Paper 2024/1633

Efficient Boolean-to-Arithmetic Mask Conversion in Hardware

Aein Rezaei Shahmirzadi, PQShield
Michael Hutter, PQShield
Abstract

Masking schemes are key in thwarting side-channel attacks due to their robust theoretical foundation. Transitioning from Boolean to arithmetic (B2A) masking is a necessary step in various cryptography schemes, including hash functions, ARX-based ciphers, and lattice-based cryptography. While there exists a significant body of research focusing on B2A software implementations, studies pertaining to hardware implementations are quite limited, with the majority dedicated solely to creating efficient Boolean masked adders. In this paper, we present first- and second-order secure hardware implementations to perform B2A mask conversion efficiently without using masked adder structures. We first introduce a first-order secure low-latency gadget that executes a B2A2k in a single cycle. Furthermore, we propose a second-order secure B2A2k gadget that has a latency of only 4 clock cycles. Both gadgets are independent of the input word size k. We then show how these new primitives lead to improved B2Aq hardware implementations that perform a B2A mask conversion of integers modulo an arbitrary number. Our results show that our new gadgets outperform comparable solutions by more than a magnitude in terms of resource requirements and are at least 3 times faster in terms of latency and throughput. All gadgets have been formally verified and proven secure in the glitch-robust PINI security model. We additionally confirm the security of our gadgets on an FPGA platform using practical TVLA tests.

Note: Published by the IACR in CIC 2024 Volume 1 Issue 3: https://cic.iacr.org/p/1/3/46

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published by the IACR in CIC 2024
DOI
10.62056/a3c0l2isfg
Keywords
Mask ConversionBoolean-to-ArithmeticB2AArithmetic-to-BooleanA2BSide-Channel AnalysisDPA
Contact author(s)
aein shahmirzadi @ pqshield com
michael hutter @ pqshield com
History
2024-10-14: approved
2024-10-11: received
See all versions
Short URL
https://ia.cr/2024/1633
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2024/1633,
      author = {Aein Rezaei Shahmirzadi and Michael Hutter},
      title = {Efficient Boolean-to-Arithmetic Mask Conversion in Hardware},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/1633},
      year = {2024},
      doi = {10.62056/a3c0l2isfg},
      url = {https://eprint.iacr.org/2024/1633}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.