Faster Multiplication in Z2m [x] on Cortex-M4 to Speed up NIST PQC Candidates

被引：15

作者：

Kannwischer, Matthias J. ^{[1
]}

Rijneveld, Joost ^{[1
]}

Schwabe, Peter ^{[1
]}

机构：

[1] Radboud Univ Nijmegen, Nijmegen, Netherlands

来源：

APPLIED CRYPTOGRAPHY AND NETWORK SECURITY, ACNS 2019 | 2019年 / 11464卷

关键词：

ARM Cortex-M4; Karatsuba; Toom; Lattice-based KEMs; NTRU;

D O I：

10.1007/978-3-030-21568-2_14

中图分类号：

TP [自动化技术、计算机技术];

学科分类号：

0812 ;

摘要：

In this paper we optimize multiplication of polynomials in Z(2)m[x] on the ARM Cortex-M4 microprocessor. We use these optimized multiplication routines to speed up the NIST post-quantum candidates RLizard, NTRU-HRSS, NTRUEncrypt, Saber, and Kindi. For most of those schemes the only previous implementation that executes on the CortexM4 is the reference implementation submitted to NIST; for some of those schemes our optimized software is more than factor of 20 faster. One of the schemes, namely Saber, has been optimized on the Cortex-M4 in a CHES 2018 paper; the multiplication routine for Saber we present here outperforms the multiplication from that paper by 42%, yielding speedups of 22% for key generation, 20% for encapsulation and 22% for decapsulation. Out of the five schemes optimized in this paper, the best performance for encapsulation and decapsulation is achieved by NTRU-HRSS. Specifically, encapsulation takes just over 400 000 cycles, which is more than twice as fast as for any other NIST candidate that has previously been optimized on the ARM Cortex-M4.

引用

页码：281 / 301

页数：21

共 50 条

[41] CS4[SC6C]CL13 AND CS4[PR6(C2)]I13 - 2 EXAMPLES FOR THE MISSING LINK IN THE CONNECTIVITY OF [M6Z]X(12(I)X(6)(A) BUILDING UNITS
ARTELT, HM
SCHLEID, T
MEYER, G
ZEITSCHRIFT FUR ANORGANISCHE UND ALLGEMEINE CHEMIE, 1994, 620 (09): : 1521 - 1526
[42] Effect of the ratio of Er3+ to Y3+ on up-conversion emission properties of BaxNayYzF2x+y+3z+3m:Erm3+ under 1550 nm excitation
Gong, Xiaomeng
Zhao, Qiushuang
Mi, Xiaoyun
Lu, Liping
APPLIED PHYSICS A-MATERIALS SCIENCE & PROCESSING, 2018, 124 (02):
[43] INTERACTION OF ANILINE AND BENZIDINE WITH LAYERED SOLIDS MN+(UO2XO4) N-.Z H2O[M=H3O+, CU2+, VO2+, FE2+, X=P, AS]
MARTINEZLARA, M
BAREAARANDA, JA
REAL, LM
BRUQUE, S
JOURNAL OF INCLUSION PHENOMENA AND MOLECULAR RECOGNITION IN CHEMISTRY, 1990, 9 (04): : 287 - 299
[44] Studies on the infrared spectra of clusters containing O3MoS3, [Mox (CO)y(O,S-C6H4-1,2)3FezLm]n-(x = 1,2 or 3,y = 0,3,7 or 4,z = 0 or 1,L = Cl,m = 0,2,n = 1 or 2) unit and the relationship between the spectra and their structures
He, LJ
Zhuang, BT
Cai, SH
Chen, B
Lan, AJ
Zhou, WB
Zhang, LN
SPECTROSCOPY AND SPECTRAL ANALYSIS, 2000, 20 (06) : 788 - 789
[45] Studies on the Infrared Spectra of Clusters Containing O3MoS3, [Mox (CO)y(O,S-C6H4-1,2)3Fe zLm]n-(x=1,2 or 3, y=0,3,7 or 4, z=0 or 1, L=Cl, m=0,2, n=1 or 2) Unit and the Relationship between the Spectra and Their Structures
He, Lingjie
Zhuang, Botao
Cai, Suhua
Chen, Bo
Lan, Anjian
Zhou, Wenbo
Zhang, Linna
Guang Pu Xue Yu Guang Pu Fen Xi/Spectroscopy and Spectral Analysis, 2000, 20 (06): : 788 - 789
[46] Efficient carbon-based CsPbI2Br perovskite solar cells achieved via coordination passivation by C<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-data format="PBM" id="z.dbd" resolution="300" x-size="8" y-size="10">00000000000000000000000000000000111111110000000011111111000000000000000000000000</glyph-data></private-char>S and C<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-ref glyph-data="z.dbd"/></private-char>O of 4-(2-thioureido)benzoic acid
Li, Haoju
Wang, Changzhong
Liang, Yuhang
Liu, Guangli
Cheng, Huang
Xie, Raochen
Luo, Longxiang
Qian, Yannan
CHEMICAL COMMUNICATIONS, 2025, 61 (29) : 5487 - 5490
[47] Room temperature dithiocarbamation of 2-tetralones with elemental sulfur and isothiocyanates S8/R-N<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-data format="PBM" id="z.dbd" resolution="300" x-size="8" y-size="10">00000000000000000000000000000000111111110000000011111111000000000000000000000000</glyph-data></private-char>C<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-ref glyph-data="z.dbd"/></private-char>S: atom-efficient access to 4-hydroxythiazolidine-2-thiones
Nguyen, Le Anh
Ngo, Quoc Anh
Retailleau, Pascal
Nguyen, Thanh Binh
CHEMICAL COMMUNICATIONS, 2024, 60 (92) : 13586 - 13589
[48] Optimization and temperature-dependent photoluminescence properties of yellow-orange emitting Sr1.99-x-yCaxMy(Si1-yZy)O4: 0.01Eu2+ (M = Y3+, K+, Z = Al3+, P5+) phosphors for white light-emitting diodes
Ci, Zhipeng
Sun, Mengxing
Li, Yao
Que, Meidan
Wang, Qian
Zhu, Ge
Wang, Yuhua
OPTICAL MATERIALS, 2015, 39 : 188 - 194
[49] Electrochemical and spectroelectrochemical investigation of Ru(por)(NO)(OAr) derivatives (por = octaethylporphyrin, tetraanisolylporphyrin; Ar = Ph, C6H4-2-NHC(<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-data format="PBM" id="z.dbd" resolution="300" x-size="8" y-size="10">00000000000000000000000000000000111111110000000011111111000000000000000000000000</glyph-data></private-char>O)CF3; C6H3-2,6-(NHC(<private-char description="double bond, length as m-dash" name="DOUBLE BOND, LENGTH AS M-DASH"><glyph-ref glyph-data="z.dbd"/></private-char>O)CF3)2)
Ramuglia, Anthony R.
Zink, Jeremy R.
Warhausen, Adam J.
Abucayon, Erwin
Xu, Nan
Shrestha, Kailash
Richter-Addo, George
Shaw, Michael J.
DALTON TRANSACTIONS, 2025, 54 (08) : 3444 - 3455
[50] 含O3MoS3单元的配合物[Mox（CO）y（O,S—C6H4—1,2）3FezLm]n-（x=1,2或3,y=0,3,7或4,z=0或1,L=Cl,m=0,2,n=1或2）的红外光谱及其与结构的关系研究
何玲洁
庄伯涛
蔡素华
陈波
兰安建
周文波
张琳娜
光谱学与光谱分析, 2000, (06) : 788 - 789

← 1 2 3 4 5 →