• DocumentCode
    680108
  • Title

    Byte slicing Grøstl Optimized Intel AES-NI and 8-bit implementations of the SHA-3 finalist Grøstl

  • Author

    Aoki, Kazuo ; Roland, Gunther ; Sasaki, Yu. ; Schlaffer, Martin

  • Author_Institution
    NTT Corp., Tokyo, Japan
  • fYear
    2011
  • fDate
    18-21 July 2011
  • Firstpage
    124
  • Lastpage
    133
  • Abstract
    Grøstl is an AES-based hash function and one of the 5 finalists of the SHA-3 competition. In this work we present high-speed implementations of Grøstl for small 8-bit CPUs and large 64-bit CPUs with the recently introduced AES instructions set. Since Grøstl does not use the same MDS mixing layer as the AES, a direct application of the AES instructions seems difficult. In contrast to previous findings, our Grøstl implementations using the AES instructions are currently by far the fastest known. To achieve optimal performance we parallelize each round of Grøstl by taking advantage of the whole bit width of the used processor. This results in implementations running at 12.2 cylces/byte for Grøstl-256 and 18.6 cylces/byte for Grøstl-512.
  • Keywords
    file organisation; program slicing; 64-bit CPUs; 8-bit AVR; SHA-3 Finalist Grf2Jstl; byte slicing GROSTL; hash function; optimized Intel AES-NI; Cryptography; Registers; 8-bit AVR; Byte slicing; Grøstl; Hash function; Intel AES new instructions; SHA-3 competition; Software implementation;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Security and Cryptography (SECRYPT), 2011 Proceedings of the International Conference on
  • Conference_Location
    Seville
  • Type

    conf

  • Filename
    6732379
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=680108