CA2375749A1 - Scalable cryptographic engine - Google PatentsScalable cryptographic engine Download PDF
- Publication number
- CA2375749A1 CA2375749A1 CA 2375749 CA2375749A CA2375749A1 CA 2375749 A1 CA2375749 A1 CA 2375749A1 CA 2375749 CA2375749 CA 2375749 CA 2375749 A CA2375749 A CA 2375749A CA 2375749 A1 CA2375749 A1 CA 2375749A1
- Prior art keywords
- data packet
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F9/00—Arrangements for program control, e.g. control units
- G06F9/06—Arrangements for program control, e.g. control units using stored programs, i.e. using an internal store of processing equipment to receive or retain programs
- G06F9/30—Arrangements for executing machine instructions, e.g. instruction decode
- G06F9/38—Concurrent instruction execution, e.g. pipeline, look ahead
- G06F9/3877—Concurrent instruction execution, e.g. pipeline, look ahead using a slave processor, e.g. coprocessor
- G06F9/3879—Concurrent instruction execution, e.g. pipeline, look ahead using a slave processor, e.g. coprocessor for non-native instruction execution, e.g. executing a command; for Java instruction set
- G06—COMPUTING; CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/70—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer
- G06F21/71—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information
- G06F21/72—Protecting specific internal or peripheral components, in which the protection of a component leads to protection of the entire computer to assure secure computing or processing of information in cryptographic circuits
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L9/00—Cryptographic mechanisms or cryptographic arrangements for secret or secure communication
- H04L9/06—Cryptographic mechanisms or cryptographic arrangements for secret or secure communication the encryption apparatus using shift registers or memories for block-wise or stream coding, e.g. DES systems or RC4; Hash functions; Pseudorandom sequence generators
- H04L9/0618—Block ciphers, i.e. encrypting groups of characters of a plain text message using fixed encryption transformation
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L2209/00—Additional information or applications relating to cryptographic mechanisms or cryptographic arrangements for secret or secure communication H04L9/00
- H04L2209/12—Details relating to cryptographic hardware or logic circuitry
- H04L2209/125—Parallelization or pipelining, e.g. for accelerating processing of cryptographic operations
The coprocessor includes a register bank (40) for receiving and storing data packets to be encrypted, and a cryptographic processing device (34a-34n) coupled to the register bank (40) with a processing capacity that is scalable based on application-specific parameters. The coprocessor (14) also includes a control device (38) coupled to the register bank (40) and the cryptographic processing device (34a-34n) for instructing the cryptographic processing device to perform a cryptographic processing operation unique to the cryptographic processing device (34a-34n) based on externally-received processing instructions.
SCALABLE CRYPTOGRAPHIC ENGINE
Background of the Invention Field of the Invention The present invention relates generally to data encryption systems, and more particularly to a cryptographic engine that has scalable processing capabilities and that is for use in communications devices requiring secure transmission and reception of data.
Description of Related Art As the sophistication and importance of broadband communications devices continues to increase in both in commercial and military applications, so does the need to maintain the security of data transmitted by these devices. Currently, such broadband communications devices include cryptographic coprocessors for executing encryption and decryption processing algorithms, while a general-purpose controller typically executes more traditional device processing algorithms.
While conventional encryption/decryption engine architectures enable data to be securely transmitted across the bandwidth, such architectures do have associated limitations. For example, in a multi-band multi-mode radio or other similar device requiring high performance cryptographic processing, the underlying cryptographic engine architecture must include several cryptographic co-processors to handle the symmetric encryption and decryption algorithm processing required for secure data transmission and reception. Because the engine footprint must be large enough to accommodate the coprocessors, an engine design including several cryptographic coprocessors tends to increase overall manufacturing costs and limit device design possibilities, as well as increase overall chip power requirements.
