+1 613 254 5456
adjust font size Increase Font Size Reset Font Size Decrease Font Size

The 3rd Generation Partnership Project (3GPP) which has the mandate of making globally applicable third generation (3G) and fourth generation (4G) mobile phone system specifications, has recently revised the specifications of two security algorithms: 128-EEA3 and 128-EIA3. The updated version is v1.5.Mar10 lte-a release111-300x133

 

The 128-EEA3 and 128-EIA3 confidentiality and integrity algorithms are targeted at the LTE‐Advanced (LTE-A) wireless networks acceptable for Asian markets. They are based on the key stream generator ZUC and are expected to be ratified late this year as part of LTE-A Release 11.

 

Elliptic’s family of hardware and software 3GPP/LTE-A solutions have been updated to support the latest version (v1.5) of the ZUC based modes.

Firesheep is a recently released free program that makes it easy to snoop on what users of unsecured Wi-Fi networks are doing … and even more … assume their identity. 

 

Firesheep is able to steal the user’s web browser cookie – oftenly unencrypted, which contains computer and other sensitive information like account passwords (Facebook, Twitter, Flickr, etc). With this information at hand, malicious users can easily go on the site and gain full account access. All this is possible because of the lack of end-to-end encryption.

 

Many web sites don’t encrypt all communication because of cost and speed impact reasons, but the good news is that more and more popular sites are beginning to offer encryption support via the TLS/SSL cryptographic protocol (web address starts with “https”). This way, users are protected from prying eyes. The bad news is that many of the sites that support encryption don’t have it set as a default feature, and therefore it is rarely used. In an effort to improve Internet security for users, the Electronic Frontier Foundation in collaboration with Tor Project have released “Https Everywhere”, a Firefox extension to enable “https” for the sites that offer support for it, but don’t have it turned-on.

 

More on this story >>>>

Feb25 NIST logo NIST has recently proposed a new FIPS 180-4 draft to introduce two Secure Hash Standard (SHS) modes based on the SHA-512 primitive. The proposed modes are meant to offer more efficient alternatives to SHA-224 and SHA-256 hashing algorithms on 64-bit based platforms. The draft standard FIPS 180-4 is intended to supersede the current standard FIPS 180-3.

 

The wide adoption of these modes may however encounter a few roadblocks. The new modes produce 224- and 256-bit message digests using the SHA-512 to hash the message and truncate the result. In theory, the new modes are meant to compete against the SHA-224 and SHA-256 modes in that they use a 64-bit data path and cryptographically more importantly, they use more rounds of the internal (Feistel network) transform.

 

But, SHA-256 is over twice as fast as SHA-512 on ARM and PPC 32-bit processors. Meaning that for all BUT the highest end processors, SHA-512_224 and SHA-512_256 hashes are going to be much slower.  Additionally, hardware designs require re-spins to support the two new modes. Are the re-spin costs worth undertaking?

 

Another impediment may be the lack of ASN.1 OIDs for standards such as PKCS #1, X9.62, and X.509.

 

And how about SHA-3, the more cryptographically sound standard supposed to be the next generation for the currently adopted SHA algorithms? SHA-3 is going through the last round of evaluation with 5 finalists left remaining in the competition and a decision on the final implementation may not be that far away.

 

NIST Draft Publication Link

In the previous blog “The Many Flavors of AES – Part 2″, we “navigated” through the world of AES “modes” like ECB, CBC, OFB, CFB, CTR, CCM, GCM and XTS.

 

We will explore today a few of the selection points that need to be taken into account when looking for AES based solutions.

 

Selection point one: what security applications in what overarching application are you going to use AES for? Is it IPsec, SSL/TLS, Wi-Fi, MACsec, WiMAX, LTE-Advanced, Storage, etc? Knowing which application space for AES will usually tell you a lot about the modes, key size requirements, and throughput requirements. This helps narrow things down a lot for the next steps.

