出版社:University of Malaya * Faculty of Computer Science and Information Technology
摘要:The growing problem of breaches in information security in recent years has created a demand for earnest efforts towards ensuring security in electronic systems. The successful deployment of these electronic systems for ecommerce, Internet banking, government online services, VPNs, mobile commerce, Public Key Infrastructure (PKI), etc., is dependent on the effectiveness of the security solutions. These security concerns are further compounded when resourceconstrained environments and realtime speed requirements have to be considered in nextgeneration applications. Consequently, these IT security issues have been a subject of intensive research in areas of computing, networking and cryptography these last few years. This paper presents the design and implementation of a crypto processor, a specialpurpose embedded system optimized for the execution of cryptographic algorithms in hardware. This cryptosystem can be used in wide range of electronic devices, which include PCs, PDAs, wireless handsets, smart cards, hardware security modules, network appliances, such as routers, gateways, firewalls, storage and web servers. The proposed crypto processor consists of a 32bit RISC processor block and several IP cores that accelerates private and public key crypto computations, LZSS data compression, SHA1 hashing, and wideoperand modular arithmetic computation. These dedicated crypto IP cores, which are implemented as coprocessors, permit highspeed execution of the computeintensive operations in AES encryption, ECC and RSAbased digital signature, and other PKIenabling functions. The proposed embedded system is designed using SoC technology, with hardware described in VHDL and the embedded software coded in C. The resulting cryptohardware is implemented into a single Altera Stratix FPGA microchip. The operating system frequency is set to 40 MHz. A demonstration application prototype in the form of a realtime secure edocument application has been developed to verify the functionality and validate the embedded system.
关键词:Embedded system; Cryptography; Data Security; AES; RSA; ECC