Brief Description of the Drawings Additional objects and advantages of the present invention will be more readily apparent from the following detailed description of preferred embodiments thereof when taken together with the accompanying drawings in which:
FIG. 1 is a schematic block diagram of a programmable cryptographic engine according to a first preferred embodiment of the present invention;
FIG. 2 is a schematic block diagram of the main processor shown in FIG. 1;
FIG. 3 is a schematic block diagram of one of the coprocessor slices shown in FIG. 1;
FIG. 4 is a diagram of a coprocessor permuter shown in FIG. 3;
FIG. 5 is a diagram of a non-linear function section of the permuter shown in FIG. 3;
FIG. 6 is a diagram of a linear logic unit of the coprocessor shown in FIG. 3;
FIG. 7 is a schematic block diagram of the coprocessor controller shown in FIG. 1;
FIG. 8 is an instruction format for the coprocessor microsequencer shown in FIG. 1;
FIG. 9 is a schematic block diagram of a programmable cryptographic engine according to a second preferred embodiment of the present invention;
FIG. 10 is a schematic block diagram of a programmable cryptographic engine according to a third preferred embodiment of the present invention;
FIG. 11 is a schematic block diagram of a programmable cryptographic engine according to a fourth preferred embodiment of the present invention; and FIG. 12 is a schematic block diagram of a programmable cryptographic engine according to a fifth preferred embodiment of the present invention.
Detailed Description of a Preferred Embodiment Referring now to the drawings in which like numerals reference like parts, FIG.
1 shows a cryptographic processor engine 10 according to a first embodiment of the present invention. The engine 10, which is typically fabricated on a single semiconductor substrate, includes a main processor 12 for performing general purpose engine processing, and a coprocessor 14 having a scalable cryptographic processing capacity that will be described below in more detail. The engine 10 is capable of processing externally-received data packets via any of a variety of techniques including plain-text data encryption, cipher-text data decryption, in-band signaling processing required for bit, word or frame formatting, in-band signal detection, and error detection and correction processing techniques. The engine is capable of executing a single or multiple independent cryptographic algorithms on a large state space, and is capable of supporting both active and shadow techniques, thereby enabling algorithm and key agility through rapid 10 context switching between algorithms and/or state and variable associations.
As shown in FIG. 1, the main processor 12 handles all communications with external devices, such as other communications device processors, through several interfaces. Specifically, the main processor 12 receives configuration and initial state loading instructions through a control interface 16 and performs processing operations, such as asymmetric processing operations used to initialize a data/voice link, based on instructions stored in and fetched from a processor memory 18, such as a microcode RAM, in response to the received configuration and initial state loading instructions. The main processor 12 may also receive data to be processed from an external memory such as a RAM memory (not shown) via a RAM interface 20 if a particular application requires temporary storage of data to be processed, and outputs the data after it has been processed on one or both of the red and black interfaces 22, 24.
Referring to FIG. 2, the main processor 12 includes a 32-bit microsequencer 26 that includes the interfaces 16, 20, 22, 24. Also, the microsequencer 26 is coupled to an arithmetic logic unit (ALU) 28, multiplexers 29a, 29b, a register file 30 and a comparison unit 34. The microsequencer 26 manages all main processor resources based on instructions stored and fetched from the microcode RAM 18.
The ALU 28 is programmed to perform operations such as AND/OR, XOR, ADD and SUBTRACT operations to enable the main processor 12 to perform standard Boolean and arithmetic processing of data packet portions, referred to as data packet elements, selectively output from the multiplexers 29a, 29b. The data packet elements processed by the ALU 28 are output to either the register file 30, to the microsequencer 26 for transmission back to external processors through either the red or black interfaces 22, 24, or to the comparison unit 34. The register file 30 functions as a scratchpad memory for temporary data storage when a message received from the microsequencer 26, such as a decode message, requires that the ALU 28 run an algorithm several times, while the comparison unit 34 enables the main processor 12 to compare two 32-bit data packet elements output from the microsequencer 26 and to generate the number of bit errors occurring in one clock cycle for engine processing integrity purposes.
Referring back to FIG. 1, the scalable coprocessor 14 is controlled by the main processor 12 and performs cryptographic processing functions in parallel with the functions performed by the main processor. The coprocessor is operative. The coprocessor is a multiple slice coprocessor with cryptographic processing slices 34a-34n each having corresponding volatile memories, such as microcode RAMs 36a-36n, for storing slice-specific independent control instructions, where the number n is application-specific and is based on design parameters such as chip cost and performance requirements. A coprocessor controller 38 sequentially handles all operations to be performed by the coprocessor based on instructions retrieved from the memory 39 in response to commands received from the main processor 12, and informs the main processor 12 each time a slice has completed a specific processing operation.
