Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G
In this paper, we present an AES-based authenticated-encryption with associated-data scheme called Rocca, with the purpose to reach the requirements on the speed and security in 6G systems. To achieve ultra-fast software implementations, the basic design strategy is to take full advantage of the AE...
Main Authors: | , , , , |
---|---|
Format: | Article |
Language: | English |
Published: |
Ruhr-Universität Bochum
2021-06-01
|
Series: | IACR Transactions on Symmetric Cryptology |
Subjects: | |
Online Access: | https://tosc.iacr.org/index.php/ToSC/article/view/8904 |
id |
doaj-99504f7b7cf94ff5ad0421e40e74dd07 |
---|---|
record_format |
Article |
spelling |
doaj-99504f7b7cf94ff5ad0421e40e74dd072021-06-11T14:10:33ZengRuhr-Universität BochumIACR Transactions on Symmetric Cryptology2519-173X2021-06-012021210.46586/tosc.v2021.i2.1-30Rocca: An Efficient AES-based Encryption Scheme for Beyond 5GKosei Sakamoto0Fukang Liu1Yuto Nakano2Shinsaku Kiyomoto3Takanori Isobe4University of Hyogo, Kobe, JapanUniversity of Hyogo, Kobe, Japan; East China Normal University, Shanghai, ChinaKDDI Research, Fujimino, JapanKDDI Research, Fujimino, JapanUniversity of Hyogo, Kobe, Japan; National Institute of Information and Communications Technology (NICT), Tokyo, Japan; PRESTO, Japan Science and Technology Agency, Tokyo, Japan In this paper, we present an AES-based authenticated-encryption with associated-data scheme called Rocca, with the purpose to reach the requirements on the speed and security in 6G systems. To achieve ultra-fast software implementations, the basic design strategy is to take full advantage of the AES-NI and SIMD instructions as that of the AEGIS family and Tiaoxin-346. Although Jean and Nikolić have generalized the way to construct efficient round functions using only one round of AES (aesenc) and 128-bit XOR operation and have found several efficient candidates, there still seems to exist potential to further improve it regarding speed and state size. In order to minimize the critical path of one round, we remove the case of applying both aesenc and XOR in a cascade way for one round. By introducing a cost-free block permutation in the round function, we are able to search for candidates in a larger space without sacrificing the performance. Consequently, we obtain more efficient constructions with a smaller state size than candidates by Jean and Nikolić. Based on the newly-discovered round function, we carefully design the corresponding AEAD scheme with 256-bit security by taking several reported attacks on the AEGIS family and Tiaxion-346 into account. Our AEAD scheme can reach 138Gbps which is 4 times faster than the AEAD scheme of SNOW-V. Rocca is also much faster than other efficient schemes with 256-bit key length, e.g. AEGIS-256 and AES-256-GCM. As far as we know, Rocca is the first dedicated cryptographic algorithm targeting 6 systems, i.e., 256-bit key length and the speed of more than 100 Gbps. https://tosc.iacr.org/index.php/ToSC/article/view/8904AES-NIFast Software Implementation6GAEAD |
collection |
DOAJ |
language |
English |
format |
Article |
sources |
DOAJ |
author |
Kosei Sakamoto Fukang Liu Yuto Nakano Shinsaku Kiyomoto Takanori Isobe |
spellingShingle |
Kosei Sakamoto Fukang Liu Yuto Nakano Shinsaku Kiyomoto Takanori Isobe Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G IACR Transactions on Symmetric Cryptology AES-NI Fast Software Implementation 6G AEAD |
author_facet |
Kosei Sakamoto Fukang Liu Yuto Nakano Shinsaku Kiyomoto Takanori Isobe |
author_sort |
Kosei Sakamoto |
title |
Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G |
title_short |
Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G |
title_full |
Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G |
title_fullStr |
Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G |
title_full_unstemmed |
Rocca: An Efficient AES-based Encryption Scheme for Beyond 5G |
title_sort |
rocca: an efficient aes-based encryption scheme for beyond 5g |
publisher |
Ruhr-Universität Bochum |
series |
IACR Transactions on Symmetric Cryptology |
issn |
2519-173X |
publishDate |
2021-06-01 |
description |
In this paper, we present an AES-based authenticated-encryption with associated-data scheme called Rocca, with the purpose to reach the requirements on the speed and security in 6G systems. To achieve ultra-fast software implementations, the basic design strategy is to take full advantage of the AES-NI and SIMD instructions as that of the AEGIS family and Tiaoxin-346. Although Jean and Nikolić have generalized the way to construct efficient round functions using only one round of AES (aesenc) and 128-bit XOR operation and have found several efficient candidates, there still seems to exist potential to further improve it regarding speed and state size. In order to minimize the critical path of one round, we remove the case of applying both aesenc and XOR in a cascade way for one round. By introducing a cost-free block permutation in the round function, we are able to search for candidates in a larger space without sacrificing the performance. Consequently, we obtain more efficient constructions with a smaller state size than candidates by Jean and Nikolić. Based on the newly-discovered round function, we carefully design the corresponding AEAD scheme with 256-bit security by taking several reported attacks on the AEGIS family and Tiaxion-346 into account. Our AEAD scheme can reach 138Gbps which is 4 times faster than the AEAD scheme of SNOW-V. Rocca is also much faster than other efficient schemes with 256-bit key length, e.g. AEGIS-256 and AES-256-GCM. As far as we know, Rocca is the first dedicated cryptographic algorithm targeting 6 systems, i.e., 256-bit key length and the speed of more than 100 Gbps.
|
topic |
AES-NI Fast Software Implementation 6G AEAD |
url |
https://tosc.iacr.org/index.php/ToSC/article/view/8904 |
work_keys_str_mv |
AT koseisakamoto roccaanefficientaesbasedencryptionschemeforbeyond5g AT fukangliu roccaanefficientaesbasedencryptionschemeforbeyond5g AT yutonakano roccaanefficientaesbasedencryptionschemeforbeyond5g AT shinsakukiyomoto roccaanefficientaesbasedencryptionschemeforbeyond5g AT takanoriisobe roccaanefficientaesbasedencryptionschemeforbeyond5g |
_version_ |
1721381998482685952 |