Lightweight Cryptography: A New Cipher Choice for 802.11bn

Lightweight Cryptography: A New Cipher Choice for 802.11bn
Slide Note
Embed
Share

Ascon, a lightweight cryptographic algorithm, is proposed as a new cipher choice for 802.11bn to enhance security and efficiency. NIST selected Ascon as the standard due to its authenticated encryption, minimal overhead, and energy efficiency on low-power devices. By comparing Ascon to AES-128 and SHA-256, significant improvements in speed and energy consumption are observed, making it ideal for low-power IoT devices. Its impact on battery consumption and potential as a replacement for AES128-GCM in 802.11 networks are highlighted in the material.

  • Lightweight Cryptography
  • Cipher Choice
  • 802.11bn
  • Ascon
  • Security Efficiency
csul
csul Follow

Uploaded on Mar 08, 2025 | 0 Views

Download Presentation

Please find below an Image/Link to download the presentation.

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.If you encounter any issues during the download, it is possible that the publisher has removed the file from their server.

You are allowed to download the files provided on this website for personal or commercial use, subject to the condition that they are used lawfully. All files are the property of their respective owners.

Download Presentation

The content on the website is provided AS IS for your information and personal use only. It may not be sold, licensed, or shared on other websites without obtaining consent from the author.

E N D

Presentation Transcript

  1. March 2024 doc.: IEEE 802.11-24/0541r0 Ascon: The Lightweight Cryptography As A New Cipher Choice for 802.11bn Date: 2024-3-10 Authors: Name Affiliations Address Phone Email Luo Hui Infineon Technologies New Jersey, hui.luo@infineon.com USA Taori Rakesh Infineon Technologies Texas, USA rakesh.taori@infineon.com Florian Mendel Infineon Technologies Neubiberg, DE florian.mendel@infineon.com Martin Schl effer Infineon Technologies Neubiberg, DE martin.schlaeffer@infineon.com Submission Slide 1 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  2. March 2024 doc.: IEEE 802.11-24/0541r0 About Ascon NIST selects Ascon as the standard to protect small devices in 2023 after 4-year LWC (Light-Weight Cipher) competition (57 submissions, 3 rounds, 1 winner) [1]. Ascon provides authenticated encryption and hashing with minimal overhead. Comparable security level as AES-128 and SHA-256 [1]. More efficient on low-end/low-power devices (Ascon-128 vs AES128-GCM) [1][2]. Up to 3-5x speed on microcontrollers Up to 2x throughput with 0.5x energy in hardware (same throughput with smaller circuits) A large number of detailed security performance and efficiency analysis listed in references of [1] and [2]. Submission Slide 2 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  3. March 2024 doc.: IEEE 802.11-24/0541r0 Impact on low-power IoT devices by numbers AES-128 energy measurement: about 2.0-2.6 uJ per byte using software in the best case (see Table 11 in [3]) Capacity of lithium coin cell batteries thinner than 3mm (typically used in low-power devices): about 25-200 mAh at practical 2V [4]. If a low-power IoT device powered by a small coin cell with 25mAh energy needs to encrypt and decrypt 500 bytes per hour, these operations alone will consume the entire battery in less than one year. Ascon can be implemented using software on MCU 3-5x less power hungry than AES128-GCM, thus can help reduce battery consumption for encryption/decryption operations significantly. MCU1 MCU2 MCU3 Submission Slide 3 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  4. March 2024 doc.: IEEE 802.11-24/0541r0 Ascon can be a drop-in replacement for AES128-GCMP in 802.11 AAD Data Nonce Key Tag/MIC AES128-GCMP 22-30 octets, 16-28 octets Variable 96 bits 128 bits 128 bits Ascon 0-unlimited 0-unlimited 128 bits (96bits+padding) 128 bits 128 bits encyption Ascon Transmitter decyption Ascon Receiver Submission Slide 4 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  5. March 2024 doc.: IEEE 802.11-24/0541r0 BIP-Ascon can be an alternative for BIP-GMAC128 in 802.11 The authentication-only Ascon (called BIP-Ascon) can be implemented by adding a wrapper with a control signal bip_ctrl. Ascon encryption/decryption if bip_ctrl =0; BIP-Ascon authentication if bip_ctrl = 1. When bip_ctrl = 1, at both the transmitter and the receiver, the wrapper circuit concatenates the AAD with the input data as the expanded AAD , sets the input data length as 0, and lets ASCON run through the expanded AAD (ASCON will output the expanded AAD , i.e., the AAD and the input data, without any change) and generate a 128-bit authentication tag for it. Transmitter Receiver Submission Slide 5 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  6. March 2024 doc.: IEEE 802.11-24/0541r0 Proposal Assign a cipher suite type number to ASCON-128 in the Cipher Suite Selector table. Provide ASCON-128 as an optional cipher suite choice in all protocol messages where AES128-GCMP is presented for the purpose of cipher suite indication and negotiation. Assign another cipher suite type number to BIP-ASCON-128 in the Cipher Suite Selector table. Provide BIP-ASCON-128 as an optional cipher suite choice in all protocol messages where BIP-GMAC-128 is presented for the purpose of cipher suite indication and negotiation. Submission Slide 6 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  7. March 2024 doc.: IEEE 802.11-24/0541r0 Straw polls Do you support making ASCON-128 as an optional cipher suite choice in all protocol messages where AES128-GCMP is presented for the purpose of cipher suite indication and negotiation? Do you support making BIP-ASCON-128 as an optional cipher suite choice in all protocol messages where BIP-GMAC-128 is presented for the purpose of cipher suite indication and negotiation? Submission Slide 7 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

