KR102143562B1 - Apparatus and method for multiple calculation of ab multiplication and ab^2 multiplication - Google Patents

Abstract

According to an embodiment of the present invention, in a multi-operation device that enables AB multiplication and AB ² multiplication on a finite field GF (2 ^m ), the intermediate result of the AB ² multiplication equation and the AB multiplication equation are configured, and corresponding calculations Based on receiving a common unit for deriving each of the first and second configurations consisting of a structure, and a value for the first configuration and a value for the second configuration, which are connected to the common unit and derived from the common unit Thus, based on the AB multiplication unit for performing the AB multiplication operation, and receiving a value for the intermediate result of the AB ² multiplication equation derived from the common unit connected to the common unit, the AB ² multiplication operation is performed. It may include an AB ² multiplier to perform.

Description

A multiplication unit and method of AB multiplication and AB^2 multiplication {APPARATUS AND METHOD FOR MULTIPLE CALCULATION OF AB MULTIPLICATION AND AB^2 MULTIPLICATION}

The present invention relates to a multi-operation apparatus and method capable of performing AB multiplication and AB ² multiplication.

A finite field is a field containing a finite number of elements. For example, a finite field GF(2 ^m ) is a number system containing 2 ^m elements. Finite field operations are widely used in various fields such as coding theory, computer algebra, and elliptic curve cryptosystem among public key cryptosystems.

Operations on finite fields include addition, multiplication, division, square, and inverse operations. In a system using a finite field (hereinafter referred to as'finite field system'), the finite field system operates based on an operation being performed. Accordingly, there is a significant relationship between the operation and the operation efficiency of the system, and the operation needs to be efficiently performed in order to increase the performance of the finite field system.

On the other hand, the conventional finite field operation was performed individually through different configurations for each type of operation. For example, in the case of AB multiplication is configured only for the multiplication AB, AB ^2, if the multiplication has been performed through the configuration for only the AB ² multiplication. In this case, since all hardware configurations for each operation must be provided to perform each operation, space is occupied by the number of necessary hardware, and there is a limit to the miniaturization of electronic devices using finite field systems. .

Accordingly, all necessary operations on the finite field can be performed, but a method for maximizing the efficiency in terms of space is required.

Korean Patent Registration No. 10-0902847 (registered on June 08, 2009)

The problem to be solved by the present invention is to provide a multi-operation apparatus and method for AB multiplication and AB ² multiplication with minimal spatial complexity by allowing different operations, AB multiplication and AB ² multiplication, to be performed through a single device. .

However, the problems to be solved by the present invention are not limited as mentioned above, and are not mentioned, but include objects that can be clearly understood by those of ordinary skill in the art from the following description. can do.

In a multi-processing device that enables AB multiplication and AB ² multiplication on a finite field GF (2 ^m ) according to an embodiment of the present invention, a first configuration and a second configuration consisting of a calculation structure corresponding to each other constitutes an AB multiplication equation. On the basis of receiving a configuration, and a common portion for deriving an intermediate result of the AB ² multiplication equation, and a value for the first configuration and a value for the second configuration connected to the common portion and derived from the common portion, Based on the AB multiplication unit for performing the AB multiplication operation, and receiving a value for the intermediate result of the AB ² multiplication expression derived from the common unit connected to the common unit, performing the AB ² multiplication operation It may include an AB ² multiplier.

(A는 상기 PB를 이용하여 표현되는 상기 제1 원소, a_i는 상기 제1 원소에 대해 0 이상 m-1 이하의 범위에 포함되는 특정 값인 i에 대한 xⁱ의 계수, i는 상기 유한체 GF(2^m) 를 정의하는 정수 m에 대해 0 이상 m-1 이하인 범위 내의 정수)로 표현되고, 상기 제2 원소는 상기 PB를 이용하여

(B는 상기 PB를 이용하여 표현되는 상기 제2 원소, b_i는 상기 제2 원소에 대해 0부터 m-1 범위 내의 특정 값인 i에 대한 xⁱ의 계수)로 표현되고, 상기 AB² 곱셈식은,

(S는 AB² 곱셈식, F는 상기 유한체 GF(2^m) 에 대한 기약다항식)로 표현될 수 있다. In addition, the finite field GF(2 ^m ) has a polynomial basis (PB), the finite field GF(2 ^m ) element includes a first element and a second element, and the first element uses the PB

(A is the first element expressed using the PB, a _i is the coefficient of x ⁱ for i, which is a specific value included in the range of 0 to m-1 for the first element, i is the finite field GF (2 ^m ) is expressed as an integer within the range of 0 or more and m-1 or less with respect to the integer m defining GF (2 ^m ), and the second element is

(B is the second element expressed using the PB, b _i is the coefficient of x ⁱ for i, which is a specific value in the range from 0 to m-1 for the second element), and the AB ² multiplication equation is ,

(S is AB ² multiplication equation, F can be expressed as a short polynomial for the finite field GF (2 ^m )).

In addition, at least a part of the AB multiplication equation is expressed by a first recursive equation, and at least a portion of the AB ² multiplication equation further includes a recursive expression unit expressing a second recursive equation, and the first recursive equation is in the first configuration. Including the 1-1 circulation equation for and the 1-2 circulation equation for the second configuration, and the calculation structures of the 1-1 circulation equation, the 1-2 circulation equation, and the second circulation equation It can be the same.

In addition, the common part may be preset to derive an intermediate result of the AB ² multiplication equation and each of the first and second configurations based on the first and second circulation equations.

In addition, the common unit, when acquiring input values for the elements of the finite field GF (2 ^m ) on which the AB multiplication is performed, the first configuration and the second configuration, the first configuration and the second configuration When each is derived and an input value for an element of the finite field GF (2 ^m ) in which the AB ² multiplication is performed is obtained, an intermediate result of the AB ² multiplication equation can be derived.

