Paper 2021/541

Hardware Deployment of Hybrid PQC

Reza Azarderakhsh, Rami El Khatib, Brian Koziel, and Brandon Langenberg

Abstract

In this work, we present a small architecture for quantum-safe hybrid key exchange targeting ECDH and SIKE. This is the first known hardware implementation of ECDH/SIKE-based hybrid key exchange in the literature. We propose new ECDH and EdDSA parameter sets defined over the SIKE primes. As a proof-of-concept, we evaluate SIKEX434, a hybrid PQC scheme composed of SIKEp434 and our proposed ECDH scheme X434 over a new, low-footprint architecture. Both schemes utilize the same 434-bit prime to save area. With only 1663 slices on a small Artix-7 device, our SIKE architecture can compute an entire hybrid key exchange in 320 ms. This is the smallest SIKE architecture in the literature. The hybrid SIKEX434 adds approximately 16% communication overhead and 10% latency overhead over SIKEp434. The additional overhead to support multiple primes indicates the need for new standardized ECC parameters for area-efficient designs in the future.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Preprint. MINOR revision.
Keywords
FPGAPost-Quantum CryptographySIKE
Contact author(s)
razarder @ pqsecurity com
History
2021-05-06: revised
2021-04-27: received
See all versions
Short URL
https://ia.cr/2021/541
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2021/541,
      author = {Reza Azarderakhsh and Rami El Khatib and Brian Koziel and Brandon Langenberg},
      title = {Hardware Deployment of Hybrid {PQC}},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/541},
      year = {2021},
      url = {https://eprint.iacr.org/2021/541}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.