Because the slices 34a-34n perform cryptographic processing operations independently from one another and in parallel with the processing of the main processor, the coprocessor 14 is capable of simultaneously performing several independent cryptographic processing operations, with the exact number of possible operations being dependent on the number of slices, at higher, albeit synchronous, clock rates than that of the main processor 12. For example, the coprocessor may receive instructions to loop through a particular encryption algorithm 64 times to generate encrypted data packets, while the main processor need only input the data packets to be encrypted to the coprocessor 14 and subsequently output the resulting encrypted data packets through the red/black interfaces 22, 24. Therefore, the cryptographic processor engine of the present invention is capable of supporting data rates equal to the throughput of the coprocessor 14 in a manner that minimizes overall engine power consumption.
As shown in FIG. 1, the coprocessor includes a 64 x 32-bit register bank 40 that includes a command register 40a, variable registers 40b and state registers 40c. The command register 40a, hereinafter referred to as the register R0, is for receiving and loading commands from the main processor 12 and for subsequently sending those commands to the coprocessor controller 38. The variable registers 40b are for storing data packet variables for the slices 34a - 34n such as, for example, a session key for use by the coprocessor 14 in performing cryptographic functions. The state registers 40c are for storing state data such as, for example, channel program data representing a current execution state for an encryption algorithm being executed by one of the slices. The state registers 40c, which are typically accessible by main processors in conventional cryptographic engine architectures, are included as part of the coprocessor 14 in the present invention to enable the number of coprocessor slices to be set according to cryptographic application processing parameters.
FIG. 3 is a block diagram of the cryptographic slice 34a of FIG. 1, with it being understood that the other cryptographic slices 34b - 34n are of like structure and similar function, with the exact function of each slice being dependent on the instructions stored in the microcode RAMs 36a - 36n. The cryptographic slice 34a performs a designated encryption/decryption function for the cryptographic engine 10 that can be independent from processing functions performed by other cryptographic slices that may be included in the engine architecture, even though the slice 34a may share state space in the register bank 40 with other slices.
The slice 34a includes an 8-bit microsequencer 50 that provides the slice with processing power and that manages program flow for the slice based on instructions stored in and fetched from the microcode RAM 36a. Because each slice includes a microsequencer such as the microsequencer 50, each slice is capable of performing a processing function independently from other slices.
The independent processing capability of each slice produces economies of scale, as the coprocessor can simultaneously execute a number of independent cryptographic algorithms corresponding generally to the number of coprocessor slices, thereby increasing overall engine data packet throughput.
The microsequencer 50 controls operation of an input register 54, which in turn provides control bits necessary to move data into and out of the register bank 40 and control bits necessary to select various coprocessor cryptographic functions.
More specifically, the microsequencer 50 initiates operation of the input register 54 by inputting an address into an input register non-volatile memory 56, such as a microcode RAM, that stores register-specific operating instructions. The microsequencer 50 then latches data output from the RAM 56 to control a permuter 58, which has a 160 x 160-bit linear permutation section 60 and a non-linear function unit including a 160 x 144-bit permutation section 62 and a non-linear lookup table section 64 with, for example, sixteen 9:1 lookup tables.
In operation, the data slice 34a is capable of processing ten 32-bit data packet elements input from the register bank 40 to produce four 32-bit encrypted/decrypted data packet elements for return to the state registers 40c every clock cycle.
More specifically, five of the input data packet elements, indicated at 70, are input into and permuted by the linear permutation section 60 to create four new 32-bit data packet elements at 72 that are then input into the linear function unit 66.
The other five input data packet elements, indicated at 74, are set up by the nonlinear permutation section 62 before being mapped to values in the lookup tables 64 and then output to the linear logic unit 66.
