Efficient Implementation of the SHA-512 Hash Function for 8-bit AVR Microcontrollers

Cheng, Hao; Dinu, Dumitru-Daniel; Groszschädl, Johann

doi:10.1007/978-3-030-12942-2_21

Reference : Efficient Implementation of the SHA-512 Hash Function for 8-bit AVR Microcontrollers


	Document type :	Scientific congresses, symposiums and conference proceedings : Paper published in a book
	Discipline(s) :	Engineering, computing & technology : Computer science
	Focus Areas :	Security, Reliability and Trust
	To cite this reference:	http://hdl.handle.net/10993/38644

Title :	Efficient Implementation of the SHA-512 Hash Function for 8-bit AVR Microcontrollers
Language :	English
Author, co-author :	Cheng, Hao [University of Luxembourg > Interdisciplinary Centre for Security, Reliability and Trust (SNT) > Computer Science and Communications Research Unit (CSC) >]
	Dinu, Dumitru-Daniel [Virginia Tech > Bradley Department of Electrical and Computer Engineering]
	Groszschädl, Johann [University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) > Computer Science and Communications Research Unit (CSC) >]
Publication date :	Nov-2018
Main document title :	Innovative Security Solutions for Information Technology and Communications, 11th International Conference, SecITC 2018, Bucharest, Romania, November 8-9, 2018, Revised Selected Papers
Editor :	Lanet, Jean-Louis
	Toma, Cristian
Publisher :	Springer Verlag
Collection and collection volume :	Lecture Notes in Computer Science, volume 11359
Pages :	273-287
Peer reviewed :	Yes
Audience :	International
ISBN :	978-3-030-12941-5
Event name :	11th International Conference on Security for Information Technology and Communications (SecITC 2018)
Event date :	from 08-11-2018 to 09-11-2018
Event place (city) :	Bucharest
Event country :	Romania
Keywords :	[en] Internet of Things (IoT) ; Lightweight Cryptography ; AVR Microcontroller ; Software Optimization ; Performance Evaluation
Abstract :	[en] SHA-512 is a member of the SHA-2 family of cryptographic hash algorithms that is based on a Davies-Mayer compression function operating on eight 64-bit words to produce a 512-bit digest. It provides strong resistance to collision and preimage attacks, and is assumed to remain secure in the dawning era of quantum computers. However, the compression function of SHA-512 is challenging to implement on small 8 and 16-bit microcontrollers because of their limited register space and the fact that 64-bit rotations are generally slow on such devices. In this paper, we present the first highly-optimized Assembler implementation of SHA-512 for the ATmega family of 8-bit AVR microcontrollers. We introduce a special optimization technique for the compression function based on a duplication of the eight working variables so that they can be more efficiently loaded from RAM via the indirect addressing mode with displacement (using the ldd and std instruction). In this way, we were able to achieve high performance without unrolling the main loop of the compression function, thereby keeping the code size small. When executed on an 8-bit AVR ATmega128 microcontroller, the compression function takes slightly less than 60k clock cycles, which corresponds to a compression rate of roughly 467 cycles per byte. The binary code size of the full SHA-512 implementation providing a standard Init-Update-Final (IUF) interface amounts to approximately 3.5 kB.
Permalink :	http://hdl.handle.net/10993/38644
DOI :	10.1007/978-3-030-12942-2_21
Other URL :	http://link.springer.com/chapter/10.1007/978-3-030-12942-2_21

File(s) associated to this reference

Fulltext file(s):

	File	Commentary	Version	Size	Access
Open access	SECITC2018.pdf		Author postprint	461.27 kB	View/Open

All documents in ORBi^lu are protected by a user license.

University of Luxembourg Library | Feedback | Legal notices