(S⁽ⁱ⁾는 상기 AB² 곱셈식의 중간 결과,

는 상기 복수의 셀의 j번째 열 i번째 행에서 획득되는 AB² 곱셈식에 대한 계수 값)를 이용하여 획득되고, 상기 제1 구성 및 상기 제2 구성 각각은 복수의 요소를 포함하며, 상기 제1 구성의 요소는,

(

는 상기 공통부의 j번째 열, i번째 행에서 획득되는 제1 구성의 요소, b_{2i -1}은 상기 제2 원소에서 x^{2i -1}의 계수,

는 상기 공통부의 j번째 열, i-1번째 행에서 획득되는 제1 구성의 요소,

는 기지정된 수학식과 관련하여 상기 공통부의 j번째 열, i-1번째 행에서 획득되는 계수의 값)을 이용하여 획득되고, 상기 제2 구성의 요소는,

(

은 상기 공통부의 j번째 열, i번째 행에서 획득되는 제2 구성의 요소, b_{2i -2}는 상기 제2 원소에서 x^{2i -2}의 계수,

는 상기 공통부의 j번째 열, i-1번째 행에서 획득되는 제2 구성의 요소)를 이용하여 획득될 수 있다. In addition, the common portion is composed of a plurality of cells, the intermediate result of the AB ² multiplication equation,

(S ⁽ⁱ⁾ is the intermediate result of the AB ² multiplication equation,

Is obtained using a coefficient value for an AB ² multiplication equation obtained in the i-th row of the j-th column of the plurality of cells), and each of the first configuration and the second configuration includes a plurality of elements, and the first The elements of the composition are,

(

Is the element of the first component obtained in the j-th column and i-th row of the common part, b _{2i -1} is the coefficient of x ^{2i -1} in the second element,

Is an element of the first component obtained in the j-th column and i-1th row of the common part,

Is obtained using a coefficient value obtained in the j-th column and i-1th row of the common part in relation to a known equation, and the second component is,

(

Is the element of the second constitution obtained in the j-th column and i-th row of the common part, b _{2i -2} is the coefficient of x ^{2i -2} in the second element,

May be obtained using the element of the second component obtained in the j-th column and the i-1th row of the common part).

In addition, the AB multiplication unit, based on receiving values for the first configuration and the second configuration, the first configuration and the second configuration for the AB multiplication equation represented by the first configuration and the second configuration. The AB multiplication is completed based on performing an operation by substituting a configuration, and information on the AB multiplication equation represented by the first configuration and the second configuration may be information previously stored in the AB multiplication unit.

In addition, the AB ² multiplier is based on acquiring an input value for an intermediate result of the received AB ² multiplication equation and an element of the finite field GF (2 ^m ) on which the AB ² multiplication is performed, the AB ² Multiplication can be performed.

In the information processing apparatus having a processor according to an embodiment of the present invention, a first configuration and a second configuration consisting of an AB multiplication equation and a calculation structure corresponding to each other are derived, or an intermediate result of the AB ² multiplication equation is derived, or , Deriving a first configuration and a second configuration consisting of a calculation structure corresponding to each other and forming an AB multiplication equation, and when the first configuration and the second configuration are derived, the derived value for the first configuration and based on receiving a value for the second configuration, when the intermediate result of the method for performing the operation of the AB multiplication, the AB ² gopsemsik is derived, the value of the intermediate result in the derived AB ² gopsemsik that Based on the receiving of, the AB ² multiplication operation may be performed.

(A는 상기 PB를 이용하여 표현되는 상기 제1 원소, a_i는 상기 제1 원소에 대해 0 이상 m-1 이하의 범위에 포함되는 특정 값인 i에 대한 xⁱ의 계수, i는 상기 유한체 GF(2^m) 를 정의하는 정수 m에 대해 0 이상 m-1 이하인 범위 내의 정수)로 표현되고, 상기 제2 원소는 상기 PB를 이용하여

(B는 상기 PB를 이용하여 표현되는 상기 제2 원소, b_i는 상기 제2 원소에 대해 0부터 m-1 범위 내의 특정 값인 i에 대한 xⁱ의 계수)로 표현되고, 상기 AB² 곱셈식은,

(S는 AB² 곱셈식, F는 상기 유한체 GF(2^m) 에 대한 기약다항식)로 표현될 수 있다. In addition, the finite field GF(2 ^m ) has a PB (polynomial basis) basis, the finite field GF(2 ^m ) element includes a first element and a second element, and the first element uses the PB So

(A is the first element expressed using the PB, a _i is the coefficient of x ⁱ for i, which is a specific value included in the range of 0 to m-1 for the first element, i is the finite field GF (2 ^m ) is expressed as an integer within the range of 0 or more and m-1 or less with respect to the integer m defining GF (2 ^m ), and the second element is

(B is the second element expressed using the PB, b _i is the coefficient of x ⁱ for i, which is a specific value in the range from 0 to m-1 for the second element), and the AB ² multiplication equation is ,

(S is AB ² multiplication equation, F can be expressed as a short polynomial for the finite field GF (2 ^m )).

In addition, expressing at least a part of the AB multiplication equation as a first recursive equation, and at least a portion of the AB ² multiplication equation further comprises a second recursive equation, wherein the first recursive equation Including the 1-1 cyclic formula and the 1-2 cyclic formula for the second configuration, the calculation structure of the 1-1 cyclic formula, the 1-2 cyclic formula, and the second cyclic formula may be the same I can.

In addition, the deriving step is based on the first cyclic equation and the second cyclic equation, using the intermediate result of the AB ² multiplication equation and a common part preset so that each of the first and second configurations can be derived. It may include the step of deriving an intermediate result of the AB ² multiplication equation or deriving the first configuration and the second configuration.

In addition, in the deriving step, when acquiring input values for the elements of the finite field GF (2 ^m ) on which the AB multiplication is performed, the first configuration and the second configuration, the first configuration and the second configuration 2, the step of deriving each of the components, and when obtaining an input value for the element of the finite field GF (2 ^m ) where the AB ² multiplication is performed, deriving each intermediate result of the AB ² multiplication equation. have.

(S⁽ⁱ⁾는 상기 AB² 곱셈식의 중간 결과,

는 상기 공통부의 j번째 열 i번째 행에서 획득되는 AB² 곱셈식에 대한 계수 값)를 이용하여 획득되고, 상기 제1 구성 및 상기 제2 구성 각각은 복수의 요소를 포함하며, 상기 제1 구성의 요소는,

(

는 상기 공통부의 j번째 열, i번째 행에서 획득되는 제1 구성의 요소, b_{2i -1}은 상기 제2 원소에서 x^{2i -1}의 계수,

는 상기 공통부의 j번째 열, i-1번째 행에서 획득되는 제1 구성의 요소,

는 기지정된 수학식과 관련하여 상기 공통부의 j번째 열, i-1번째 행에서 획득되는 계수의 값)을 이용하여 획득되고, 상기 제2 구성의 요소는,

(

은 상기 공통부의 j번째 열, i번째 행에서 획득되는 제2 구성의 요소, b_{2i -2}는 상기 제2 원소에서 x^{2i -1}의 계수,

는 상기 공통부의 셀의 j번째 열, i-1번째 행에서 획득되는 제2 구성의 요소)를 이용하여 획득될 수 있다. In addition, the step of deriving each of the first configuration and the second configuration and the step of deriving the intermediate result are performed by a common unit composed of a plurality of cells, and the intermediate result of the AB ² multiplication equation,

(S ⁽ⁱ⁾ is the intermediate result of the AB ² multiplication equation,

Is obtained using a coefficient value for the AB ² multiplication equation obtained in the j-th column i-th row of the common part), and each of the first component and the second component includes a plurality of elements, and The element is,

(

Is the element of the first component obtained in the j-th column and i-th row of the common part, b _{2i -1} is the coefficient of x ^{2i -1} in the second element,

Is an element of the first component obtained in the j-th column and i-1th row of the common part,

Is obtained using a coefficient value obtained in the j-th column and i-1th row of the common part in relation to a known equation, and the second component is,

(

Is the element of the second constitution obtained in the j-th column and i-th row of the common part, b _{2i -2} is the coefficient of x ^{2i -1} in the second element,

May be obtained by using an element of the second component obtained in the j-th column and i-1th row of the cell of the common part).

