Towards Practical Lattice-Based Public-Key Encryption on Reconfigurable Hardware

Conference paper

DOI: 10.1007/978-3-662-43414-7_4

Volume 8282 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Pöppelmann T., Güneysu T. (2014) Towards Practical Lattice-Based Public-Key Encryption on Reconfigurable Hardware. In: Lange T., Lauter K., Lisoněk P. (eds) Selected Areas in Cryptography -- SAC 2013. SAC 2013. Lecture Notes in Computer Science, vol 8282. Springer, Berlin, Heidelberg

Abstract

With this work we provide further evidence that lattice-based cryptography is a promising and efficient alternative to secure embedded applications. So far it is known for solid security reductions but implementations of specific instances have often been reported to be too complex beyond any practicability. In this work, we present an efficient and scalable micro-code engine for Ring-LWE encryption that combines polynomial multiplication based on the Number Theoretic Transform (NTT), polynomial addition, subtraction, and Gaussian sampling in a single unit. This unit can encrypt and decrypt a block in 26.19 µs and 16.80 µs on a Virtex-6 LX75T FPGA, respectively – at moderate resource requirements of about 1506 slices and a few block RAMs. Additionally, we provide solutions for several practical issues with Ring-LWE encryption, including the reduction of ciphertext expansion, error rate and constant-time operation. We hope that this contribution helps to pave the way for the deployment of ideal lattice-based encryption in future real-world systems.

Keywords

Ideal lattices Ring-LWE FPGA implementation 

Copyright information

© Springer-Verlag Berlin Heidelberg 2014

Authors and Affiliations

  1. 1.Horst Görtz Institute for IT-SecurityRuhr University BochumBochumGermany