In FIG. 4, the linear permutation section 60 is shown in more detail. The linear permutation section 60 is capable of routing any input bit to any output bit based on control instructions stored in a local section memory (not shown). Each of the five 32-bit data packet elements at 70 is input into a 4:1 multiplexer 76. The multiplexer 76 outputs each 32-bit data packet element as four separate 8-bit data packet elements. The 8-bit data packet elements in turn are input into an 8:1 multiplexer 78. The multiplexer 78 outputs each of the 8-bit data packet elements to a multiplexer 80 as eight separate bits of data. The multiplexer 80 sends each of the data bits along with the thirty-one other 1-bit outputs as a permuted 32-bit output to the linear logic unit 66.
FIG. 5 shows that the non-linear lookup table section 64 is composed of sixteen separate 512 x 1-bit lookup tables, as indicated generally at 81.
Sixteen 9-bit data packet elements, resulting from the five 32-bit data packet elements at 74 being permuted by the non-linear permutation section 62, are input into corresponding ones of the lookup tables and mapped to a single bit non-linear table value. The resulting 16-bit data packet element is concatenated at 80 with a previously-generated 16-bit result stored in a delay register 82 to form a fifth new 32-bit data packet element input to the linear function unit at 84.
Still referring to FIG. 5, the non-linear function unit configuration of the present invention enables different slice encryption/decryption algorithms to efficiently utilize the non-linear function unit lookup tables 81. For example, one algorithm may utilize four of the memories as a 4-bit lookup table, while a separate algorithm may simultaneously and independently address eight of the other memories for use as an 8-bit lookup table. Any combination of the lookup tables 81 may be utilized to create a single multi-bit lookup table based on the cryptographic algorithm parameters necessary for a particular slice to perform its stored cryptographic algorithm or function.
Referring now to FIG. 6, the linear function unit 66 is shown in more detail.
The linear function unit processes the four 32-bit input data packet elements generated by the permutation section 60 and the one 32-bit data packet element generated by the non-linear function unit to produce the four 32-bit linear results at 86. More specifically, the linear function unit 66 either processes the data packet elements In1 - In5 through the EXOR tree indicated generally at 90 or bypasses data packet elements In1 - In4 directly to a multiplexer bank 92 based on instructions from the microsequencer 50. The multiplexer bank 92 then outputs the resulting data packet elements as data packet elements Out1 - Out4 back to the register bank 40 for transmission back to the main processor 12.
Referring to FIG. 7, a block diagram of the coprocessor controller 38 is shown.
The coprocessor controller 38 includes an 8-bit microsequencer 94 that provides slice processing power and that manages program flow for a given slice-executed encryption/decryption algorithm in response to commands received from the main processor 12. The microsequencer 94 according to one embodiment of the present _g_ invention may include a three stage pipeline for performing, for example, fetch, execute and write operations on the program instructions in the memory 39.
According to one embodiment of the present invention, the microsequencer 94 does not perform conditional operations, and therefore is capable of operating at high speeds with a simple design.
The coprocessor controller 38 also includes a 4 x 16-bit stack 96 that enables the microsequencer 94 to execute up to four nested loops. The stack 96, in combination with program and loop counting circuitry 98, enables the microsequencer to perform in-line code and loop execution processing for the slices 36a - 36n when the main processor 12 writes initial program count and loop count values to the input register 98 through the command register R0. Consequently, the stack 96 minimizes the number of necessary program execution instructions and thus the size of the slice memories. The stack 96 also enables the engine to run encryption algorithms such as data encryption standard (DES) algorithms that generate 16 different versions of a single session key, and codebook algorithms that necessitate sixteen rounds of actual encryption computation.
The format of the instructions stored in the memory 39 of the microsequencer 94 is shown at 100 in FIG. 8. The 00 Continue Opcode is used to execute in-line code, while the 01 Loop Start Opcode is used to signify the start of a loop.
When the microsequencer 94 executes the 01 Loop Start Opcode, a value contained in the Loop cnt field and the next instruction address are pushed onto the stack 96.
The 10 Loop End Opcode signifies the end of a loop and causes a current count value stored in the program and loop counting circuitry 98 to be decremented when executed by the microsequencer 94. If the current count is not equal to zero, the program counter component 102 of the program and loop counting circuitry 98 is loaded with a current Loop cnt from the stack 96. If the count is equal to zero, the current entry is removed from the stack 96, and the microsequencer 94 continues to execute in-line instructions.