In addition, the performing of the AB multiplication may include receiving the values for the first configuration and the second configuration, the first configuration for the AB multiplication equation represented by the first configuration and the second configuration. Completing the AB multiplication based on performing an operation by substituting the first configuration and the second configuration, and information on the AB multiplication equation represented by the first configuration and the second configuration is the AB multiplication unit It may be information stored in advance.

In addition, the performing of the AB ² multiplication operation includes acquiring a value for an intermediate result of the received AB ² multiplication expression and an input value for an element of the finite field GF (2 ^m ) where the AB ² multiplication is performed. Based on that, it may include performing the AB ² multiplication operation.

Multi-computing device and a method of AB multiplier and AB ² multiplication according to an embodiment of the present invention, the space by making operation is performed by one hardware architecture to derive the configuration having the same computation structure for AB multiplication and AB ² multiplications The complexity can be minimized.

However, the effects obtainable in the present invention are not limited to the effects mentioned above, and other effects not mentioned will be clearly understood by those of ordinary skill in the technical field to which the present disclosure belongs from the following description. I will be able to.

1 shows an example of a functional configuration of a multi-processing device according to an embodiment of the present invention.
2 shows the flow of each step of the multi-operation method according to an embodiment of the present invention.
3 conceptually shows a hardware configuration of a multi-processing device according to an embodiment of the present invention.
4 is a logic circuit diagram of a hardware configuration used when AB multiplication is performed in a multi-operation device according to an embodiment of the present invention and an example of an input value for the hardware configuration.
FIG. 5 conceptually shows a hardware configuration used when performing AB ² multiplication in a multi-processing device according to an embodiment of the present invention.
6 illustrates a logic circuit diagram of a hardware configuration used when performing AB ² multiplication in a multi-operation device according to an embodiment of the present invention and an example of an input value for the hardware configuration.

Advantages and features of the present invention, and a method of achieving them will become apparent with reference to the embodiments described below in detail together with the accompanying drawings. However, the present invention is not limited to the embodiments disclosed below, but may be implemented in various forms, and only these embodiments make the disclosure of the present invention complete, and those skilled in the art to which the present invention pertains. It is provided to fully inform the scope of the invention to the person, and the scope of the invention is only defined by the claims.

In describing the embodiments of the present invention, a detailed description of known functions or configurations will be omitted except when actually necessary in describing the embodiments of the present invention. In addition, terms to be described later are terms defined in consideration of functions in an embodiment of the present invention, which may vary according to the intention or custom of users or operators. Therefore, the definition should be made based on the contents throughout this specification.

The present invention can be modified in various ways and can include various embodiments, and specific embodiments will be illustrated in the drawings and described in the detailed description. However, this is not intended to limit the present invention to specific embodiments, and should be understood as including all modifications, equivalents, and substitutes included in the spirit and scope of the present invention.

Terms including ordinal numbers such as first and second may be used to describe various components, but the corresponding components are not limited by these terms. These terms are only used for the purpose of distinguishing one component from another.

When a component is referred to as being'connected' or'connected' to another component, it is understood that it may be directly connected or connected to the other component, but other components may exist in the middle. Should be.

1 shows an example of a functional configuration of a multi-processing device according to an embodiment of the present invention. Used below'… A term such as'negative' means a unit that processes at least one function or operation, which may be implemented by hardware or software, or a combination of hardware and software.

Referring to FIG. 1, the multi-operation device 100 may include a common unit 110, an AB multiplication unit 120, and an AB ² multiplication unit 130. The multi-computing device 100 may be a device for calculating a finite field GF (2 ^m ).

The common unit 110 constitutes an AB multiplication equation and may derive a first configuration and a second configuration composed of a calculation structure corresponding to each other, or an intermediate result of the AB ² multiplication equation. When an input for performing AB multiplication is applied, the common unit 110 may derive the first configuration and the second configuration using a circular equation related to AB multiplication. If the common unit 110 is applied for the implementation of this type AB ² multiplication, using a circulation type associated with AB ² multiplication it can be derived the intermediate results of the AB ² gopsemsik.

For example, when acquiring input values for the elements of the finite field GF (2 ^m ) where AB multiplication is performed, the first configuration and the second configuration, the common unit 110 uses a cyclic formula related to the first configuration. Thus, the first configuration can be derived, and the second configuration can be derived using a cyclic equation related to the second configuration. If the common unit 110 derives the intermediate result in the case of obtaining the input values for the elements of the finite field GF (2 ^m) is the AB ² multiplication performed, AB ² using a circulation type associated with the AB ² gopsemsik gopsemsik can do.

The AB multiplication unit 120 is connected to the common unit 110 to perform an AB multiplication operation based on receiving a value for the first configuration and a value for the second configuration derived from the common unit 110. I can.

Based on receiving values for the first and second configurations, the AB multiplication unit 120 substitutes the first and second configurations for the AB multiplication equation, that is, calculates using the first configuration and the second configuration. We can finally complete AB multiplication by performing. Through this, the AB multiplication unit 120 may calculate a result of the AB multiplication.

Information on the AB multiplication equation represented by the first configuration and the second configuration may be previously stored in the AB multiplication unit. The stored form may be expressed as a circuit configuration, but is not limited thereto.

The AB ² multiplication unit 130 may perform an AB ² multiplication operation based on receiving a value for the intermediate result of the AB ² multiplication equation that is connected to the common unit 110 and derived from the common unit 110. . Specifically, for example, the AB ² multiplication unit 130 is based on acquiring the value of the intermediate result of the received AB ² multiplication equation and the input value of the element of the finite field GF (2 ^m ) where AB ² multiplication is performed. Thus, AB ² multiplication can be performed.

