Google Git
Sign in
opensecura / 3p / lowrisc / opentitan / abc2374f68088ff5b81a1cb44107948ef2a049f5
commitabc2374f68088ff5b81a1cb44107948ef2a049f5[log] [tgz]
authorPirmin Vogel <vogelpi@lowrisc.org>Sun Jan 31 11:42:43 2021 +0100
committerPirmin Vogel <vogelpi@lowrisc.org>Tue Feb 02 18:31:24 2021 +0100
treeceb7a3117048f723ee6f7fdb7eec878049edd05d
parente6ca872bf76a9c6c9a794be7ce5a6d164f12ab7b [diff]
[aes] Improve DOM S-Box

First experiments on FPGA revealed that the previous design suffered from
substantial leakage resulting from mixing new input data and randomness
with previous intermediate results. Basically, the output of the DOM S-Box
is only valid in the 5th cycle. Before that, outputs shouldn't toggle and
internal nodes should only toggle when the corresponding stage is actually
evaluated, i.e. if the data produced during that cycle contributes to the
output.

To counter those issues, this commit adds pipeline registers to the DOM
multiplier primitives (optional according to paper) and inserts additional
register stages inside the GF(2^8) and GF(2^4) inverters to only present
new input data to the multipliers when they actually need it. Similarly,
fresh randomness is only presented to the multipliers when it is actually
needed. This requires local PRD buffering but at the same time allows to
reduce the width of the masking PRNG by a factor of 4. Also, the PRNG is
operated during 4 instead of just 1 cycle per round which is beneficial
in terms of SCA resistance.

Signed-off-by: Pirmin Vogel <vogelpi@lowrisc.org>
6 files changed
tree: ceb7a3117048f723ee6f7fdb7eec878049edd05d
  1. .github/
  2. ci/
  3. doc/
  4. hw/
  5. site/
  6. sw/
  7. test/
  8. util/
  9. .clang-format
  10. .dockerignore
  11. .flake8
  12. .gitignore
  13. .style.yapf
  14. .svlint.toml
  15. .svls.toml
  16. _index.md
  17. apt-requirements.txt
  18. azure-pipelines.yml
  19. check_tool_requirements.core
  20. CLA
  21. COMMITTERS
  22. CONTRIBUTING.md
  23. LICENSE
  24. meson.build
  25. meson_init.sh
  26. meson_options.txt
  27. python-requirements.txt
  28. README.md
  29. tool_requirements.py
  30. toolchain.txt
  31. topgen-generator.core
  32. topgen-reg-only.core
  33. topgen.core
  34. yum-requirements.txt
README.md

OpenTitan

OpenTitan logo

About the project

OpenTitan is an open source silicon Root of Trust (RoT) project. OpenTitan will make the silicon RoT design and implementation more transparent, trustworthy, and secure for enterprises, platform providers, and chip manufacturers. OpenTitan is administered by lowRISC CIC as a collaborative project to produce high quality, open IP for instantiation as a full-featured product. See the OpenTitan site and OpenTitan docs for more information about the project.

About this repository

This repository contains hardware, software and utilities written as part of the OpenTitan project. It is structured as monolithic repository, or “monorepo”, where all components live in one repository. It exists to enable collaboration across partners participating in the OpenTitan project.

Documentation

The project contains comprehensive documentation of all IPs and tools. You can access it online at docs.opentitan.org.

How to contribute

Have a look at CONTRIBUTING for guidelines on how to contribute code to this repository.

Licensing

Unless otherwise noted, everything in this repository is covered by the Apache License, Version 2.0 (see LICENSE for full text).