EAGER: IMPRESS-U: Hardware-Efficient Realization of UA Cryptographic Standards

EAGER：IMPRESS-U：UA 加密标准的硬件高效实现

• 批准号: 2414083
• 负责人: Samuel Pagliarini
• 金额: $ 30万
• 依托单位: Carnegie-Mellon University
• 依托单位国家: 美国
• 项目类别: Standard Grant
• 财政年份: 2024
• 资助国家: 美国
• 起止时间: 2024-07-01 至 2026-06-30
• 项目状态: 未结题
• 来源: https://www.nsf.gov/awardsearch/showAward?AWD_ID=2414083&HistoricalAwards=false
• 关键词: EAGER; IMPRESS; Hardware; Efficient; Realization

This project is jointly supported by NSF, Estonian Research Council (ETAG), and US National Academy of Sciences. The research will be conducted in multilateral partnership uniting Carnegie Melon University (US), Tallinn University of Technology (Estonia), and V.N.Karazin Kharkiv National University (Ukraine). US part of the international research team is co-funded by NSF OISE/OD and CISE/CNS. Cryptographic algorithms allow us to send secret messages over an otherwise insecure communication channel, such as the internet. These algorithms are extremely important since they enable several aspects of our digital lives, be it online banking, messaging services, mobile phone networks, and many more. To realize such protected communications and maintain the privacy of the parties talking to each other, government agencies set cryptographic standards for adoption. These standards serve as a common language for two devices to talk to one another while keeping the content of the exchange messages protected. For instance, in the US, the National Institute of Standards and Technology (NIST) recommends, among others, the Advanced Encryption Standard (AES) for encryption/decryption in civilian communication. AES was chosen after a long competition where many candidates were considered and AES came out as the winning algorithm. Today, there are hundreds of implementations of AES in software form or in pure hardware form, i.e., implemented as a computer chip. Outside the US, many other standards exist. In Ukraine, a competition was also held which culminated in 2015 with the selection of Kalyna and Kupyna as the national standards. The existing software implementations of Kalyna and Kupyna have performance and security level comparable to their US counterparts. However, there is no known hardware architecture for the design of Kalyna or Kupyna. There is a need for Kalyna/Kupyna-capable hardware that displays (i) high performance; (ii) low power; (iii) tamper resistance; (iv) small footprint; and (v) physical security. This is the technical goal of this EAGER award, i.e., to execute a broad design space and security space exploration for the implementation of a block cipher (Kalyna) and a hash algorithm (Kupyna). This EAGER project represents a study on how to best implement these algorithms in a computer chip. The research team includes chip designers from the US and from Estonia, as well cryptography experts from Ukraine. The main technical outcome of the project is one fabricated chip containing several variants of the Kalyna and Kupyna algorithms. This EAGER award also has dissemination goals. Knowingly, the country of Ukraine does not enjoy access to trusted chip fabrication technology. Chip design knowledge is also scarce. We strive to have Ukrainian universities teaching, in the near future, both software and hardware cryptographic engineering. The latter is specific knowledge that, today, is not adequately covered by any university in the country. In order to achieve this goal, the chip design tasks executed in this project will be highly reproducible: design resources will be openly shared on public repositories, including Verilog source files. Synthesis scripts for state-of-the-art commercial chip design tools will also be shared. Finally, the entire design process will be documented in order to showcase the entire concept of the Kalyna/Kupyna chip, step by step, from RTL to layout. This documented effort will be made openly available to the chip design and cryptographic communities at large.This award reflects NSF's statutory mission and has been deemed worthy of support through evaluation using the Foundation's intellectual merit and broader impacts review criteria.

该项目由美国国家科学基金会、爱沙尼亚研究委员会（ETAG）和美国国家科学院共同支持。该研究将在卡内基梅隆大学（美国）、塔林理工大学（爱沙尼亚）和卡拉津哈尔科夫国立大学（乌克兰）的多边合作伙伴关系下进行。国际研究团队的美国部分由 NSF OISE/OD 和 CISE/CNS 共同资助。加密算法允许我们通过不安全的通信渠道（例如互联网）发送秘密消息。这些算法非常重要，因为它们支持我们数字生活的多个方面，无论是网上银行、消息服务、移动电话网络等等。为了实现这种受保护的通信并维护彼此交谈双方的隐私，政府机构制定了采用的加密标准。这些标准充当两个设备相互通信的通用语言，同时保护交换消息的内容。例如，在美国，美国国家标准与技术研究所 (NIST) 建议在民用通信中使用高级加密标准 (AES) 进行加密/解密。经过长时间的竞争，考虑了许多候选算法，最终 AES 成为获胜算法。如今，AES 有数百种软件形式或纯硬件形式（即作为计算机芯片实现）的实现。在美国之外，还存在许多其他标准。乌克兰也举办了一场竞赛，最终于 2015 年评选出 Kalyna 和 Kupyna 作为国家标准。 Kalyna 和 Kupyna 现有的软件实现的性能和安全水平与美国同行相当。然而，Kalyna 或 Kupyna 的设计尚无已知的硬件架构。需要支持 Kalyna/Kupyna 的硬件来显示 (i) 高性能； (ii) 低功率； (iii) 防篡改； (iv) 占地面积小； (v) 人身安全。这是该 EAGER 奖项的技术目标，即为实现分组密码 (Kalyna) 和哈希算法 (Kupyna) 进行广泛的设计空间和安全空间探索。这个 EAGER 项目代表了一项关于如何在计算机芯片中最好地实现这些算法的研究。研究团队包括来自美国和爱沙尼亚的芯片设计师，以及来自乌克兰的密码学专家。该项目的主要技术成果是一款包含 Kalyna 和 Kupyna 算法多种变体的芯片。这个EAGER 奖也有传播目标。众所周知，乌克兰国家无法获得值得信赖的芯片制造技术。芯片设计知识也很匮乏。我们努力在不久的将来让乌克兰大学教授软件和硬件密码工程。后者是特定知识，目前该国任何大学都没有充分涵盖这些知识。为了实现这一目标，该项目中执行的芯片设计任务将具有高度可重复性：设计资源将在公共存储库上公开共享，包括Verilog源文件。最先进的商业芯片设计工具的综合脚本也将被共享。最后，整个设计过程将被记录下来，以便逐步展示 Kalyna/Kupyna 芯片从 RTL 到布局的整个概念。这项记录在案的工作将向整个芯片设计和密码学社区公开提供。该奖项反映了 NSF 的法定使命，并通过使用基金会的智力优点和更广泛的影响审查标准进行评估，被认为值得支持。