Although not shown, the multi-operation device 100 may include a cyclic expression unit. The cyclic expression unit may be included in each of the common unit 110, the AB multiplication unit 120, and the AB ² multiplication unit 130 to derive a cyclic expression related to each configuration so that an operation related to each configuration is performed. At least a part of the AB multiplication equation may be expressed as a first circular equation, and at least a portion of the AB ² multiplication equation may be expressed as a second circular equation. The first cyclic equation may include a 1-1 cyclic equation for the first configuration of the AB multiplication equation and a 1-2 cyclic equation for the second configuration of the AB multiplication equation. In this case, the calculation structure of each of the 1-1 cyclic formula and the 1-2 cyclic formula may correspond to the calculation structure of the second cyclic formula. A detailed description of this will be described later.

2 shows the flow of each step of the multi-operation method according to an embodiment of the present invention. It shows the flow of each step of the multi-processing device according to an embodiment of the present invention. Hereinafter, each step of FIG. 2 will be described with a focus on each component of FIG. 1, and content overlapping with FIG. 1 may be omitted.

Referring to FIG. 2, the common unit 110 constitutes an AB multiplication equation and may derive a first configuration and a second configuration consisting of a calculation structure corresponding to each other, or an intermediate result of the AB ² multiplication equation (S110).

Meanwhile, the common unit 110 may be configured as a set of cells having i rows and j columns, and each of the cells is connected to each other to finally derive a first configuration and a second configuration.

In this regard, the first component derived from the cell having row i and column j of the common unit 110 is expressed as Equation 1 below, and the second element derived from the cell having row i and column j The elements of the configuration may be expressed as Equation 2 below.

는 i번째 행, j번째 열에서 획득되는 제1 구성의 요소,

는 i-1번째 행, j번째 열에서 획득되는 제1 구성의 요소, b_{2i -1}은 제2 원소에서 x^2i-1의 계수,

는 후술되는 기지정된 수학식(예: 수학식 10)과 관련하여 i-1번째 행, j번째 열에서 획득되는 계수의 값일 수 있다. 이 때, 수학식 1은 상술한 순환식 표현부(140)에 의해 표현되는 제1 구성에 대한 순환식인 제1-1 순환식일 수 있다. In Equation 1,

Is the element of the first component obtained in the ith row, the jth column,

Is the element of the first component obtained in the i-1th row, the jth column, b _{2i -1} is the coefficient of x ^2i-1 in the second element,

May be a value of a coefficient obtained in the i-1th row and the jth column in relation to a known equation (eg, equation 10) to be described later. In this case, Equation 1 may be a cyclic equation 1-1, which is a cyclic equation for the first configuration expressed by the above-described cyclic expression unit 140.

Meanwhile, the above-described m may be an integer without restrictions of odd or even numbers, but in the present specification, it is assumed that it is an even number for convenience of description.

는 i번째 행, j번째 열에서 획득되는 제2 구성의 요소,

는 공통부(110)의 i-1번째 행, j번째 열에서 획득되는 제2 구성의 요소, b_{2i - 2}은 제2 원소에서 x^{2i -2}의 계수일 수 있다. 이 때, 수학식 2는 상술한 순환식 표현부(140)에 의해 표현되는 제1 구성에 대한 순환식인 제1-2 순환식일 수 있다.In Equation 2,

Is the element of the second component obtained in the ith row, the jth column,

Is an element of the second component obtained in the i-1th row and the j-th column of the common part 110, and b _{2i - 2} may be a coefficient of x ^{2i -2} in the second element. In this case, Equation 2 may be a 1-2 cyclic equation for the first configuration expressed by the above-described cyclic expression unit 140.

The elements of Equations 1 and 2 may refer to an element of a finite field GF (2 ^m ) having a polynomial basis (PB) basis. Specifically, the finite field GF (2 ^m ) may include two elements, a first element, and a second element, and the first element is expressed by Equation 3 below, and the second element is expressed by Equation 4 below. I can.

Referring to Equation 3, A is the first element of the finite field GF(2 ^m ) expressed using PB, m is a predetermined integer, and a _i is in the range of 0 to m-1 for the first element. It may be a coefficient of x ⁱ for i, which is a specific value to be included. For example, if the first element of GF(2 ⁴ ) is A and i is 2, if A is a ₃ x ³ +a ₂ x ² +a ₁ x ¹ +a ₀ x ⁰ , then a _i is A Is the coefficient of x ² . Hereinafter, for convenience of description, a _i will be referred to as the i-th coefficient of the first element.

Referring to Equation 4, B is the second element of the finite field GF(2 ^m ) expressed using PB, and b _i is the x ⁱ for i, which is a specific value in the range from 0 to m-1 for the second element. It can be a coefficient. For example, if the second element of GF(2 ⁴ ) is B and i is 2, if B is b ₃ x ³ +b ₂ x ² +b ₁ x ¹ +b ₀ x ⁰ , then b _i is B Is the coefficient of x ² . Hereinafter, for convenience of description, b _i will be referred to as the i-th coefficient of the second element.

Hereinafter, for convenience of description, b _i will be referred to as the i-th coefficient of the second element.

The intermediate result of the AB ² multiplication equation can be expressed as Equation 5 below.

는 S⁽ⁱ⁾의 계수일 수 있다. 수학식 5는 AB² 곱셈식을 순환식의 형태로 변형함으로써 도출된 것일 수 있다.Referring to Equation 5, S ⁽ⁱ⁾ may be a value obtained in the i-th row as an intermediate result of the AB ² multiplication equation. S ⁽ⁱ⁾ can be expressed in the form of a polynomial. i may be an integer within the range of less than m-1 and greater than 0 for the integer m defining the finite field GF(2 ^m ),

May be a coefficient of S ⁽ⁱ⁾ . Equation 5 may be derived by transforming the AB ² multiplication equation into a circular equation.

는 수학식 1 및 수학식 2와 같은 형태를 가진다. 즉, 제1 구성, 제2 구성 및 AB² 곱셈식의 중간 결과 각각은 동일한 계산 구조를 가지기 때문에 공통부(110)에 의해 모두 도출될 수 있다. I will explain later,

Has the same form as in Equations 1 and 2. That is, since each intermediate result of the first configuration, the second configuration, and the AB ² multiplication equation has the same calculation structure, all can be derived by the common unit 110.

Hereinafter, the derivation process of Equation 5 will be described in detail. In order to derive Equation 5, the AB ² multiplication equation may first be expressed as Equation 6 below.

In Equation 6, S may be an AB ² multiplication equation, and F may be an irreducible polynomial for the finite field GF (2 ^m ).

의 계산이 필요하고, 이에 따라, 하기의 수학식 7이 정의될 수 있다. For the calculation of Equation 6

Calculation of is required, and accordingly, Equation 7 below may be defined.

의 계산을 위해 정의된 수학식일 수 있다. Referring to Equation 7, A ⁽ⁱ⁾ is the above-described in the range of i is 0 or more and m-1 or less.

It may be an equation defined for the calculation of.

