Paper 2022/1093
HPKA: A High-Performance CRYSTALS-Kyber Accelerator Exploring Efficient Pipelining
Abstract
CRYSTALS-Kyber (Kyber) was recently chosen as the first quantum resistant Key Encapsulation Mechanism (KEM) scheme for standardisation, after three rounds of the National Institute of Standards and Technology (NIST) initiated PQC competition which begin in 2016 and search of the best quantum resistant KEMs and digital signatures. Kyber is based on the Module-Learning with Errors (M-LWE) class of Lattice-based Cryptography, that is known to manifest efficiently on FPGAs. This work explores several architectural optimizations and proposes a high-performance and area-time (AT) product efficient hardware accelerator for Kyber. The proposed architectural optimizations include inter-module and intra-module pipelining, that are designed and balanced via FIFO based buffering to ensure maximum parallelisation. The implementation results show that compared to state-of-the-art designs, the proposed architecture delivers 25-51% speedups for Kyber's three different security levels on Artix-7 and Zynq UltraScale+ devices, and a 50-75\% reduction in DSPs at comparable security level. Consequently, the proposed design achieve higher AT product efficiencies of 19-33%.
Metadata
- Available format(s)
- Category
- Implementation
- Publication info
- Published elsewhere. IEEE Transactions on Computers
- DOI
- 10.1109/TC.2023.3296899
- Keywords
- Post-quantum Cryptography (PQC)Lattice-based Cryptography (LBC)CRYSTALS-KYBERHardware accelerator
- Contact author(s)
-
zni03 @ qub ac uk
a khalid @ qub ac uk
dur-eshahwar kundi @ pqshield com
m oneill @ ecit qub ac uk
liuweiqiang @ nuaa edu cn - History
- 2023-07-25: last of 2 revisions
- 2022-08-23: received
- See all versions
- Short URL
- https://ia.cr/2022/1093
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2022/1093, author = {Ziying Ni and Ayesha Khalid and Dur-e-Shahwar Kundi and Máire O’Neill and Weiqiang Liu}, title = {{HPKA}: A High-Performance {CRYSTALS}-Kyber Accelerator Exploring Efficient Pipelining}, howpublished = {Cryptology {ePrint} Archive, Paper 2022/1093}, year = {2022}, doi = {10.1109/TC.2023.3296899}, url = {https://eprint.iacr.org/2022/1093} }