  8. March 2024 doc.: IEEE 802.11-24/0541r0 References 1. Meltem Sonmez Turan, Kerry McKay, Donghoon Chang, Lawrence E. Bassham, Jinkeon Kang, Noah D. Waller, John M. Kelsey, Deukjo Hong, NIST Internal Report 8454: Status Report on the Final Round of the NIST Lightweight Cryptography Standardization Process , June 2023, https://nvlpubs.nist.gov/nistpubs/ir/2023/NIST.IR.8454.pdf. 2. Christoph Dobraunig, Maria Eichlseder, Florian Mendel, Martin Schlaeffer, ASCON v1.2 Submission to NIST , May 31, 2021. 3. Luke E. Kane, Jiaming James Chen, Rebecca Thomas, Vicky Liu, Matthew McKague, Security and Performance in IoT: A Balancing Act , IEEE Access, vol. 8, pp. 121969- 121986, July 6, 2020. 4. List of battery sizes, https://en.wikipedia.org/wiki/List_of_battery_sizes Submission Slide 8 Hui Luo, Rakesh Taori, Florian Mendel, Martin Schl effer, Infineon Technologies

Related


Coordinated Spatial Reuse in IEEE 802.11bn Standard

Coordinated Spatial Reuse in IEEE 802.11bn Standard

anayah
Cryptography,.Quantum-safe Cryptography& Quantum Cryptography

Cryptography,.Quantum-safe Cryptography& Quantum Cryptography

pendragon
Ascon: The Lightweight Cryptography Standard for IoT

Ascon: The Lightweight Cryptography Standard for IoT

kaison
Lightweight Cryptography Standard for IoT - November 2023 IEEE Presentation

Lightweight Cryptography Standard for IoT - November 2023 IEEE Presentation

ruan
Columnar Transposition Cipher: Data Encryption Techniques at Mustansiriyah University Engineering College

Columnar Transposition Cipher: Data Encryption Techniques at Mustansiriyah University Engineering College

remiel
Evolution of Cryptography: From Ancient Techniques to Modern Security Mechanisms

Evolution of Cryptography: From Ancient Techniques to Modern Security Mechanisms

damari
ADFGVX Cipher: Encryption and Decryption Techniques

ADFGVX Cipher: Encryption and Decryption Techniques

scarlett
Block Ciphers in Cryptography

Block Ciphers in Cryptography

knim
Lightweight Cryptography: Key-Reduced Variants and Beyond-Birthday-Bound Security

Lightweight Cryptography: Key-Reduced Variants and Beyond-Birthday-Bound Security

ccook
Cryptographic Center in Novosibirsk: Advancements in Cryptography and Research

Cryptographic Center in Novosibirsk: Advancements in Cryptography and Research

lott995
Fundamentals of Cryptography and Network Security

Fundamentals of Cryptography and Network Security

vsil
New Directions in Cryptography: Harta Dwijaksara, Yi Jae Park

New Directions in Cryptography: Harta Dwijaksara, Yi Jae Park

antwu
Integrating WUR into IEEE 802.11bn for Enhanced Network Efficiency

Integrating WUR into IEEE 802.11bn for Enhanced Network Efficiency

amont
Lightweight Thread Approaches for High Performance Computing

Lightweight Thread Approaches for High Performance Computing

cneh
Cryptography and Its Algorithms

Cryptography and Its Algorithms

rkar
Cryptography

Cryptography

schryver_v
Modern Cryptography: Algorithms and Their Applications

Modern Cryptography: Algorithms and Their Applications

trus
L4S Support in IEEE 802.11bn Proposal

L4S Support in IEEE 802.11bn Proposal

mangione_a
802.11bn Timeline proposal

802.11bn Timeline proposal

stromain_j
History of Cryptography: Techniques, Evolution, and Impact

History of Cryptography: Techniques, Evolution, and Impact

rozier_m
Randomized Half-Ideal Cipher on Groups: Applications to UC-PAKE Eurocrypt 2023

Randomized Half-Ideal Cipher on Groups: Applications to UC-PAKE Eurocrypt 2023

rseq
Cryptography Evolution and Historical Cipher Systems

Cryptography Evolution and Historical Cipher Systems

andr_550

More Related Content