams. In DPR systems, bitstream authentication is essential for avoiding fatal damage caused by unintended bitstreams. An encryption-only system can prevent bitstream cloning and reverse engineering, but cannot prevent erroneous or malicious bitstreams from being configured. Authenticated encryption is a relatively new concept that provides both message encryption and authentication, and AES-GCM is one of the latest authenticated encryption algorithms suitable for hardware implementation. We implemented the AES-GCM-based DPR system targeting the Virtex-5 device on an off-the-shelf board, and evaluated its throughput and hardware resource utilization. For comparison, we also implemented AES-CBC and SHA-256 modules on the same device. The experimental results showed that the AES-GCM-based system achieved higher throughput with less resource utilization than the AES/SHA-based system. The AES-GCM module achieved more than 1Gbps throughput and the entire system achieved about 800Mbps throughput with reasonable resource utilization. This paper clarifies the advantage of using AES-GCM for protecting DPR systems. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | FPGA / AES-GCM / run-time partial reconfiguration / bitstream encryption / bitstream authentication |
| Paper # | RECONF2008-3 |
| Date of Issue |
| Conference Information | |
| Committee | RECONF |
|---|---|
| Conference Date | 2008/5/15(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Reconfigurable Systems (RECONF) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Bitstream encryption and authentication with AES-GCM in dynamically reconfigurable systems |
| Sub Title (in English) | |
| Keyword(1) | FPGA |
| Keyword(2) | AES-GCM |
| Keyword(3) | run-time partial reconfiguration |
| Keyword(4) | bitstream encryption |
| Keyword(5) | bitstream authentication |
| 1st Author's Name | Yohei HORI |
| 1st Author's Affiliation | National Institute of Advanced Industrial Science and Technology (AIST)() |
| 2nd Author's Name | Akashi SATOH |
| 2nd Author's Affiliation | National Institute of Advanced Industrial Science and Technology (AIST) |
| 3rd Author's Name | Hirofumi SAKANE |
| 3rd Author's Affiliation | National Institute of Advanced Industrial Science and Technology (AIST) |
| 4th Author's Name | Kenji TODA |
| 4th Author's Affiliation | National Institute of Advanced Industrial Science and Technology (AIST) |
| Date | 2008-05-22 |
| Paper # | RECONF2008-3 |
| Volume (vol) | vol.108 |
| Number (no) | 48 |
| Page | pp.pp.- |
| #Pages | 6 |
| Date of Issue | |