It should be appreciated at this point that the cryptographic processing engine 10 of the present invention is designed so that the configuration of the coprocessor controller 38 remains the same regardless of the number of coprocessor slices.
In addition, the number of instructions that must be generated by the coprocessor controller 38 to perform equivalent functional operations is actually reduced as the number of cryptographic slices is increased. The decrease in the number of required instructions subsequently enables the size of the corresponding coprocessor controller memory 39 to be reduced.
FIGs. 9 - 12 show additional embodiments of the scalable cryptographic coprocessor of the present invention at 110, 110', 110" and 110"', respectively.
The cryptographic coprocessor 110 is a single-slice cryptographic coprocessor with a slice 134a. The cryptographic coprocessor 110' is a double-slice cryptographic coprocessor with slices 134a', 134b'. The cryptographic coprocessor 110" is a triple-slice cryptographic coprocessor with slices 134a"-134c". The cryptographic coprocessor 110"' is a quadruple-slice cryptographic coprocessor with slices 134a"'-134d"'. Of the engines shown, the cryptographic engine 110 has the least amount of processing power, and therefore the lowest associated cost and the smallest footprint, while the cryptographic engine 110"' has the most processing power, and therefore the highest associated cost and largest footprint. Additional slices could be added to the embodiments shown to increase processing power if necessary.
The embodiments shown in FIGs. 9-12 therefore show that the scalable architecture of the present invention provides design flexibility that enables a cryptographic engine to be configured to fit within specific application processing and cost parameters. This design flexibility eliminates the need for multiple cryptographic engines to support high performance cryptographic algorithm processing. The single engine architecture of the present invention also enhances overall cryptographic processing performance when compared to conventional cryptographic engine architectures, as it has a target throughput encryption/decryption processing rate of 50 - 200 Mbps for a combination of algorithms and associations.
The above-described scalable programmable cryptographic engine of the present invention is designed to support high performance communications applications such as personal computer cards, network encryption systems, and satellite communications, and can be embedded in applications such as programmable and handheld radios, avionics equipment, network security systems, telephony and numerous other applications requiring secure data transmission and reception capabilities. The engine can ensure data integrity on both personal computers and networks and at the same time maintain interoperability with numerous cryptographic algorithm implementations.
While the above description is of the preferred embodiment of the present invention, it should be appreciated that the invention may be modified, altered, or varied without deviating from the scope and fair meaning of the following claims.
a main processor for performing only asymmetric processing;
a control interface for enabling main processor external communication; and a coprocessor subordinate to and separate from the main processor for executing symmetric cryptographic processing algorithms stored therein, the coprocessor having a processing capacity that is scalable based on application-specific parameters.
a multi-bit microsequencer for managing resources of the main processor;
a register for receiving data packet elements to be processed from the microsequencer;
an arithmetic logic unit coupled to the register and the microsequencer for receiving the data packet elements from the register, for performing standard Boolean and arithmetic operations on the received data packet elements, and for sending processing status information on the received data packet elements to the microsequencer; and a comparison unit coupled to the microsequencer, the register and to the arithmetic logic unit for enabling the main processor to cyclically compare multi-bit data packet elements from the microsequencer and to generate and transmit to the microsequencer a subsequent number of bit errors to maintain engine processing integrity.
a microsequencer for managing coprocessor program flow based on the data packet elements to be processed in the register bank, and on the processed data packet elements in the register bank to be returned to the main processor; and a coprocessor slice including an input register for moving data in and out of the register bank and for selecting stored cryptographic function codes in response to instructions received from the main processor.
a linear permutation section for permuting a first five of the ten 32-bit input data packet elements to create four new 32-bit permuted data packet elements;
a non-linear permutation section for processing a second five of the ten 32-bit input values to create a fifth 32-bit permuted data packet element;
a linear logic unit for processing the five 32-bit permuted data packet elements to generate four 32-bit encrypted data packet elements to be output to the main processor.
