CN105786528B - Design method of SM3 algorithm IP core based on Avalon interface - Google Patents
Design method of SM3 algorithm IP core based on Avalon interface Download PDFInfo
- Publication number
- CN105786528B CN105786528B CN201610198363.XA CN201610198363A CN105786528B CN 105786528 B CN105786528 B CN 105786528B CN 201610198363 A CN201610198363 A CN 201610198363A CN 105786528 B CN105786528 B CN 105786528B
- Authority
- CN
- China
- Prior art keywords
- data
- register
- kernel
- message blocks
- signal
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 21
- 238000013461 design Methods 0.000 title claims abstract description 12
- 230000000630 rising effect Effects 0.000 claims abstract description 4
- 230000001360 synchronised effect Effects 0.000 claims abstract description 4
- 230000008569 process Effects 0.000 claims description 7
- 230000000295 complement effect Effects 0.000 claims description 4
- 230000006641 stabilisation Effects 0.000 claims description 4
- 238000011105 stabilization Methods 0.000 claims description 4
- 238000005538 encapsulation Methods 0.000 abstract 1
- 230000006870 function Effects 0.000 description 12
- 235000013399 edible fruits Nutrition 0.000 description 2
- 230000002093 peripheral effect Effects 0.000 description 2
- 238000004458 analytical method Methods 0.000 description 1
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004364 calculation method Methods 0.000 description 1
- 230000006835 compression Effects 0.000 description 1
- 238000007906 compression Methods 0.000 description 1
- 238000010276 construction Methods 0.000 description 1
- 238000010586 diagram Methods 0.000 description 1
- 230000005611 electricity Effects 0.000 description 1
- 238000005516 engineering process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 230000007704 transition Effects 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F8/00—Arrangements for software engineering
- G06F8/30—Creation or generation of source code
- G06F8/31—Programming languages or programming paradigms
- G06F8/313—Logic programming, e.g. PROLOG programming language
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F30/00—Computer-aided design [CAD]
- G06F30/30—Circuit design
- G06F30/34—Circuit design for reconfigurable circuits, e.g. field programmable gate arrays [FPGA] or programmable logic devices [PLD]
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2115/00—Details relating to the type of the circuit
- G06F2115/08—Intellectual property [IP] blocks or IP cores
Landscapes
- Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Theoretical Computer Science (AREA)
- General Engineering & Computer Science (AREA)
- Physics & Mathematics (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Physics & Mathematics (AREA)
- Evolutionary Computation (AREA)
- Geometry (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides a method for designing an SM3 algorithm IP core based on an Avalon interface, and belongs to the technical field of information security. All signals of an encapsulation interface of the IP core are synchronous in clock, are sampled at a rising edge and are effective in high level; when the IP core works, firstly writing the total length of the message block into the length register, then writing the Data of a first message block to be operated into the Data register of the IP core, after the operation of the first message block Data is finished, setting the 3 rd bit of the control register to be 1, then writing the second message block Data to be operated into the IP core, setting the 3 rd bit of the control register to be 0 until all the operation of the message block Data is finished, writing the final hash operation result into the operation result register, and reading the hash operation result through a Data _ out [255..0] interface. The invention has flexible and convenient design and can meet the application requirements of the information security field on data encryption and decryption.
Description
Technical field
The present invention relates to field of information security technology more particularly to a kind of SM3 Algorithm IPs based on Avalon interface
Design method.
Background technique
Hash algorithm is also known as Hash function, hash function, it is can be mapped as the long input message of arbitrary finite
The output valve of regular length and calculate easy Certain function summary.Hash function is that a kind of important basis is calculated in contemporary cryptology
Method provides the support function that data integrity is authenticated and authenticated to message source during constructing information safety system
Energy.Hash function is generally using the design method of grouping iteration, and such as existing typical hash algorithm is all made of MD type in the world
It is grouped iteration structure, wherein using SHA-1 algorithm and SHA-256/384/512 algorithm as representative.Such algorithm has compression letter
Number nonlinearity is high, the advantages that strong is filled and be grouped to message, but there is also threaten safety.For this purpose, researcher causes
Power in the design and analysis and construction of parallel schema hash algorithm, and by national Password Management office on December 22nd, 2010 most
The SM3 cryptographic Hash algorithm suitable for commercial cipher application has been issued eventually.The safety and reliability of SM3 algorithm is high, extensively
Applied to information security field.