Equation 7 may be modified using a modular value previously stored for calculation. In this regard, the pre-stored modular value may include a first modular value and a second modular value, the first modular value may be as Equation 8 below, and the second modular value may be as Equation 9 below. have.

는 기약다항식 F를 이용하여 표현되는 제1 모듈러 값이며, G로 정의할 수 있다. g_j는 제1 모듈러 값의 j번째 계수이고, j는 0부터 m-1 범위 내의 상수일 수 있다. 예를 들어, GF(2⁴)의 제2 원소가 G이고 j가 2인 경우, G가 g₃x³+g₂x²+g₁x¹+g₀x⁰라 하면, g_j는 G의 x²의 계수이다.In Equation 8,

Is the first modular value expressed using the short polynomial F, and can be defined as G. g _j is the j-th coefficient of the first modular value, and j may be a constant in the range of 0 to m-1. For example, if the second element of GF(2 ⁴ ) is G and j is 2, if G is g ₃ x ³ +g ₂ x ² +g ₁ x ¹ +g ₀ x ⁰ , then g _j is G Is the coefficient of x ² .

는 기약다항식 F를 이용하여 표현되는 제2 모듈러 값이며, G’로 정의할 수 있다. g_j’은 제2 모듈러 값의 j번째 계수일 수 있다.In Equation 9,

Is a second modular value expressed using the short polynomial F, and can be defined as G'. g _j ′ may be a j-th coefficient of the second modular value.

Using the above-described first and second modular values, A ⁽ⁱ⁾ may be expressed as Equation 10 below.

는 A⁽ⁱ⁾의 계수를 나타내는 것으로서, a_j ⁽ⁱ⁾로 표현될 수 있다. 구체적으로, A⁽ⁱ⁾의 계수인 a_j ⁽ⁱ⁾는

를 계산함에 의해 획득(또는 결정)될 수 있다. 여기서, A⁽⁰⁾은 A일 수 있고,

과

는 각각 0이며, i가 1이상 m-1이하의 범위 내일 수 있다. 또한, A⁽ⁱ⁾의 계수와 관련하여,

는 0이고,

과

는 각각 0이며, i가 1이상 m-1이하이고 j가 0이상 m-1이하이다. In Equation 10,

Denotes the coefficient of A ⁽ⁱ⁾ and can be expressed as a _j ⁽ⁱ⁾ . Specifically, in a _j ⁽ⁱ⁾ coefficients of A ⁽ⁱ⁾ is

It can be obtained (or determined) by calculating. Here, A ⁽⁰⁾ can be A,

and

Is 0, and i may be in the range of 1 or more and m-1 or less. Also, with respect to the coefficient of A ⁽ⁱ⁾ ,

Is 0,

and

Is 0, i is 1 or more and m-1 or less, and j is 0 or more and m-1 or less.

Using Equation 10, the AB ² multiplication equation can be expressed as Equation 11 below.

A cyclic equation for the AB ² multiplication equation can be derived from Equation 11, and the derived cyclic equation can be expressed in the form of Equation 12 below.

In Equation 12, S ⁽ⁱ⁾ is the ith result of the AB ² multiplication equation, S ^(i-1) is the i-1th result of the AB ² multiplication equation, b _{i - 1} is the i-1th coefficient of the second element, A ^(i-1) may be an i-1 th value of a known equation to calculate a predetermined configuration of the AB ² multiplication equation. On the other hand, this cyclical expression may be obtained by the cyclical expression unit 140 of FIG. 1.

A value for the intermediate result of the AB ² multiplication equation represented by Equation 5 can be derived using Equation 12, and the common unit 110 calculates the intermediate result of the AB ² multiplication equation using Equation 10 and Equation 13 It can be derived, and the intermediate result of the AB ² multiplication equation can be expressed as in Equation 5.

를 구체적으로 나타내면 하기의 수학식 13과 같을 수 있다. On the other hand, the coefficient of S ⁽ⁱ⁾ shown in Equation 5

Specifically, it may be as shown in Equation 13 below.

는 S⁽ⁱ⁾의 계수,

는 S^(i-1)의 계수,

는 A^(i-1)의 계수일 수 있다. 여기서,

는 0이고, i가 1이상 m이하의 범위 내이고 j가 0이상 m-1이하의 범위 내일 수 있다. In Equation 13,

Is the coefficient of S ⁽ⁱ⁾ ,

Is the coefficient of S ^(i-1) ,

May be a coefficient of A ^(i-1) . here,

Is 0, i may be in the range of 1 or more and m or less, and j may be in the range of 0 or more and m-1 or less.

Hereinafter, the derivation of Equations 1 and 2 will be described in detail. Equations 1 and 2 are equations for AB multiplication, and the AB multiplication equation may be expressed as Equation 14 below in order to be performed using at least a part of the AB ² multiplication equation.

In Equation 14, P may be an AB multiplication equation. In Equation 14, Q may be expressed by Equation 15 below, and R may be expressed by Equation 16 below.

Equation 15 can be derived as in Equation 17 using A ⁽ⁱ⁾ expressed in Equation 7, and Equation 16 is derived as in Equation 18 using A ⁽ⁱ⁾ expressed in Equation 7 Can be.

, A⁽ⁱ⁾는 제1 원소와 관련하여 기지정된 수학식의 i번째 값일 수 있다. In Equation 17, Q is the first configuration, b _{2i +1} is the 2i + 1th coefficient of the second element, h is

, A ⁽ⁱ⁾ may be the i-th value of an equation known in relation to the first element.

In Equation 18, R may be the second component, and b _2i may be the 2i-th coefficient of the second element.

A recursive equation for Q can be derived from Equation 17, and a recursive equation for R can be derived from Equation 18. The cyclic equation for Q can be expressed as in Equation 19 below, and the cyclic equation for R can be expressed as in Equation 20 below.

In Equation 19, Q ⁽ⁱ⁾ may be the value of the i-th Q, and Q ^(i-1) may be the value of the i-1th Q. Here, Q ⁽⁰⁾ is 0.

In Equation 20, R ⁽ⁱ⁾ may be the value of the i-th R, and R ^(i-1) may be the value of the i-1th R. Here, R ⁽⁰⁾ is 0.

A first configuration represented by Equation 1 may be derived through Equation 19, and a value of each of the second configuration represented by Equation 2 may be derived through Equation 20. Based on this, the common unit 110 may derive a first configuration and a second configuration.

When the first configuration and the second configuration are derived (S120), the AB multiplication unit 120 may perform an AB multiplication operation based on receiving a value for the first configuration and a value for the second configuration ( S130).

Specifically, the AB multiplication unit 120 may calculate Equation 21 below based on receiving the values for the first configuration and the values for the second configuration, and finally, may complete the AB multiplication operation. .

In Equation 21, q _-1 is 0, and j is in the range of 0 or more and m-1 or less.