a non-linear permutation section for permuting the second five 32-bit data packet elements into sixteen 9-bit data packet elements;
sixteen 512 x 1 lookup tables each for mapping a non-linear variable to one of the 9-bit data packet elements input thereto to generate a 16-bit non-linear data packet element; and a delay register for causing the 16-bit non-linear data packet to be concatenated with a previously generated 16-bit non-linear data packet to produce the fifth 32-bit permuted data packet input into the linear logic unit.
a register bank for receiving and storing data packet elements to be encrypted;
a cryptographic processing device coupled to the register bank and having a processing capacity that is scalable based on application-specific parameters;
and a coprocessor control device coupled to the register bank and the cryptographic processing device for instructing the cryptographic processing device to perform a cryptographic processing operation unique to the cryptographic processing device.
Priority Applications (3)
|Application Number||Priority Date||Filing Date||Title|
|PCT/US2001/009714 WO2001076129A2 (en)||2000-03-31||2001-03-27||Scalable cryptographic engine|
|Publication Number||Publication Date|
|CA2375749A1 true CA2375749A1 (en)||2001-10-11|
Family Applications (1)
|Application Number||Title||Priority Date||Filing Date|
|CA 2375749 Abandoned CA2375749A1 (en)||2000-03-31||2001-03-27||Scalable cryptographic engine|
Country Status (5)
|AU (1)||AU5297201A (en)|
|CA (1)||CA2375749A1 (en)|
|GB (1)||GB2367404A (en)|
|PL (1)||PL354956A1 (en)|
|WO (1)||WO2001076129A2 (en)|
Families Citing this family (25)
|Publication number||Priority date||Publication date||Assignee||Title|
|US6836839B2 (en)||2001-03-22||2004-12-28||Quicksilver Technology, Inc.||Adaptive integrated circuitry with heterogeneous and reconfigurable matrices of diverse and adaptive computational units having fixed, application specific computational elements|
|US7489779B2 (en) *||2001-03-22||2009-02-10||Qstholdings, Llc||Hardware implementation of the secure hash standard|
|US7752419B1 (en)||2001-03-22||2010-07-06||Qst Holdings, Llc||Method and system for managing hardware resources to implement system functions using an adaptive computing architecture|
|US7962716B2 (en)||2001-03-22||2011-06-14||Qst Holdings, Inc.||Adaptive integrated circuitry with heterogeneous and reconfigurable matrices of diverse and adaptive computational units having fixed, application specific computational elements|
|US6577678B2 (en)||2001-05-08||2003-06-10||Quicksilver Technology||Method and system for reconfigurable channel coding|
|US6901491B2 (en) *||2001-10-22||2005-05-31||Sun Microsystems, Inc.||Method and apparatus for integration of communication links with a remote direct memory access protocol|
|US7046635B2 (en)||2001-11-28||2006-05-16||Quicksilver Technology, Inc.||System for authorizing functionality in adaptable hardware devices|
|US6986021B2 (en)||2001-11-30||2006-01-10||Quick Silver Technology, Inc.||Apparatus, method, system and executable module for configuration and operation of adaptive integrated circuitry having fixed, application specific computational elements|
|US8412915B2 (en)||2001-11-30||2013-04-02||Altera Corporation||Apparatus, system and method for configuration of adaptive integrated circuitry having heterogeneous computational elements|
|US7215701B2 (en)||2001-12-12||2007-05-08||Sharad Sambhwani||Low I/O bandwidth method and system for implementing detection and identification of scrambling codes|
|FR2834361B1 (en) *||2001-12-28||2004-02-27||Bull Sa||securisation of data encryption module / deciphering and / or signing / signature verification|
|US7403981B2 (en)||2002-01-04||2008-07-22||Quicksilver Technology, Inc.||Apparatus and method for adaptive multimedia reception and transmission in communication environments|
|US7653710B2 (en)||2002-06-25||2010-01-26||Qst Holdings, Llc.||Hardware task manager|