Avalon switching bus is a kind of interconnection that on-chip processor and various peripheral hardwares are connected in programmable system on chip
Mechanism.It defines the signal type communicated between main and subordinate node and sequential relationship, allows user easily certainly
Oneself is connected in Nios II system selected or design peripheral module by Avalon bus.But SM3 is calculated in current trust computing
Fado realizes that speed is slower, and safety is poor by software or credible chip.
Summary of the invention
In order to solve the above technical problems, setting the invention proposes a kind of SM3 Algorithm IP based on Avalon interface
Meter method.The present invention realizes SM3 hash cryptographic algorithm, meets Avalon interface specification.The IP kernel uses hardware description language
VHDL is designed, and the IP kernel can be connected in Nios II system by Avalon bus.
The technical scheme is that
All signals of the package interface of the IP kernel are that clock is synchronous, are sampled in rising edge, high level is effective.Each letter
Number function it is as follows:
Clk: input signal, the clock of Avalon bus, the clock signal as IP kernel;
Reset: input signal is the reset signal of IP kernel;
Data_in [511..0]: input signal, the input of 512 bit data;
Address [4..0]: input signal, address bus, for selecting the register of IP kernel after decoding.
Data_out [255..0]: output signal, the output of 256 bit operation results;
Done: output pin, the complement mark that message blocks operation generates when completing, high level are effective.
The IP kernel includes 4 registers, and word length is 32 bit, and the function of each register is as follows:
1), data register: offset address 0x00-0x0F, for storing one piece of message data of SM3 algorithm, to this
Register only carries out write operation.
2), length register: offset address 0x10, the total length of the message blocks for storing SM3 algorithm, to the deposit
Device can be written and read.
3), operation result register: offset address 0x11-0x18, for storing the message hash operation knot of SM3 algorithm
Fruit only carries out read operation to the register.
4) register: offset address 0x19, is controlled, control register can be written and read, to control IP
The function of core simultaneously inquires state.0 ~ 3 for controlling register is effective, in which: the 0th is IRQ_ENA, and setting 1 expression all ought disappear
Interrupt signal is generated after the completion of breath block operation, does not generate interrupt signal after the completion of clear 0 expression operation, IP kernel works in inquiry mould
Formula;1st is DATA_VALID, and it is effective to set 1 expression message blocks data, and clear 0 indicates that message blocks are invalid;2nd is enabling signal,
Start operation for starting IP kernel;3rd is that signal is completed in every piece of message blocks operation, sets 1 expression, one piece of message blocks operation and completes,
Clear 0 indicates that the non-operation of message blocks is completed.
IP kernel work when, first to length register write-in message blocks total length, backward IP kernel data register
The data of message blocks of the write-in first to operation, after the completion of first message blocks data operation, setting control register
3rd is 1, backward IP kernel second message blocks data to operation is written, and control register is set the 3rd be 0, directly
It is completed to all message blocks data operations, final hash operation result is written in operation result register, passes through
Data_out [255..0] interface is read.
The IP kernel uses the design method of finite state machine to the treatment process of data;The state of state machine shifts
Length condition WAIT_LEN is waited, data mode WAIT_DATA is waited, initial wheel state INITIAL_ROUND, repeats wheel state
DO_ROUND, final wheel state FINAL_ROUND and completion status DONE, each message blocks hash operation need more wheel operations;
Wherein data_stable is data stabilization signal, by controlling register access;Variable i is wheel counter, and NO_ROUNDS is
Constant indicates the total wheel number of processing data block process, is set by length register.