If the intermediate result of the AB ² gopsemsik derived (S140), AB ² multiplication unit 130 based on receiving a value of the intermediate result of the AB ² gopsemsik, may perform the calculation of AB ² multiplied (S150) . Specifically, based on the AB ² multiplication unit 130 obtaining a value for the intermediate result of the AB ² multiplication equation from the common unit 110, and additionally obtaining an input value for the element of the finite field GF(2 ^m ) , AB ² can perform multiplication. In addition, an example of obtaining an input value for an element of the finite field GF (2 ^m ) may be referred to FIG. 5.

3 conceptually shows a hardware configuration of a multi-processing device according to an embodiment of the present invention. Specifically, FIG. 3 conceptually shows a multi-operation device 100 implemented as a semi-systolic array implemented when m is 4 in the finite field GF (2 ^m ).

Referring to FIG. 3, the multi-operation device 100 may include a common unit 110, an AB multiplication unit 120, and an AB ² multiplication unit 130. The multi-computing device 100 may be implemented as a set of a plurality of cells. Specifically, the common unit 110 and the AB ² multiplier 130 may be implemented as a W cell, and the AB multiplier 120 may be implemented as a V cell. The configurations of cells of the same name may be the same, and specific examples related thereto may be referred to FIGS. 4 and 6.

Each cell constituting the multi-computing device 100 may calculate a corresponding cell based on a value obtained from the connected cell in the previous step, and provide the calculated value to the next cell. Based on this repeated operation, the common unit 110, the AB multiplication unit 120, and the AB ² multiplication unit 130 may calculate a result value to be derived from each configuration. In this regard, it may be determined whether to perform AB multiplication or AB ² multiplication in the input step.

Meanwhile, the form of the input of FIG. 3 represents values input to perform AB multiplication. Specifically, in the case of performing AB multiplication, as shown in FIG. 3, a value for the first element and a value for the second element are input only at the left end of the common part 110, and no value is at the left end of AB ² This may not be entered. In this case, the multi-operation device 100 may perform the AB operation through the operations of the common unit 110 and the AB multiplication unit 120.

In addition, values for performing AB multiplication are on the upper side of the common part 110. That is, a value 111 related to the first configuration and a value 112 related to the second configuration may be input. The value 111 related to the first configuration may be values related to Equation 1, and the value 112 related to the second configuration may be input values related to Equation 2. A value 111 related to the first configuration may be input and a value 112 related to the second configuration may be input after one clock.

When the value 111 related to the first configuration is calculated by the common unit 110, the first configuration 121 may be calculated and transmitted to the V cell. When the calculation for the value 112 related to the second configuration is performed by the common unit 110, the second configuration 122 may be calculated and transmitted to the V cell. The first configuration 121 and the second configuration 122 may be input at one clock interval, similar to the value 111 related to the first configuration and the value 112 related to the second configuration.

In the case of performing AB ² multiplication, a value for the first element and a value for the second element may be input not only to the left end of the common unit 110 but also to the left end of AB ² . A specific example related to this may refer to FIG. 5.

In other words, when performing AB multiplication and AB ² multiplication, a value input to the common unit 110 may be different.

Meanwhile, the shape of the semi-systolic array of FIG. 3 is exemplary, and the spirit of the present invention is not limited thereto.

4 is a logic circuit diagram of a hardware configuration used when AB multiplication is performed in a multi-operation device according to an embodiment of the present invention and an example of an input value for the hardware configuration. Specifically, FIG. 4 is a logic circuit diagram illustrating a configuration in which an AND gate and an XOR gate are disposed inside one cell in order to calculate an expression consisting of multiplication and addition on hardware.

Reference numeral 1a denotes a configuration of one cell included in the common unit 110 and values input for performing AB multiplication to perform AB multiplication. Reference numeral 1a denotes a W cell located in the i-th row of the j-th column of the common unit 110, and related to it, when AB multiplication is performed, a form of an input value input to the W cell is also indicated.

Specifically, as shown in reference number 1a, when AB multiplication is performed in the W cell of the i-th row of the j-th column, the upper part of the W cell becomes the same column j, but the row of the previous step, i. The values of the first configuration (q _j ^(i-1) ) and the second configuration (r _j ^(i-1) ) obtained in the first row, and the first element (a _j ^(i-1) ) are input I can. In addition, in relation to Equation 10, a coefficient (a _{j - 1} ^(i-1) ) obtained in the j-th column and the i-1 row may be input.

Here, the first configuration (q _j ^(i-1) ) and the second configuration (r _j ^(i-1) ) may be input by one clock difference. For example, a first configuration (q _j ^(i-1) ) may be input, and a second configuration (r _j ^(i-1) ) may be input after one clock. Accordingly, it may take 2 clocks for the first configuration (q _j ^(i-1) ) and the second configuration (r _j ^(i-1) ) to be input to the V cell. As described above, in the present invention, it is possible to derive the first configuration and the second configuration to have the same calculation structure, and based on this, only one configuration, that is, all through the common unit 110, by giving only the difference between the clocks. .

Meanwhile, for the left side of the W cell, values for the first element and the second element may be input. The first element may be determined and input by previous cells, and the second element may be predetermined and input. Specifically, in the case of column m-1, that is, when j is m-1, the coefficient (a _m-2 ^(i-1) ) is column j-1 and the coefficient of row i-1 (a _{j - 1} ^{(i- 1)} It may be the same as ⁾ , and in this case, the coefficient (a _j-1 ^(i-1) ) may be re-inputted to the W cell based on the re-input cyclic structure. In the case of the coefficient (a _m-1 ^(i-1) ), it may be received from the j-th column and the i-1th row and input to the W cell.

In the W cell, the first configuration and the second configuration may be derived by performing an operation on Equations 1 and 2 based on the input values. Specifically, in the W cell, the first configuration (q _j ⁽ⁱ⁾ ) and the second configuration (r _j ⁽ⁱ⁾ ) are derived by performing operations on Equations 1 and 2.

Reference numeral 1b denotes a V cell constituting the AB multiplication unit 120 that finally performs an AB multiplication operation based on the first configuration and the second configuration acquired in the W cell. In the V cell, a first configuration, a second configuration, and a modular value may be input and an operation for Equation 21 may be performed. Specifically, for the calculation in the W cell, the V cell derives the final AB multiplication result by combining the AB multiplication configuration divided into the first configuration and the second configuration.

FIG. 5 conceptually shows a hardware configuration used when performing AB ² multiplication in a multi-processing device according to an embodiment of the present invention. FIG. 5 shows some configurations of the multi-operation device shown in FIG. 3 for convenience of explanation. Specifically, multiplication of the common part 110 and AB ² implemented when m is 4 in the finite field GF (2 ^m ) Shows the part 130.

