RUB » RUBIN » 

You are here

Cryptography for microdevices

Cryptography for microdevices

Data Protection against the threats of tomorrow

by Julia Weiler  

December 17, 2015

 

Implementing secure encryption techniques that would protect from quantum computer attacks into microdevices poses a major challenge – due to restricted space and considerable cost pressure. RUB engineers develop solutions for this problem.

In order to test cryptographic techniques for microdevices, the researchers develop the central components of the devices and implement them on evaluation platforms.

Cryptography is subdivided in the two categories symmetric and asymmetric techniques; the latter are considerably more complex because of their underlying mathematical structures. In symmetric techniques, sender and receiver use the same key to encrypt a message and to subsequently decrypt it. In asymmetric techniques, on the other hand, sender and receiver use different keys (fig. 1) that are linked via a mathematic relationship. Asymmetric encoding techniques are required for many applications with advanced security requirements, for example those for digital signatures.

Fig. 1© Zalewski, RUB Corporate Advertising

Asymmetric cryptography uses code pairs made up of two components. One component of the code is public, the other is secret. Both codes are closely linked in mathematical terms; but due to a difficult mathematical problem, it is impossible to reconstruct the private code by using the public component. A message that Alice sends to Bob can be encrypted with Bob’s public code. In order to decode it, Bob’s private code is required, which, however, is known only to him.

The asymmetric techniques that are in use today would no longer be secure if quantum computers existed (see “Cryptography in the era of quantum computers”). Under the umbrella of the EU project Post-Quantum Cryptography, researchers are therefore searching for new cryptographic solutions and implementations. Four categories of mathematic techniques are suited for the purpose: code-based cryptography, lattice-based cryptography as well as cryptography on the basis of systems of multivariate-quadratic equations or cryptographic hash functions.

To this end, the team headed by Prof Dr-Ing. Tim Güneysu, in close collaboration with the Chair for Embedded Security, has initially identified and analysed promising techniques for implementing them into microdevices, such as hardware chips and Smartcards. “As yet, we have mostly excluded hash-based cryptography from our studies, because implementation techniques have been thoroughly analysed to date,” says Güneysu. Cryptography via multivariate-quadratic equation systems are not a main aspect of the research, either. The reason is: “The security status of some of the proposed systems has not yet been fully understood. Therefore, we consider it difficult to raise acceptance for several of these systems in practical applications,” explains Güneysu. Some of the multivariate-quadratic techniques had been introduced as quickly as they were subsequently broken. Accordingly, it is a risk to invest a lot of effort into optimising methods of this category for microdevices.

Fig. 2© Roberto Schirdewahn

Prof Dr-Ing. Tim Güneysu is expert for cryptographic techniques for electronic microdevices.

The IT security expert considers lattice-based and code-based cryptography promising. Not only do those techniques offer the potential to protect from quantum computer attacks, the team has also demonstrated that they can be efficiently implemented in microdevices. The challenge: to an extent, the new techniques demand for complicated algorithmic computations and large keys, which increase system costs significantly – a major problem if the technology is supposed to be deployed in small and cost-efficient computational systems.

In order to tackle this problem, the researchers deploy alternative representations of those cryptographic techniques, which introduce, for example, structures in the codes aiming at reducing the overall key size. They also optimise algorithmic computations by tailoring them to the target platform. Depending on which technique they used, the researchers were able to consolidate complex steps with other computations or even omitted some of them without reducing the security margin offered by the cryptographic technique. This is how the team from Bochum has demonstrated that a first step is taken so that today’s microdevices with constrained processor technology can securely communicate, anticipating the upcoming threats in the era of quantum computers.

Contact faculty

Prof Dr-Ing. Tim Güneysu
Horst Görtz Institute for IT-Security
Ruhr-Universität Bochum
44780 Bochum, Germany
Email: tim.gueneysu@rub.de

Download of high resolution images

Please select the images you wish to download and accept the terms and conditions.
The images will be available as zip file after download.

Terms and conditions
By downloading images from this website, you obtain the right to use the images for media coverage in the context of RUBIN – Science Magazine of the RUB only. Usage of the images outside of this context is not permitted. Images may be used by the press at no charge, provided that the copyright holder is properly cited.



I accept the terms and conditions.