Explore the PHOTON Family: Efficient Lightweight Hash Functions for Secure Cryptography 🔐
Discover the innovative PHOTON family of lightweight hash functions presented at Crypto 2011, designed for secure and efficient cryptographic applications. Learn about their design, strengths, and impact on modern security systems.
IACR
1.9K views • Oct 10, 2011
About this video
Jian Guo, Thomas Peyrin, and Axel Poschmann
Institute for Infocomm Research, Singapore; Nanyang Technological University, Singapore; and Nanyang Technological University, Singapore
Abstract. RFID security is currently one of the major challenges cryptography has to face, often solved by protocols assuming that an ontag hash function is available. In this article we present the PHOTON lightweight hash-function family, available in many dierent avors and suitable for extremely constrained devices such as passive RFID tags. Our proposal uses a sponge-like construction as domain extension algorithm and an AES-like primitive as internal unkeyed permutation. This allows us to obtain the most compact hash function known so far (about 1120 GE for 64-bit collision resistance security), reaching areas very close to the theoretical optimum (derived from the minimal internal state memory size). Moreover, the speed achieved by PHOTON also compares quite favorably to its competitors. This is mostly due to the fact that unlike for previously proposed schemes, our proposal is very simple to analyze and one can derive tight AES-like bounds on the number of active Sboxes. This kind of AES-like primitive is usually not well suited for ultra constrained environments, but we describe in this paper a new method for generating the column mixing layer in a serial way, lowering drastically the area required. Finally, we slightly extend the sponge framework in order to oer interesting trade-os between speed and preimage security for small messages, the classical use-case in hardware.
Institute for Infocomm Research, Singapore; Nanyang Technological University, Singapore; and Nanyang Technological University, Singapore
Abstract. RFID security is currently one of the major challenges cryptography has to face, often solved by protocols assuming that an ontag hash function is available. In this article we present the PHOTON lightweight hash-function family, available in many dierent avors and suitable for extremely constrained devices such as passive RFID tags. Our proposal uses a sponge-like construction as domain extension algorithm and an AES-like primitive as internal unkeyed permutation. This allows us to obtain the most compact hash function known so far (about 1120 GE for 64-bit collision resistance security), reaching areas very close to the theoretical optimum (derived from the minimal internal state memory size). Moreover, the speed achieved by PHOTON also compares quite favorably to its competitors. This is mostly due to the fact that unlike for previously proposed schemes, our proposal is very simple to analyze and one can derive tight AES-like bounds on the number of active Sboxes. This kind of AES-like primitive is usually not well suited for ultra constrained environments, but we describe in this paper a new method for generating the column mixing layer in a serial way, lowering drastically the area required. Finally, we slightly extend the sponge framework in order to oer interesting trade-os between speed and preimage security for small messages, the classical use-case in hardware.
Video Information
Views
1.9K
Likes
9
Duration
17:52
Published
Oct 10, 2011
User Reviews
4.0
(1)