Upgrade to Pro — share decks privately, control downloads, hide ads and more …

Lilliput-AE: a New Lightweight Authenticated Encryption Block Cipher for IoT

Alexis DUQUE
October 29, 2019
Research
0
180

Lilliput-AE: a New Lightweight Authenticated Encryption Block Cipher for IoT

Lilliput-AE is a candidate to the new upcoming NIST Lightweight Cryptographic Standardization Process, that has serious advantages from security and performance point of view. Lilliput-AE performs very well on software on 8-bit (e.g., ATMega 128) and 16-bit (e.g., MSP430) platforms since it has comparable or smaller execution time than the two final members of CAESAR (Competition for Authenticated Encryption: Security, Applicability, and Robustness) lightweight portfolio: ASCON and ACORN.

This talk will introduce Lilliput-AE design and performances. We will show that Lilliput-AE is well suited for IoT devices and constrained environments.

Alexis DUQUE

October 29, 2019
Tweet

More Decks by Alexis DUQUE

See All by Alexis DUQUE
Rendre son IoT encore plus intelligent avec Tensorflow Lite @SnowCampIO
alexisduque
0
120
Performance Evaluation of LED-to-Camera Communications
alexisduque
2
390
La 5G, 15' pour (presque) tout comprendre
alexisduque
2
60
Rendre son IoT encore plus intelligent avec Tensorflow Lite
alexisduque
0
110
5G, 15' to understand (almost) everything.pdf
alexisduque
1
230
Make your IoT even Smarter with Tensorflow Lite to Design the Future of Vertical Farming
alexisduque
1
520
MINALOGIC Journée Securité IoT - PACLIDO
alexisduque
0
240
Research at Rtone
alexisduque
0
190
LoRaWan, Sigfox, NB-IoT, LTE-M: quel LPWAN choisir pour son objet connecté ?
alexisduque
2
280

Other Decks in Research

See All in Research
[2023 CCSE] ZOZOTOWN検索における 研究開発の取り組みについて
tomoyayama
0
130
[Human-AI Decision Making勉強会] 説明の更新はユーザにどのような影響をもたらすか
okoso
1
150
Discovering Universal Geometry in Embeddings with ICA
momoseoyama
1
340
[arXiv'23] SCOPE-RL: A Python Library for Offline RL and Off-Policy Evaluation
harukakiyohara_
0
100
CVPR2023 EarthVision Workshopより衛星画像関連論文紹介 / Satellite Imaging Processing Papers in CVPR2023 EarthVision Workshop
nttcom
0
120
Alexander Mielke Hellinger--Kantorovich (a.k.a. Wasserstein-Fisher-Rao) Spaces and Gradient Flows
jjzhu
3
180
[ICLR'24] Towards Assessing and Benchmarking Risk-Return Tradeoff of OPE
harukakiyohara_
0
180
株式会社リクルートホールディングス 企業分析
frandle256
0
130
SSII2023 医療支援における画像処理研究の動向と展望
moda0
0
110
F0に基づいて伸縮された画像文字からの音声合成 [ASJ2024春]
nehi0615
0
120
Prompt Tuning から Fine Tuning への移行時期推定
icoxfog417
17
6.9k
NeurIPS-23 参加報告 + DPO 解説
akifumi_wachi
4
1.4k

Featured

See All Featured
How to Create Impact in a Changing Tech Landscape [PerfNow 2023]
tammyeverts
12
1.5k
JavaScript: Past, Present, and Future - NDC Porto 2020
reverentgeek
39
4.4k
GraphQLの誤解/rethinking-graphql
sonatard
50
9.2k
Visualizing Your Data: Incorporating Mongo into Loggly Infrastructure
mongodb
34
8.9k
Code Review Best Practice
trishagee
54
15k
Practical Orchestrator
shlominoach
181
9.7k
Bash Introduction
62gerente
604
210k
Scaling GitHub
holman
457
140k
Creating an realtime collaboration tool: Agile Flush - .NET Oxford
marcduiker
13
1.5k
Design by the Numbers
sachag
274
18k
From Idea to $5000 a Month in 5 Months
shpigford
377
45k
Learning to Love Humans: Emotional Interface Design
aarron
266
39k

Transcript

  1. Lilliput-AE A Lightweight Authenticated Block Cipher Alexis Duque @alexis0duque

  2. Who Am I? Alexis DUQUE Director of Research & Development

    • @alexis0duque • alexisduque • [email protected] • alexisduque.me • https://goo.gl/oNUWu6

  3. R&D Project PACLIDO A Collaborative R&D project on IoT Security

    paclido.fr / @fui_paclido

  4. Goals • Design a lightweight authenticated encryption cipher for IoT

    • Use cases in smart home, smart city, smart factory • BLE, Zigbee, LoRa, LoraWAN, VLC • AVR (8bits), MSP (16bits), Cortex-M (32bits), Cortex-A (64bits) • Participate to the NIST LWC Competition

  5. NIST LWC Competition National Institute of Standards and Technology (NIST)

    ”Because the majority of current cryptographic algorithms were designed for desktop/server environments, many of these algorithms do not fit into the constrained resources.” • March 2017: NIST announces that it has decided to create a portfolio of lightweight algorithms. • August 2018: Call for algorithms. • March 2019: Deadline for packages submissions. • November 4-5, 2019: NIST Lightweight Cryptography Workshop https://csrc.nist.gov/projects/lightweight-cryptography

  6. NIST Call Requirements • Better performance in constrained environments (hardware

    and software) compared to current NIST standards • Authenticated Encryption • Efficient preprocessing of a key: computation time and memory footprint • Countermeasures against various side-channel attack.

  7. NIST Evaluation Criteria • Security evaluation of the algorithms against

    known attacks (e.g., differential cryptanalysis) • Side Channel and Fault Attack Resistance • Cost metrics (e.g., area, memory, energy consumption) and performance metrics (e.g., latency, throughput, power consumption)

  8. Lilliput-AE Tweakable Block Cipher • The encryption uses a tweakable

    block cipher as internal primitive and has an authenticated encryption mode built on top of it. ➔ each tweak T gives a different permutation ➔ T is public M E K T E K M C C Block Cipher Tweakable Block Cipher

  9. Lilliput-AE Tweakable Block Cipher • 2 authenticated encryption modes: Lilliput-I

    and Lilliput-II – Lilliput-I: nonce-respecting mode ΘCB3 – Lilliput-II: nonce-misuse resistant mode SCT-2 [1] T. P. Berger, J. Francq, M. Minier, and G. Thomas, “Extended Generalized Feistel Networks Using Matrix Representation to Propose a New Lightweight Block Cipher: Lilliput,” IEEE Trans. Comput., vol. 65, no. 7, 2016.

  10. Performances on 8bits MCU

  11. Performances on 32bits MCU

  12. Thanks! ... more at paclido.fr/lilliput-ae [email protected] A. Adomnicai, T. Berger,

    C. Clavier, J.Francq, P. Huynh, V. Lallemand, K. Le Gouguec, M. Minier, L. Reynaud, G. Thomas
  13. None