Abstract | ||
---|---|---|
In this paper we propose a reconfigurable lightweight Internet Protocol Security (IPSec) hardware core. Our architecture supports the main IPSec protocols; namely Authentication Header (AH), Encapsulating Security Payload (ESP), and Internet Key Exchange (IKE). In this work, the cryptographic algorithms and their modes of operation, which are at the heart of the IPSec protocols, are implemented in hardware. Instead of re-implementing common IPSec configurations, which are deemed “too heavy” for pervasive devices, we evaluate efficient implementations of standardized and/or well-known lightweight and hardware-friendly algorithms. In particular, we examine different versions of Present, Grøstl, Photon, and a very compact ECC core. As a consequence, we present IPSecco, a core with adequate security and only moderate resource requirements, making it suitable for lightweight devices. We selected the Xilinx Spartan family of Field Programmable Gate Arrays (FPGA) as target platform due its low-power footprint and reduced costs compared to other FPGAs. Our results show that it is possible to realize a high performance IPSec core even on members of the Spartan-3 family. |
Year | DOI | Venue |
---|---|---|
2012 | 10.1109/ReConFig.2012.6416757 | Reconfigurable Computing and FPGAs |
Keywords | Field | DocType |
IP networks,Internet,computer network performance evaluation,computer network security,cryptographic protocols,field programmable analogue arrays,reconfigurable architectures,AH,ECC core,ESP,FPGA,Grøstl framework,IKE,IPSec protocols,IPSecco framework,Internet key exchange,Photon framework,Present framework,Xilinx Spartan-3 family,authentication header,cost reduction,cryptographic algorithm operation modes,encapsulating security payload,field programmable gate arrays,high-performance IPSec hardware core configurations,pervasive devices,reconfigurable lightweight Internet protocol security hardware core,FPGA,IPSec,Lightweight,Reconfigurability | Internet Key Exchange,IPsec,Cryptographic protocol,Computer science,Cryptography,Network security,Field-programmable gate array,The Internet,Embedded system,Payload | Conference |
ISSN | ISBN | Citations |
2325-6532 | 978-1-4673-2919-4 | 4 |
PageRank | References | Authors |
0.45 | 0 | 6 |
Name | Order | Citations | PageRank |
---|---|---|---|
Benedikt Driessen | 1 | 92 | 7.32 |
Tim Güneysu | 2 | 924 | 77.37 |
Elif Bilge Kavun | 3 | 114 | 9.89 |
Oliver Mischke | 4 | 204 | 11.53 |
Christof Paar | 5 | 3794 | 442.62 |
Thomas Pöppelmann | 6 | 357 | 17.96 |