Implementation of EAX mode of operation for FPGA bitstream encryption and authentication

Author

Parelkar, Milind M. ; Gaj, Kris

Author_Institution

George Mason Univ., Fairfax, VA

fYear

2005

fDate

11-14 Dec. 2005

Firstpage

335

Lastpage

336

Abstract

In order to provide a capability for secure remote reconfiguration of FPGAs, FPGA bitstream needs to be encrypted and authenticated during its transmission through any public network. Bitstream encryption is already implemented in a few modern FPGA families, such as Xilinx Virtex II. An important feature lacking in the current generation of FPGAs is the ability to cryptographically verify the authenticity of the bitstream. In this paper, we propose the use of the EAX mode of operation of advanced encryption standard (AES) for a joint encryption and authentication of the FPGA bitstream, using a single cipher engine. We demonstrate and quantify the advantages of this method compared to a generic scheme relying on different algorithms and different cryptographic engines for performing both operations

Keywords

cryptography; field programmable gate arrays; message authentication; standards; EAX operation mode; FPGA bitstream authentication; FPGA bitstream encryption; FPGA secure remote reconfiguration; Xilinx Virtex II; advanced encryption standard; public network transmission; single cipher engine; Authentication; Clocks; Cryptography; Engines; Field programmable gate arrays; Hardware; Random access memory; Security; Throughput; Timing;

fLanguage

English

Publisher

ieee

Conference_Titel

Field-Programmable Technology, 2005. Proceedings. 2005 IEEE International Conference on

Conference_Location

Singapore

Print_ISBN

0-7803-9407-0

Type

conf

DOI

10.1109/FPT.2005.1568588

Filename

1568588