High-speed high-security signatures

D.J. Bernstein; N. Duif; T. Lange; P. Schwabe; B.Y. Yang

doi:10.1007/978-3-642-23951-9_9

High-speed high-security signatures

D.J. Bernstein, N. Duif, T. Lange, P. Schwabe, B.Y. Yang

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

116 Citations (Scopus)

Abstract

This paper shows that a $390 mass-market quad-core 2.4GHz Intel Westmere (Xeon E5620) CPU can create 108000 signatures per second and verify 71000 signatures per second on an elliptic curve at a 2128 security level. Public keys are 32 bytes, and signatures are 64 bytes. These performance figures include strong defenses against software side-channel attacks: there is no data flow from secret keys to array indices, and there is no data flow from secret keys to branch conditions.

Original language	English
Title of host publication	Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings)
Editors	B. Preneel, T. Takagi
Place of Publication	Berlin
Publisher	Springer
Pages	124-142
ISBN (Print)	978-3-642-23950-2
DOIs	https://doi.org/10.1007/978-3-642-23951-9_9
Publication status	Published - 2011

Publication series

Name	Lecture Notes in Computer Science
Volume	6917
ISSN (Print)	0302-9743

Access to Document

10.1007/978-3-642-23951-9_9

http://eprint.iacr.org/2011/368

Cite this

Bernstein, D. J., Duif, N., Lange, T., Schwabe, P., & Yang, B. Y. (2011). High-speed high-security signatures. In B. Preneel, & T. Takagi (Eds.), Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings) (pp. 124-142). (Lecture Notes in Computer Science; Vol. 6917). Springer. https://doi.org/10.1007/978-3-642-23951-9_9

@inproceedings{40add22169634f89b0244865a4eec64b,

title = "High-speed high-security signatures",

abstract = "This paper shows that a $390 mass-market quad-core 2.4GHz Intel Westmere (Xeon E5620) CPU can create 108000 signatures per second and verify 71000 signatures per second on an elliptic curve at a 2128 security level. Public keys are 32 bytes, and signatures are 64 bytes. These performance figures include strong defenses against software side-channel attacks: there is no data flow from secret keys to array indices, and there is no data flow from secret keys to branch conditions.",

author = "D.J. Bernstein and N. Duif and T. Lange and P. Schwabe and B.Y. Yang",

year = "2011",

doi = "10.1007/978-3-642-23951-9_9",

language = "English",

isbn = "978-3-642-23950-2",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "124--142",

editor = "B. Preneel and T. Takagi",

booktitle = "Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings)",

address = "Germany",

}

Bernstein, DJ, Duif, N, Lange, T, Schwabe, P & Yang, BY 2011, High-speed high-security signatures. in B Preneel & T Takagi (eds), Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings). Lecture Notes in Computer Science, vol. 6917, Springer, Berlin, pp. 124-142. https://doi.org/10.1007/978-3-642-23951-9_9

High-speed high-security signatures. / Bernstein, D.J.; Duif, N.; Lange, T. et al.
Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings). ed. / B. Preneel; T. Takagi. Berlin: Springer, 2011. p. 124-142 (Lecture Notes in Computer Science; Vol. 6917).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › Academic › peer-review

TY - GEN

T1 - High-speed high-security signatures

AU - Bernstein, D.J.

AU - Duif, N.

AU - Lange, T.

AU - Schwabe, P.

AU - Yang, B.Y.

PY - 2011

Y1 - 2011

N2 - This paper shows that a $390 mass-market quad-core 2.4GHz Intel Westmere (Xeon E5620) CPU can create 108000 signatures per second and verify 71000 signatures per second on an elliptic curve at a 2128 security level. Public keys are 32 bytes, and signatures are 64 bytes. These performance figures include strong defenses against software side-channel attacks: there is no data flow from secret keys to array indices, and there is no data flow from secret keys to branch conditions.

AB - This paper shows that a $390 mass-market quad-core 2.4GHz Intel Westmere (Xeon E5620) CPU can create 108000 signatures per second and verify 71000 signatures per second on an elliptic curve at a 2128 security level. Public keys are 32 bytes, and signatures are 64 bytes. These performance figures include strong defenses against software side-channel attacks: there is no data flow from secret keys to array indices, and there is no data flow from secret keys to branch conditions.

U2 - 10.1007/978-3-642-23951-9_9

DO - 10.1007/978-3-642-23951-9_9

M3 - Conference contribution

SN - 978-3-642-23950-2

T3 - Lecture Notes in Computer Science

SP - 124

EP - 142

BT - Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings)

A2 - Preneel, B.

A2 - Takagi, T.

PB - Springer

CY - Berlin

ER -

Bernstein DJ, Duif N, Lange T, Schwabe P, Yang BY. High-speed high-security signatures. In Preneel B, Takagi T, editors, Cryptographic Hardware and Embedded Systems - CHES 2011 (13th International Workshop, Nara, Japan, September 28–October 1, 2011. Proceedings). Berlin: Springer. 2011. p. 124-142. (Lecture Notes in Computer Science). doi: 10.1007/978-3-642-23951-9_9

High-speed high-security signatures

Abstract

Publication series

Access to Document

Fingerprint

Cite this