The beneficial effects of the present invention are:
The present invention is designed using Hardware Description Language VHDL, provides SM3 symmetric cryptographic algorithm, meets Avalon bus
Interface specification can be connected in the FPGA for being transplanted to different model, so that flexible design side with Nios II embeded processor
Just, it can satisfy information security field to the application demand of data encrypting and deciphering.
Detailed description of the invention
Fig. 1 is the SM3 Algorithm IP interface schema based on Avalon interface;
Fig. 2 is the state machine transfer figure of IP kernel data processing.
Specific embodiment
More detailed elaboration is carried out to the contents of the present invention below:
The package interface of the IP kernel is as shown in Fig. 1, and all signals are that clock is synchronous, is sampled in rising edge, high electricity
It is flat effective.The function of each signal is as follows:
Clk: input signal, the clock of Avalon bus, the clock signal as IP kernel;
Reset: input signal is the reset signal of IP kernel;
Data_in [511..0]: input signal, the input of 512 bit data;
Address [4..0]: input signal, address bus, for selecting the register of IP kernel after decoding.
Data_out [255..0]: output signal, the output of 256 bit operation results;
Done: output pin, the complement mark that message blocks operation generates when completing, high level are effective.
The IP kernel includes 4 registers, and word length is 32 bit, and the function of each register is as follows:
1), data register: offset address 0x00-0x0F, for storing one piece of message data of SM3 algorithm
(512bit) only carries out write operation to the register.
2), length register: offset address 0x10, the total length of the message blocks for storing SM3 algorithm, to the deposit
Device can be written and read.
3), operation result register: offset address 0x11-0x18, for storing the message hash operation knot of SM3 algorithm
Fruit only carries out read operation to the register.
4) register: offset address 0x19, is controlled, control register can be written and read, to control IP
The function of core simultaneously inquires state.0 ~ 3 for controlling register is effective, in which: the 0th is IRQ_ENA, and setting 1 expression all ought disappear
Interrupt signal is generated after the completion of breath block operation, does not generate interrupt signal after the completion of clear 0 expression operation, IP kernel works in inquiry mould
Formula;1st is DATA_VALID, and it is effective to set 1 expression message blocks data, and clear 0 indicates that message blocks are invalid;2nd is enabling signal,
Start operation for starting IP kernel;3rd is that signal is completed in every piece of message blocks operation, sets 1 expression, one piece of message blocks operation and completes,
Clear 0 indicates that the non-operation of message blocks is completed.
IP kernel work when, first to length register write-in message blocks total length, backward IP kernel data register
The data of message blocks (512bit) of the write-in first to operation, after the completion of first message blocks data operation, setting control
The 3rd of register is 1, backward IP kernel second message blocks data to operation is written, and be arranged and control the 3rd of register
Position is 0, and until all message blocks data operations are completed, final hash operation result is written to operation result register
In, it is read by Data_out [255..0] interface.
The IP kernel uses the design method of finite state machine to the treatment process of data, and the state transition diagram of state machine is such as
Shown in attached drawing 2, including waits length condition WAIT_LEN, waits data mode WAIT_DATA, initial wheel state INITIAL_
ROUND, wheel state DO_ROUND, final wheel state FINAL_ROUND and completion status DONE, each message blocks hash fortune are repeated
It calculates and needs more wheel operations.Wherein data_stable is data stabilization signal, by controlling register access;Variable i is that wheel counts
Device, NO_ROUNDS are constants, indicate the total wheel number of processing data block process, are set by length register, for example, setting is to be shipped
When the data block of calculation is total up to 16 pieces, NO_ROUNDS=16.
The specific work process of state machine are as follows:
(1), after the enabling signal of control register is set to IP kernel, starting state machine, into waiting length condition WAIT_
LEN。
(2), in WAIT_LEN state, the message blocks total length to operation, Zhi Houzhuan is written to the length register of IP kernel
State machine, which enters, waits data mode WAIT_DATA.