Referring to FIG. 5, unlike when AB multiplication is performed, it can be seen that values for the first element and the second element are input to the left side of the AB ² multiplier 130. This input may be a value that is input as AB ² multiplication is selected to be performed through the multi-computing device 100.

Also, values for performing AB ² multiplication may be input to the upper side of the common part 110. For example, values related to Equations 10 and 13 may be input.

Each cell constituting the AB ² multiplication unit 130 has a configuration corresponding to that of the cell constituting the common unit 110, and may be the same as the constitution of the W cell described with reference to FIG. 4. However, the difference from the calculation of AB multiplication is that values for performing AB ² multiplication are not input for the first and second configurations. This will be described in more detail with reference to FIG. 6.

6 illustrates a logic circuit diagram of a hardware configuration used when performing AB ² multiplication in a multi-operation device according to an embodiment of the present invention and an example of an input value for the hardware configuration. Specifically, FIG. 6 is a logic circuit diagram illustrating a configuration in which AND gates and XOR gates are disposed inside one cell in order to calculate an expression consisting of multiplication and addition on hardware.

Reference number 2a may denote a W cell located in the i-th row of the j-th column of the W cell. On the other hand, since the configuration of each cell constituting the common unit 110 and the AB ² multiplication unit 130 is corresponding, the description of the reference number 2a is for each of the common unit 110 and the AB ² multiplication unit 130 Note that it is applicable to all cells.

As described above, the logic circuit diagram of FIG. 6 corresponds to the logic circuit diagram illustrated by reference numeral 1a of FIG. 4 and its configuration, and only input values may be different. Specifically, the input value may be a configuration for performing AB ² multiplication shown through Equations 10 and 13, not values for the first configuration and the second configuration. In reference numeral 2a, this configuration is represented as s _j ^(i-1) .

The intermediate result for the multiplication of AB ² (s _j ^(i-1) ) is obtained from the W cell located in the j-th column i-1, and is in the W cell indicated by the reference number 2a, that is, the j-th column, i-th It is input to the located W cell. In cell W, an intermediate result (s _j ⁽ⁱ⁾ ) for AB ² multiplication is derived by performing an operation on this.

In the W cell, by repeatedly performing this operation, it is possible to finally obtain the result of AB ² multiplication.

The multi-operation apparatus and method according to an embodiment of the present invention can derive a configuration having the same calculation structure in each of AB ² multiplication and AB multiplication, and the derived configuration can be calculated using one configuration of the common unit 110 By doing so, it is not necessary to have all the configurations for each of AB ² multiplication and AB multiplication, thereby reducing spatial complexity. Specifically, the multi-operation device 100 selectively selects AB ² multiplication or AB multiplication according to an input value using a configuration having the same calculation structure in each of AB ² multiplication and AB multiplication. It can be done so that the hardware configuration can be minimized.

In the multi-operation apparatus and method according to an embodiment of the present invention, some components (AB multiplication unit 120) are added to the configuration configured to enable AB ² multiplication, and when the AB multiplication is to be used, the added configuration is By using it to perform AB multiplication, it is possible to improve hardware efficiency and maximize spatial efficiency.

Combinations of each block in the block diagram attached to the present specification and each step in the flowchart may be performed by computer program instructions. Since these computer program instructions can be mounted on the processor of a general purpose computer, special purpose computer, or other programmable data processing equipment, the instructions executed by the processor of the computer or other programmable data processing equipment are shown in each block or flowchart of the block diagram. Each step creates a means to perform the functions described. These computer program instructions can also be stored in computer-usable or computer-readable memory that can be directed to a computer or other programmable data processing equipment to implement a function in a particular way, so that the computer-usable or computer-readable memory It is also possible for the instructions stored in the block diagram to produce an article of manufacture containing instruction means for performing the functions described in each block of the block diagram or each step of the flowchart. Computer program instructions can also be mounted on a computer or other programmable data processing equipment, so that a series of operational steps are performed on a computer or other programmable data processing equipment to create a computer-executable process to create a computer or other programmable data processing equipment. It is also possible for the instructions to perform the processing equipment to provide steps for performing the functions described in each block of the block diagram and each step of the flowchart.

In addition, each block or each step may represent a module, segment, or part of code comprising one or more executable instructions for executing the specified logical function(s). It should also be noted that in some alternative embodiments, functions mentioned in blocks or steps may occur out of order. For example, two blocks or steps shown in succession may in fact be performed substantially simultaneously, or the blocks or steps may sometimes be performed in the reverse order depending on the corresponding function.

The above description is merely illustrative of the technical idea of the present invention, and those of ordinary skill in the art to which the present invention pertains will be able to make various modifications and variations without departing from the essential quality of the present invention. Accordingly, the embodiments disclosed in the present specification are not intended to limit the technical idea of the present invention, but to explain the technical idea, and the scope of the technical idea of the present invention is not limited by these embodiments. The scope of protection of the present invention should be interpreted by the following claims, and all technical ideas within the scope equivalent thereto should be interpreted as being included in the scope of the present invention.

100: multi computing device
110: common part
120: AB multiplier
130: AB ² multiplier

Claims (16)

In the multi-computing device enabling AB multiplication and AB ² multiplication on a finite field GF (2 ^m ),
A first configuration and a second configuration consisting of an AB multiplication equation and corresponding calculation structures, and
AB ² The intermediate result of multiplication
The common part to derive,
An AB multiplication unit that performs the AB multiplication operation based on receiving a value for the first configuration and a value for the second configuration derived from the common unit,
And AB ² multiplication unit based on receiving the value of the intermediate result of the AB ² gopsemsik derived from the common terminal, performing an operation of the AB ² multiplication,
And a cyclic expression unit expressing at least a part of the AB multiplication expression as a first cyclic expression, and expressing at least a part of the AB ² multiplication expression as a second cyclic expression,
The first circulation formula includes a 1-1 circulation formula for the first configuration and a 1-2 circulation formula for the second configuration,
The calculation structures of the 1-1 circulation formula, the 1-2 circulation formula, and the second circulation formula are the same
Multi computing device.
The method of claim 1,
The finite field GF(2 ^m ) has a polynomial basis (PB),
The finite field GF (2 ^m ) element includes a first element and a second element,
The first element is by using the PB

(A is the first element expressed using the PB, a _i is the coefficient of x ⁱ for i, which is a specific value included in the range of 0 to m-1 for the first element, i is the finite field It is expressed as an integer within the range of 0 or more and m-1 or less with respect to the integer m defining GF(2 ^m )),
The second element is by using the PB

(B is the second element expressed using the PB, b _i is the coefficient of x ⁱ for i, which is a specific value in the range from 0 to m-1 for the second element),
The AB ² multiplication equation is,