|US8108656B2 (en)||2002-08-29||2012-01-31||Qst Holdings, Llc||Task definition for specifying resource requirements|
|US7937591B1 (en)||2002-10-25||2011-05-03||Qst Holdings, Llc||Method and system for providing a device which can be adapted on an ongoing basis|
|US7249242B2 (en)||2002-10-28||2007-07-24||Nvidia Corporation||Input pipeline registers for a node in an adaptive computing engine|
|US8276135B2 (en)||2002-11-07||2012-09-25||Qst Holdings Llc||Profiling of software and circuit designs utilizing data operation analyses|
|US7225301B2 (en)||2002-11-22||2007-05-29||Quicksilver Technologies||External memory controller node|
|US7328414B1 (en)||2003-05-13||2008-02-05||Qst Holdings, Llc||Method and system for creating and programming an adaptive computing engine|
|US7660984B1 (en)||2003-05-13||2010-02-09||Quicksilver Technology||Method and system for achieving individualized protected space in an operating system|
|FR2863076B1 (en)||2003-11-28||2006-02-03||Bull Sa||High flow cryptographic system has modular architecture.|
|US7953221B2 (en)||2006-12-28||2011-05-31||Intel Corporation||Method for processing multiple operations|
|US20090183161A1 (en) *||2008-01-16||2009-07-16||Pasi Kolinummi||Co-processor for stream data processing|
|US9569633B2 (en) *||2012-06-29||2017-02-14||Intel Corporation||Device, system, and method for processor-based data protection|
|KR101566145B1 (en) *||2014-10-23||2015-11-06||숭실대학교산학협력단||Mobile device and method operating the mobile device|
- 2001-03-27 CA CA 2375749 patent/CA2375749A1/en not_active Abandoned
- 2001-03-27 WO PCT/US2001/009714 patent/WO2001076129A2/en active Application Filing
- 2001-03-27 PL PL01354956A patent/PL354956A1/en unknown
- 2001-03-27 GB GB0129287A patent/GB2367404A/en not_active Withdrawn
- 2001-03-27 AU AU52972/01A patent/AU5297201A/en not_active Abandoned
Also Published As
|Publication number||Publication date|
|Good et al.||AES on FPGA from the fastest to the smallest|
|Rouvroy et al.||Compact and efficient encryption/decryption module for FPGA implementation of the AES Rijndael very well suited for small embedded applications|
|Burwick et al.||MARS-a candidate cipher for AES|
|US6870929B1 (en)||High throughput system for encryption and other data operations|
|US7142669B2 (en)||Circuit for generating hash values|
|US8379841B2 (en)||Method and system for high throughput blockwise independent encryption/decryption|
|Lee et al.||Efficient permutation instructions for fast software cryptography|
|JP3979786B2 (en)||Cryptographic processor having a shared memory interconnect|
|CN102334307B (en)||Key recovery mechanism for cryptographic systems|
|JP5715218B2 (en)||Flexible architecture and instruction for the Advanced Encryption Standard (aes)|
|US9336160B2 (en)||Low latency block cipher|
|JP4669046B2 (en)||Cryptographically secure pseudorandom number generator|
|Rogaway et al.||A software-optimized encryption algorithm|
|Yalla et al.||Lightweight cryptography for FPGAs|
|Kaps||Chai-tea, cryptographic hardware implementations of xtea|
|US20030023830A1 (en)||Method and system for encoding instructions for a VLIW that reduces instruction memory requirements|
|EP2096787A2 (en)||Method and apparatus for optimizing advanced encryption standard (AES) encryption and decryption in parallel modes of operation|
|Hansen||Architecture of a broadband mediaprocessor|
|EP1191739B1 (en)||Stream cipher encryption application accelerator and methods thereof|
|US7174014B2 (en)||Method and system for performing permutations with bit permutation instructions|
|Schneier et al.||Fast software encryption: Designing encryption algorithms for optimal software speed on the Intel Pentium processor|
|US20040202317A1 (en)||Advanced encryption standard (AES) implementation as an instruction set extension|
|Daemen et al.||Fast hashing and stream encryption with PANAMA|
|EP1090477A2 (en)||Block ciphers with integer multiplication, data-dependent and fixed number of rotations in each round|
|CA2486713A1 (en)||Advanced encryption standard (aes) hardware cryptographic engine|