(3), in WAIT_DATA state, first data block to operation is written to the data register of IP kernel, works as data
After stabilization, data_stable=' 1 ', state machine enter initial wheel state INITIAL_ROUND at this time.
(4), in INITIAL_ROUND state, state machine carries out the arithmetic operation of first data block, and initial wheel has operated
Cheng Hou, the 3rd block operation complement mark position of setting control register are " 1 ", and entering for register repeats wheel state DO_
ROUND。
(5), in DO_ROUND state, state machine carries out circulate operation, and the 3rd block operation of control register clearly first is complete
It is " 0 " at flag bit, repeats the message blocks operation of corresponding wheel later, finally enters final wheel state FINAL_ROUND.
(6), in FINAL_ROUND state, state machine completes last wheel operation, enters completion status DONE later.
(7), in DONE state, state machine has been completed the operation of all data blocks, and final hash result is written
Operation result register is finally exported from Data_out [255..0] interface.
Claims (3)
1. a kind of design method of the SM3 Algorithm IP based on Avalon interface, which is characterized in that
All signals of the package interface of IP kernel are that clock is synchronous, are sampled in rising edge, high level is effective;The function of each signal
It can be as follows:
Clk: input signal, the clock of Avalon bus, the clock signal as IP kernel;
Reset: input signal is the reset signal of IP kernel;
Data_in [511..0]: input signal, the input of 512 bit data;
Address [4..0]: input signal, address bus, for selecting the register of IP kernel after decoding;
Data_out [255..0]: output signal, the output of 256 bit operation results;
Done: output pin, the complement mark that message blocks operation generates when completing, high level are effective;
The IP kernel includes 4 registers, and word length is 32 bit, and the function of each register is as follows:
1), data register: offset address 0x00-0x0F, for storing one piece of message data of SM3 algorithm, to the deposit
Device only carries out write operation;
2), length register: offset address 0x10, the total length of the message blocks for storing SM3 algorithm can to the register
It is written and read;
3), operation result register: offset address 0x11-0x18, for storing the message hash operation result of SM3 algorithm,
Read operation is only carried out to the register;
4) register: offset address 0x19, is controlled, control register can be written and read, to control IP kernel
Function simultaneously inquires state;
IP kernel work when, first to length register write-in message blocks total length, backward IP kernel data register be written
The data of first message blocks to operation, after the completion of first message blocks data operation, the 3rd of setting control register
Be 1, backward IP kernel second message blocks data to operation is written, and control register is set the 3rd be 0, Zhi Daosuo
Some message blocks data operations are completed, and final hash operation result is written in operation result register, pass through Data_
Out [255..0] interface is read.
2. the method according to claim 1, wherein 0 ~ 3 of control register is effective, in which: the 0th is
IRQ_ENA sets 1 expression and generates interrupt signal after the completion of all message blocks operations, do not generate interruption after the completion of clear 0 expression operation
Signal, IP kernel work in query pattern;1st is DATA_VALID, and it is effective to set 1 expression message blocks data, and clear 0 indicates message blocks
In vain;2nd is enabling signal, starts operation for starting IP kernel;3rd is that signal is completed in every piece of message blocks operation, sets 1 table
Show that one piece of message blocks operation is completed, clear 0 indicates that the non-operation of message blocks is completed.