(S is AB ² multiplication equation, F is a short polynomial for the finite field GF (2 ^m ))
Multi computing device.
delete The method of claim 2,
The common part,
Based on the first recursive equation and the second recursive equation, a predetermined intermediate result of the AB ² multiplication equation and each of the first and second configurations can be derived.
Multi computing device.
The method of claim 4,
The common part,
When acquiring input values for the elements of the finite field GF (2 ^m ) on which the AB multiplication is performed, the first configuration and the second configuration, each of the first configuration and the second configuration are derived,
In the case of obtaining an input value for the element of the finite field GF (2 ^m ) in which the AB ² multiplication is performed, the intermediate result of the AB ² multiplication equation is derived.
Multi computing device.
The method of claim 4,
The common part is composed of a plurality of cells,
The intermediate result of the AB ² multiplication equation is,

(S ⁽ⁱ⁾ is the intermediate result of the AB ² multiplication equation,

Is obtained using a coefficient value for the multiplication equation of AB ² obtained in the i-th row of the j-th column of the plurality of cells),
Each of the first configuration and the second configuration includes a plurality of elements,
The element of the first component,

(

Is the element of the first component obtained in the j-th column and i-th row of the common part, b _2i-1 is the coefficient of x ^{2i -1} in the second element,

Is an element of the first component obtained in the j-th column and i-1th row of the common part,

Is obtained using a coefficient value obtained in the j-th column and i-1th row of the common part in relation to a known equation,
The element of the second component,

(

Is the element of the second constitution obtained in the j-th column and i-th row of the common part, b _2i-2 is the coefficient of x ^{2i -2} in the second element,

Is obtained using the element of the second component obtained in the j-th column of the common part and the i-1th row)
Multi computing device.
The method of claim 1,
The AB multiplication unit,
Based on receiving values for the first configuration and the second configuration, an operation is performed by substituting the first configuration and the second configuration for the AB multiplication equation represented by the first configuration and the second configuration. To complete the AB multiplication based on
The information on the AB multiplication equation represented by the first configuration and the second configuration is information previously stored in the AB multiplication unit.
Multi computing device.
The method of claim 1,
The AB ² multiplier,
Based upon obtaining an input value of the element of the finite field GF (2 ^m) is the value of the AB ² multiplication of the intermediate result of the received AB ² gopsemsik performed, performing the operation of the AB ² multiplications
Multi computing device.
In the multi-operation method that enables AB multiplication and AB ² multiplication on a finite field GF (2 ^m ), performed in an information processing apparatus having a processor,
Form the AB multiplication equation and derive the first and second configurations consisting of corresponding calculation structures, or
AB ² The intermediate result of multiplication
The steps to derive,
When the first configuration and the second configuration are derived, performing an operation of the AB multiplication based on receiving the derived value for the first configuration and the value for the second configuration,
Comprising the steps of: when the intermediate result of the AB ² gopsemsik derived, based on receiving the value of the intermediate result in the derived AB ² gopsemsik that, performs the operation of the AB ² multiplication,
Expressing at least a part of the AB multiplication equation as a first circular equation, and expressing at least a portion of the AB ² multiplication equation as a second circular equation,
The first circulation formula includes a 1-1 circulation formula for the first configuration and a 1-2 circulation formula for the second configuration,
The calculation structures of the 1-1 circulation formula, the 1-2 circulation formula, and the second circulation formula are the same
Multi operation method.
The method of claim 9,
The finite field GF(2 ^m ) has a polynomial basis (PB),
The finite field GF (2 ^m ) element includes a first element and a second element,
The first element is by using the PB

(A is the first element expressed using the PB, a _i is the coefficient of x ⁱ for i, which is a specific value included in the range of 0 to m-1 for the first element, i is the finite field It is expressed as an integer within the range of 0 or more and m-1 or less with respect to the integer m defining GF(2 ^m )),
The second element is by using the PB

(B is the second element expressed using the PB, b _i is the coefficient of x ⁱ for i, which is a specific value in the range from 0 to m-1 for the second element),
The AB ² multiplication equation is,

(S is AB ² multiplication equation, F is a short polynomial for the finite field GF (2 ^m ))
Multi operation method.
delete The method of claim 10,
The deriving step,
The first circulation expression to the first on the basis of a second circulation, with the common part that is set based the intermediate result and each of the first configuration and the second configuration of the AB ² gopsemsik to be derived the intermediate result of the AB ² gopsemsik Deriving or deriving the first configuration and the second configuration
Multi operation method.
The method of claim 12,
The deriving step,
When acquiring input values for the elements of the finite field GF (2 ^m ) on which the AB multiplication is performed, the first configuration and the second configuration, deriving each of the first configuration and the second configuration, and ,
In the case of obtaining an input value for the element of the finite field GF (2 ^m ) on which the AB ² multiplication is performed, deriving an intermediate result of the AB ² multiplication equation.
Multi operation method.
The method of claim 12,
The step of deriving each of the first configuration and the second configuration, and the step of deriving the intermediate result are performed by a common unit composed of a plurality of cells,
The intermediate result of the AB ² multiplication equation is,

(S ⁽ⁱ⁾ is the intermediate result of the AB ² multiplication equation,

Is obtained using the coefficient value for the multiplication equation of AB ² obtained in the i-th row of the j-th column of the common part),
Each of the first configuration and the second configuration includes a plurality of elements,
The element of the first component,

(

Is the element of the first component obtained in the j-th column and i-th row of the common part, b _2i-1 is the coefficient of x ^{2i -1} in the second element,

Is an element of the first component obtained in the j-th column and i-1th row of the common part,

Is obtained using a coefficient value obtained in the j-th column and i-1th row of the common part in relation to a known equation,
The element of the second component,

(

Is the element of the second constitution obtained in the j-th column and i-th row of the common part, b _2i-2 is the coefficient of x ^{2i -2} in the second element,

Is obtained using the element of the second component obtained in the j-th column and i-1th row of the cell of the common part)
Multi operation method.
The method of claim 9,
The step of performing the AB multiplication operation,
Based on receiving values for the first configuration and the second configuration, an operation is performed by substituting the first configuration and the second configuration for the AB multiplication equation represented by the first configuration and the second configuration. And completing the AB multiplication based on that,
The information on the AB multiplication equation represented by the first configuration and the second configuration is information stored in advance before performing the step of performing the AB multiplication operation.
Multi operation method.
The method of claim 9,
The step of performing the AB ² multiplication operation,
Based upon obtaining an input value of the element of the finite field GF (2 ^m) is the value of the AB ² multiplication of the intermediate result of the received AB ² gopsemsik performed, performing the operation of the AB ² multiplications Including steps
Multi operation method.

Images