W911NF-20-S-0008: Hybrid Post-Quantum Cryptography in Embedded Devices

Abstract

Significance of Problem. Advancements in quantum computing continue to dominate the technology headlines. Large scale quantum computers have the capacity to advance and even revolutionize almost all sectors of our lives, when they arrive. However, the detriment they pose to modern cryptography could be catastrophic, if we do not address these security vulnerabilities today. Specifically, public-key cryptography needs to be completely replaced by quantum-safe solutions. Even today, harvest-and-decrypt attacks, where unreadable data is downloaded and stored and deciphered in the future with quantum technology, are already happening. Thus, it is fair to say our information is already in danger. However, replacing legacy systems is always a challenge and companies are always reluctant. Statement of Need. Hybrid public-key exchange systems combine classical, widely-used, algorithms with a (soon to be) standardized post-quantum algorithm. Hybrid schemes are the obvious first step in the transition to quantum-safe cryptography as a hybrid scheme combines the trust of the classical algorithm with the added security of the post-quantum algorithm, and is only broken if both (or all) utilized algorithms are broken individually. However, this can add many costs to our current systems and much work needs to be done to reduce the costs, prove the security, and optimize the performance. Currently, there is little work done in this area, and much more is needed before hybrid schemes are accepted and ultimately deployed. Objectives. Objective 1: Design and evaluate high-performance hardware and software architectures combining elliptic curve cryptography (ECC) with supersingular isogeny key encapsulation (SIKE), an isogeny-based post-quantum algorithm submitted to NIST for standardization. Objective 2: Create a hardware proof-of-concept to demo a hybrid prototype in hardware and software that has been tested against known physical attacks. Methods to be Employed: SIKE and ECC share many underlying mathematical operations (finite field elliptic curve operations) and therefore, many gains can be achieved by this combination. Creating an arithmetic core that is purposed for both algorithms reduces area. Additionally, algorithms that cannot be combined can still be optimized for performance, area, power, etc. Incorporating randomness and utilizing constant-time implementations will improve resistance to physical attacks. Requiring validation of many key points in the process also mitigates fault attacks.

Document Details

Document Type

DoD Grant Award

Publication Date

Oct 22, 2020

Source ID

W911NF2010328

Entities

Tags