 

Selection point two: software, hardware, or both? This usually touches on throughput and latency requirements, and the form of the data to be processed. Software running on an embedded processor is very versatile, but not nearly as efficient (per clock cycle) as dedicated hardware. In a processor-centric system where offload hardware is on a shared bus, getting data to and from the dedicated hardware can sometimes be a noticeable fraction of total processing time. If the throughput requirement is quite modest – say 10’s of Mbps, then the AES job may be best handled on the processor with tuned cryptographic software. If the throughput requirement is relatively high, say 100’s of Mbps, then the AES job is likely best handled by dedicated hardware (in fact the processor probably couldn’t do it even if it did nothing else), with data either being moved to/from that hardware by the processor or moved by the hardware (with e.g. an embedded DMA system) with the host processor freed to do other things in parallel. The form of the data to be processed matters as well. Cryptographic operations often have overheads associated with them which are amortized out over larger chunks…

 

Selection point three: what level of security is being sought? Key sizes 128/192/256 are available, but the longer the key the greater the level of security in a well-designed system. There are trade-offs to be considered. Bigger keys either mean lower throughput or, in hardware in particular, more gates. You might add support in hardware for keys you won’t use now to allow for future requirements (brute force attackers keep getting faster computers), but that will cost something.

 

There are other factors that come into play when selecting an AES solution, like power and cost.

 

In conclusion, AES is a very popular, versatile block cipher, with a multitude of modes and a long list of applications and protocols which continues to grow. If you are looking for and “AES encryption” solution, realize that it’s going take more than a few minutes to find what you need. The selection process needs to be done hand-in-hand with more information about the application space, protocols, modes, software versus hardware, power, and the list can go on …

 

At Elliptic we offer certified software and hardware AES solutions for a broad range of applications. See www.elliptictech.com for more information, or contact info@elliptictech.com.

Elliptic is expanding its popular line of security protocol accelerators with the introduction of SPAcc-LTE, a highly efficient security processing engine for the rapidly developing 4th Generation mobile wireless Jan31 SPAcc-LTE1-300x224markets.

 

The International Telecommunication Unit (ITU) has recently selected LTE-Advanced and IEEE 802.16m as the technologies to deliver high bandwidth mobile broadband data for smartphones, tablet computers and other mobile wireless devices. The wireless broadband bandwidth is increasing at an incredible rate, jumping to 100 Mbps for mobile devices and an incredible 1 Gbps for fixed wireless devices. These high data rates must be achieved against a backdrop of increasing demands for enhanced privacy, greater energy efficiency and longer battery life.

 

The CLP-620 SPAcc-LTE is a high-performance cost- and power-efficient security engine that supports all confidentiality and integrity algorithms required for 3GPP/LTE/LTE-Advanced protocols. These algorithms are based on ciphers like AES, SNOW 3G, ZUC, and legacy ciphers such as Kasumi to support older networks. The security engine is targeted at high-performance base stations, handsets and femtocell applications.

 

“Elliptic strives to remain at the forefront with leading edge security IP solutions backed by acknowledged security experts” said Elliptic CTO Mike Borza. “CLP-620 is the first security IP on the market that supports all algorithms required for 4G wireless markets around the world, including the ZUC based algorithms which have been recently introduced to target wireless networks in key Asian markets”.

Elliptic Technologies is joining forces with Freescale Semiconductor – a leader in the design and manufacturing of embedded semiconductors, to showcase its Ellipsys Trust Framework ™ in tandem with Freescale’s QorIQ processor products to create trusted execution environments.

 

At the conference, Elliptic will demonstrate how Ellipsys Trust Framework (ETF) can be used to build and install trusted firmware on QorIQ based systems. Trusted execution environments enable a vast array of protections of systems and users, including tamper proof firmware installations and system provisioning for identification, secure manufacturing and secure field updates.

Featured Products

media ETS-020: tVault HDCP 2.2
A proven HDCP-based content protection solution that provides robust security inside Trusted Execution Environments (TEEs) and enforces the protection of sensitive information to ensure that it is stored, processed and accessed only by authorized applications.The solution integrates seamlessly within frameworks such as ARM TrustZone™, where the critical security components are embedded in a trusted and secure OS environment. The non-critical components are executed by the rich OS, such as Android.
tower CLP-630: Multi-Packet Manager Security Engine
A highly programmable and unique Security Protocol Accelerator specifically designed to efficiently process data for high capacity wireless and network applications. The engine is perfectly suited for applications that deal with multiple active connections and significant traffic load on different contexts, such as 4G LTE-Advanced wireless cellular base stations and femtocells.

Latest Blog Posts

Archive Blog Posts