3. according to the method described in claim 2, it is characterized in that, the IP kernel uses finite state to the treatment process of data
The design method of machine;State machine state transfer include wait length condition WAIT_LEN, wait data mode WAIT_DATA,
Initial wheel state INITIAL_ROUND, wheel state DO_ROUND, final wheel state FINAL_ROUND and completion status are repeated
DONE, each message blocks hash operation need more wheel operations;Wherein data_stable is data stabilization signal, is posted by control
Storage access;Variable i is wheel counter, and NO_ROUNDS is constant, indicates the total wheel number of processing data block process, is posted by length
Storage setting.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610198363.XA CN105786528B (en) | 2016-04-01 | 2016-04-01 | Design method of SM3 algorithm IP core based on Avalon interface |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201610198363.XA CN105786528B (en) | 2016-04-01 | 2016-04-01 | Design method of SM3 algorithm IP core based on Avalon interface |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105786528A CN105786528A (en) | 2016-07-20 |
| CN105786528B true CN105786528B (en) | 2019-01-08 |
Family
ID=56395488
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201610198363.XA Active CN105786528B (en) | 2016-04-01 | 2016-04-01 | Design method of SM3 algorithm IP core based on Avalon interface |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105786528B (en) |
Families Citing this family (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106228088A (en) * | 2016-08-11 | 2016-12-14 | 浪潮电子信息产业股份有限公司 | SM4 algorithm IP core design method based on domestic BMC chip |
| CN115599717B (en) * | 2022-11-15 | 2023-03-10 | 浪潮电子信息产业股份有限公司 | Data moving method, device, equipment and medium |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104182696A (en) * | 2014-08-15 | 2014-12-03 | 浪潮电子信息产业股份有限公司 | Design method based on Avalon interface for IP core of AES algorithm |
-
2016
- 2016-04-01 CN CN201610198363.XA patent/CN105786528B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104182696A (en) * | 2014-08-15 | 2014-12-03 | 浪潮电子信息产业股份有限公司 | Design method based on Avalon interface for IP core of AES algorithm |
Non-Patent Citations (1)
| Title |
|---|
| SM3杂凑算法的流水线结构硬件实现;蔡冰清 等;《微电子学与计算机》;20150131;第32卷(第1期);第15-18页 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105786528A (en) | 2016-07-20 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104182696A (en) | Design method based on Avalon interface for IP core of AES algorithm | |
| CN102737270B (en) | A kind of bank intelligent card chip secure coprocessor based on domestic algorithm | |
| CN106228088A (en) | SM4 algorithm IP core design method based on domestic BMC chip | |
| CN102663326B (en) | SoC-used data security encryption module | |
| US20220006611A1 (en) | Side-channel robust incomplete number theoretic transform for crystal kyber | |
| EP4152681A1 (en) | Low overhead side channel protection for number theoretic transform | |
| CN103049710B (en) | Field-programmable gate array (FPGA) chip for SM2 digital signature verification algorithm | |
| CN109447225A (en) | A kind of high-speed secure encryption Micro SD card | |
| EP3930253A1 (en) | High throughput post quantum aes-gcm engine for tls packet encryption and decryption | |
| CN105786528B (en) | Design method of SM3 algorithm IP core based on Avalon interface | |
| CN102307090B (en) | Elliptic curve password coprocessor based on optimal normal basis of II-type | |
| CN106709358A (en) | Mobile device based on trusted computing | |
| CN106650411A (en) | Verification system for cryptographic algorithms | |
| CN106548099A (en) | A kind of chip of circuit system safeguard protection | |
| CN106599677A (en) | Password control system and control method used for baseboard management controller | |
| CN102110066B (en) | Tax-control encryption card control method | |
| CN103020535B (en) | A kind of data encrypting and deciphering system with comparing function | |
| CN203057169U (en) | Network cipher machine based on FPGA (Field Programmable Gate Array) | |
| CN208861323U (en) | A kind of high-speed secure encryption Micro SD card | |
| CN102135871B (en) | Device for generating random number by using chaos theory and dynamic password token thereof | |
| CN117113442A (en) | Acceleration system of homomorphic encryption algorithm Paillier-oriented data path | |
| CN101719827B (en) | Method for executing hardware realization of Petri network-based block cipher algorithm | |
| CN206388179U (en) | A kind of mobile device based on trust computing | |
| CN103107879A (en) | RAS accelerator | |
| CN102739396B (en) | Co-processor applied in information security |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |