[go: up one dir, main page]

CN108008934A - A kind of compound finite field inversions device based on look-up table - Google Patents

A kind of compound finite field inversions device based on look-up table Download PDF

Info

Publication number
CN108008934A
CN108008934A CN201711259902.7A CN201711259902A CN108008934A CN 108008934 A CN108008934 A CN 108008934A CN 201711259902 A CN201711259902 A CN 201711259902A CN 108008934 A CN108008934 A CN 108008934A
Authority
CN
China
Prior art keywords
finite field
inversion
module
column
multiplication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Granted
Application number
CN201711259902.7A
Other languages
Chinese (zh)
Other versions
CN108008934B (en
Inventor
易海博
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Shenzhen Polytechnic
Original Assignee
Shenzhen Polytechnic
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Shenzhen Polytechnic filed Critical Shenzhen Polytechnic
Priority to CN201711259902.7A priority Critical patent/CN108008934B/en
Publication of CN108008934A publication Critical patent/CN108008934A/en
Application granted granted Critical
Publication of CN108008934B publication Critical patent/CN108008934B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F7/00Methods or arrangements for processing data by operating upon the order or content of the data handled
    • G06F7/60Methods or arrangements for performing computations using a digital non-denominational number representation, i.e. number representation without radix; Computing devices using combinations of denominational and non-denominational quantity representations, e.g. using difunction pulse trains, STEELE computers, phase computers
    • G06F7/72Methods or arrangements for performing computations using a digital non-denominational number representation, i.e. number representation without radix; Computing devices using combinations of denominational and non-denominational quantity representations, e.g. using difunction pulse trains, STEELE computers, phase computers using residue arithmetic
    • G06F7/724Finite field arithmetic
    • G06F7/726Inversion; Reciprocal calculation; Division of elements of a finite field

Landscapes

  • Physics & Mathematics (AREA)
  • General Physics & Mathematics (AREA)
  • Engineering & Computer Science (AREA)
  • Computational Mathematics (AREA)
  • Mathematical Analysis (AREA)
  • Mathematical Optimization (AREA)
  • Pure & Applied Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Computing Systems (AREA)
  • Mathematical Physics (AREA)
  • General Engineering & Computer Science (AREA)
  • Error Detection And Correction (AREA)

Abstract

The invention discloses a kind of compound finite field inversions device based on look-up table, including controller, input port, output port and arithmetic unit;The input port is used to input compound finite field gf ((2n)2) inversion operation number a (x);The controller is used to call the arithmetic unit to carry out inversion operation to the inversion operation number a (x), obtains compound finite field gf ((2n)2) inversion operation result b (x);The arithmetic unit is used to run add operation and multiplying, square operation and inversion operation based on look-up table;The output port is used to export the inversion operation result b (x).The present invention can effectively improve the operation efficiency of finite field inversions.

Description

一种基于查找表的复合有限域求逆装置A Composite Finite Field Inversion Device Based on Lookup Table

技术领域technical field

本发明涉及计算机技术领域,尤其涉及一种基于查找表的复合有限域求逆装置。The invention relates to the field of computer technology, in particular to a compound finite field inversion device based on a lookup table.

背景技术Background technique

有限域求逆属于有限域运算,与有限域加法、乘法、除法、平方、乘方等运算一起被密码算法广泛使用。复合有限域属于有限域,复合有限域求逆的特点是需要进行子域的运算。常用的复合有限域是GF((2n)2),域的大小是(2n)2,它的子域是GF(2n)。GF((2n)2)的求逆运算一般需要子域GF(2n)的加法、乘法、求逆等运算。因为复合有限域是GF((2n)2)求逆包含子域GF(2n)运算,所以通过优化GF(2n)运算可以提升GF((2n)2)的求逆效率。Finite field inversion is a finite field operation, and it is widely used in cryptographic algorithms together with operations such as finite field addition, multiplication, division, square, and power. Composite finite fields belong to finite fields, and the inversion of composite finite fields is characterized by subfield operations. The commonly used compound finite field is GF((2 n ) 2 ), the size of the field is (2 n ) 2 , and its subfield is GF(2 n ). The inversion operation of GF((2 n ) 2 ) generally requires the addition, multiplication, and inversion operations of the subfield GF(2 n ). Because the compound finite field is the inversion of GF((2 n ) 2 ), it includes subfield GF(2 n ) operation, so the efficiency of GF((2 n ) 2 ) inversion can be improved by optimizing the GF(2 n ) operation.

现有技术中的复合有限域求逆器在实时和对速度敏感的环境下,无法实现有限域求逆所要达到的运算效率。In the real-time and speed-sensitive environment, the compound finite field invertor in the prior art cannot achieve the computational efficiency required by the finite field inversion.

发明内容Contents of the invention

本发明针对现有技术中存在的问题,提供了一种基于查找表的复合有限域求逆装置,能够有效提高有限域求逆的运算效率。Aiming at the problems existing in the prior art, the present invention provides a compound finite field inversion device based on a lookup table, which can effectively improve the computing efficiency of finite field inversion.

本发明就上述技术问题而提出的技术方案如下:The technical scheme that the present invention proposes with respect to above-mentioned technical problem is as follows:

本发明提供一种基于查找表的复合有限域求逆装置,包括控制器、输入端口、输出端口和运算器;The invention provides a compound finite field inversion device based on a lookup table, including a controller, an input port, an output port and an arithmetic unit;

所述输入端口用于输入复合有限域GF((2n)2)的求逆运算数a(x);The input port is used to input the inversion operand a(x) of the compound finite field GF((2 n ) 2 );

所述控制器用于调用所述运算器对所述求逆运算数a(x)进行求逆运算,获得复合有限域GF((2n)2)的求逆运算结果b(x);The controller is used to call the arithmetic unit to perform an inversion operation on the inversion operand a(x) to obtain an inversion operation result b(x) of the composite finite field GF((2 n ) 2 );

所述运算器用于运行加法运算以及基于查找表的乘法运算、平方运算和求逆运算;The arithmetic unit is used to perform addition and look-up table-based multiplication, squaring and inversion;

所述输出端口用于输出所述求逆运算结果b(x)。The output port is used to output the inversion result b(x).

进一步地,所述求逆运算数a(x)的多项式表示形式为a(x)=ahx+alFurther, the polynomial representation of the inversion operand a(x) is a(x)=a h x+a l ;

所述求逆运算结果b(x)的多项式表示形式为b(x)=bhx+bl;b(x)=a(x)-1The polynomial representation of the inversion result b(x) is b(x)=b h x+b l ; b(x)=a(x) -1 ;

其中,ah,al,bh,bl均为有限域GF(2n)的元素。Among them, a h , a l , b h , b l are all elements of the finite field GF(2 n ).

进一步地,所述运算器包括加法运算模块、第一乘法运算模块、第二乘法运算模块、第一平方运算模块、第二平方运算模块和求逆运算模块;Further, the arithmetic unit includes an addition module, a first multiplication module, a second multiplication module, a first square operation module, a second square operation module and an inverse operation module;

所述输入端口还用于输入时钟信号;The input port is also used to input a clock signal;

所述控制器具体用于在第一个时钟周期,调用所述第一平方运算模块计算s0=ah 2,调用所述第二平方运算模块计算s1=al 2,调用所述加法运算模块计算s2=ah+alThe controller is specifically configured to call the first square operation module to calculate s 0 =a h 2 , call the second square operation module to calculate s 1 =a l 2 , and call the addition in the first clock cycle. The operation module calculates s 2 =a h +a l ;

在第二个时钟周期,调用所述第一乘法运算模块计算s3=al×s2,调用所述第二乘法运算模块计算s4=s0×e;In the second clock cycle, call the first multiplication module to calculate s 3 = al ×s 2 , call the second multiplication module to calculate s 4 =s 0 ×e;

在第三个时钟周期,调用所述加法运算模块计算s5=s4+s3In the third clock cycle, call the addition module to calculate s 5 =s 4 +s 3 ;

在第四个时钟周期,调用所述求逆运算模块计算s6=s5 -1In the fourth clock cycle, call the inversion operation module to calculate s 6 =s 5 -1 ;

在第五个时钟周期,调用所述第一乘法运算模块计算bl=s2×s6,调用所述第二乘法运算模块计算bh=ah×s6,进而计算b(x)=bhx+blIn the fifth clock cycle, call the first multiplication module to calculate b l =s 2 ×s 6 , call the second multiplication module to calculate b h =a h ×s 6 , and then calculate b(x)= b h x+b l ;

其中,s0,ah,s1,al,s2,s3,s4,s5,s6,bl,bh均为有限域GF(2n)的元素,e为有限域GF(2n)的常数。Among them, s 0 , a h , s 1 , a l , s 2 , s 3 , s 4 , s 5 , s 6 , b l , b h are all elements of the finite field GF(2 n ), and e is the finite field Constant of GF(2 n ).

进一步地,所述加法运算模块包括n个异或逻辑门,用于针对有限域GF(2n)的两个已知元素c(x)和d(x),计算ei=ci+di,进而获得加法运算结果 Further, the addition operation module includes n XOR logic gates, which are used to calculate e i = ci +d for two known elements c(x) and d(x) of the finite field GF(2 n ) i , and then get the addition result

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en- 1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,n≥1,+是有限域GF(2n)的加法运算,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 , e(x)=e n- 1 x n-1 +e n-2 x n-2 +...+e 0 , i=0,1,... .,n-1, n≥1, + is the addition operation of finite field GF(2 n ), c n-1 ,c n-2 ,...,c 0 ,d n-1 ,d n-2 , ..., d 0 , e n-1 , e n-2 ,..., e 0 are all elements of the finite field GF(2 n ).

进一步地,所述第一平方运算模块和所述第二平方运算模块分别用于针对有限域GF(2n)的已知元素c(x),从预先建立的平方查找表的第一列中查找ci,获取ci所在行的第二列的元素ei,进而获得c(x)的平方运算结果 Further, the first square operation module and the second square operation module are respectively used for the known element c(x) of the finite field GF(2 n ), from the first column of the pre-established square lookup table Find c i , get the element e i in the second column of the row where c i is located, and then obtain the square operation result of c(x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ).

进一步地,所述第一平方运算模块和所述第二平方运算模块分别还用于针对有限域GF(2n)的每一元素α,计算β=α2modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以建立所述平方查找表;Further, the first square operation module and the second square operation module are also used to calculate β=α 2 modp(x) for each element α of the finite field GF(2 n ), and store α In the first column of the table, store β in the second column of the row where α is located in the table to build the square lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1和β均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 and β are elements of the finite field GF(2 n ).

进一步地,所述第一乘法运算模块和第二乘法运算模块分别用于针对有限域GF(2n)的两个已知元素c(x)和d(x),从预先建立的乘法查找表的第一列中查找出所有ci,从ci所在行的第二列中查找di,获取查找出的di所在行的第三列元素ei,进而获得c(x)和d(x)的乘法运算结果 Further, the first multiplication module and the second multiplication module are respectively used for two known elements c(x) and d(x) of the finite field GF(2 n ), from a pre-established multiplication lookup table Find all ci in the first column of the row, find d i in the second column of the row where ci is located, obtain the element e i in the third column of the row where d i is located, and then obtain c(x) and d( The result of the multiplication operation of x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en- 1xn-1+en-2xn-2+...+e0,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素,i=0,1,...,n-1,n≥1。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 ,e(x)=e n- 1 x n-1 +e n-2 x n-2 +...+e 0 ,c n-1 ,c n- 2 ,...,c 0 ,d n-1 ,d n-2 ,...,d 0 ,e n-1 ,e n-2 ,...,e 0 are all finite fields GF(2 n ), i=0,1,...,n-1, n≥1.

进一步地,所述第一乘法运算模块和第二乘法运算模块分别还用于针对有限域GF(2n)的任意两个元素α和β,计算δ=α×βmodp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,将δ存储在所述表格中β所在行的第三列,以建立所述乘法查找表;Further, the first multiplication module and the second multiplication module are also used to calculate δ=α×βmodp(x) for any two elements α and β of the finite field GF(2 n ), and α Stored in the first column of the table, storing β in the second column of the row where α is located in the table, and storing δ in the third column of the row where β is located in the table, to establish the multiplication lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ).

进一步地,所述求逆运算模块用于针对有限域GF(2n)的已知元素c(x),从预先建立的求逆查找表的第一列中查找ci,若查找到ci,则获取ci所在行的第二列的元素ei,进而获得c(x)的求逆运算结果 Further, the inversion operation module is used to search for c i from the first column of the pre-established inversion lookup table for the known element c(x) of the finite field GF(2 n ), if c i is found , then obtain the element e i of the second column of the row where c i is located, and then obtain the inverse operation result of c(x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ).

进一步地,所述求逆运算模块还用于针对有限域GF(2n)的每一元素α,计算β=α- 1modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以构造所述求逆查找表;Further, the inversion operation module is also used to calculate β=α - 1 modp(x) for each element α of the finite field GF(2 n ), and store α in the first column of the table, and store β Stored in the second column of the row where α is located in the table, to construct the inversion lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ).

本发明实施例提供的技术方案带来的有益效果是:The beneficial effects brought by the technical solution provided by the embodiments of the present invention are:

在复合有限域求逆运算中,基于查找表进行乘法运算、平方运算和求逆运算,相对于现有技术中的有限域求逆器,有效提高运算效率,可广泛应用于对称加密(如DES、AES),公钥密码和Rainbow、TTS、UOV签名等数学领域和工程领域。In the compound finite field inversion operation, the multiplication operation, square operation and inversion operation are performed based on the lookup table. Compared with the finite field inversion device in the prior art, the operation efficiency is effectively improved, and it can be widely used in symmetric encryption (such as DES , AES), public key cryptography and Rainbow, TTS, UOV signatures and other mathematics and engineering fields.

附图说明Description of drawings

为了更清楚地说明本发明实施例中的技术方案,下面将对实施例描述中所需要使用的附图作简单地介绍,显而易见地,下面描述中的附图仅仅是本发明的一些实施例,对于本领域普通技术人员来讲,在不付出创造性劳动的前提下,还可以根据这些附图获得其他的附图。In order to more clearly illustrate the technical solutions in the embodiments of the present invention, the drawings that need to be used in the description of the embodiments will be briefly introduced below. Obviously, the drawings in the following description are only some embodiments of the present invention. For those skilled in the art, other drawings can also be obtained based on these drawings without creative effort.

图1是本发明实施例一提供的基于查找表的复合有限域求逆装置的结构示意图。FIG. 1 is a schematic structural diagram of a compound finite field inversion device based on a lookup table provided by Embodiment 1 of the present invention.

具体实施方式Detailed ways

为使本发明的目的、技术方案和优点更加清楚,下面将结合附图对本发明实施方式作进一步地详细描述。In order to make the object, technical solution and advantages of the present invention clearer, the implementation manner of the present invention will be further described in detail below in conjunction with the accompanying drawings.

实施例一Embodiment one

本发明实施例提供了一种基于查找表的复合有限域求逆装置,参见图1,该装置包括控制器1、输入端口、输出端口b和运算器;An embodiment of the present invention provides a compound finite field inversion device based on a lookup table, as shown in FIG. 1 , the device includes a controller 1, an input port, an output port b, and an arithmetic unit;

所述输入端口包括端口a,用于输入复合有限域GF((2n)2)的求逆运算数a(x);The input port includes a port a, which is used to input the inversion operand a(x) of the compound finite field GF((2 n ) 2 );

所述控制器1用于调用所述运算器对所述求逆运算数a(x)进行求逆运算,获得复合有限域GF((2n)2)的求逆运算结果b(x);The controller 1 is used to call the arithmetic unit to perform an inversion operation on the inversion operand a(x), and obtain an inversion operation result b(x) of the compound finite field GF((2 n ) 2 );

所述运算器用于运行加法运算以及基于查找表的乘法运算、平方运算和求逆运算;The arithmetic unit is used to perform addition and look-up table-based multiplication, squaring and inversion;

所述输出端口b用于输出所述求逆运算结果b(x)。The output port b is used to output the inversion result b(x).

其中,控制器分别与输入端口、输出端口、运算器连接,用于调度相连接的部件。输入端口包括端口a,用于输入复合有限域GF((2n)2)的求逆运算数a(x),输出端口包括端口b,用于输出复合有限域GF((2n)2)的求逆运算结果b(x)。Wherein, the controller is respectively connected with the input port, the output port, and the arithmetic unit, and is used for scheduling the connected components. The input ports include port a for inputting the inversion operand a(x) of the composite finite field GF((2 n ) 2 ), and the output ports include port b for outputting the composite finite field GF((2 n ) 2 ) The inverse operation result b(x) of .

进一步地,所述求逆运算数a(x)的多项式表示形式为a(x)=ahx+alFurther, the polynomial representation of the inversion operand a(x) is a(x)=a h x+a l ;

所述求逆运算结果b(x)的多项式表示形式为b(x)=bhx+bl;b(x)=a(x)-1The polynomial representation of the inversion result b(x) is b(x)=b h x+b l ; b(x)=a(x) -1 ;

其中,ah,al,bh,bl均为有限域GF(2n)的元素。Among them, a h , a l , b h , b l are all elements of the finite field GF(2 n ).

需要说明的是,GF((2n)2)的不可约多项式是q(x)=x2+x+e,e是有限域GF(2n)的常数。求逆运算数a(x)由两个n比特的数组成,可以表示为多项式形式,也可表示成系数的形式,如a(x)=a(ah,al),ah,al是有限域GF(2n)的元素。求逆运算结果b(x)的由两个n比特的数组成,可以表示成多项式的形式,也可表示成系数的形式,如b(x)=b(bh,bl),bh,bl是有限域GF(2n)的元素。It should be noted that the irreducible polynomial of GF((2 n ) 2 ) is q(x)=x 2 +x+e, and e is a constant of the finite field GF(2 n ). The inverse operand a(x) is composed of two n-bit numbers, which can be expressed in the form of polynomials or in the form of coefficients, such as a(x)=a(a h , a l ), a h , a l is an element of the finite field GF(2 n ). The inverse operation result b(x) consists of two n-bit numbers, which can be expressed in the form of polynomials or in the form of coefficients, such as b(x)=b(b h , b l ), b h ,b l is an element of the finite field GF(2 n ).

进一步地,所述运算器包括加法运算模块4、第一乘法运算模块5、第二乘法运算模块6、第一平方运算模块7、第二平方运算模块8和求逆运算模块9;Further, the arithmetic unit includes an addition module 4, a first multiplication module 5, a second multiplication module 6, a first square operation module 7, a second square operation module 8 and an inverse operation module 9;

所述输入端口还包括端口clk,用于输入时钟信号;The input port also includes a port clk for inputting a clock signal;

所述控制器具体用于在第一个时钟周期,调用所述第一平方运算模块计算s0=ah 2,调用所述第二平方运算模块计算s1=al 2,调用所述加法运算模块计算s2=ah+alThe controller is specifically configured to call the first square operation module to calculate s 0 =a h 2 , call the second square operation module to calculate s 1 =a l 2 , and call the addition in the first clock cycle. The operation module calculates s 2 =a h +a l ;

在第二个时钟周期,调用所述第一乘法运算模块计算s3=al×s2,调用所述第二乘法运算模块计算s4=s0×e;In the second clock cycle, call the first multiplication module to calculate s 3 = al ×s 2 , call the second multiplication module to calculate s 4 =s 0 ×e;

在第三个时钟周期,调用所述加法运算模块计算s5=s4+s3In the third clock cycle, call the addition module to calculate s 5 =s 4 +s 3 ;

在第四个时钟周期,调用所述求逆运算模块计算s6=s5 -1In the fourth clock cycle, call the inversion operation module to calculate s 6 =s 5 -1 ;

在第五个时钟周期,调用所述第一乘法运算模块计算bl=s2×s6,调用所述第二乘法运算模块计算bh=ah×s6,进而计算b(x)=bhx+blIn the fifth clock cycle, call the first multiplication module to calculate b l =s 2 ×s 6 , call the second multiplication module to calculate b h =a h ×s 6 , and then calculate b(x)= b h x+b l ;

其中,s0,ah,s1,al,s2,s3,s4,s5,s6,bl,bh均为有限域GF(2n)的元素,e为有限域GF(2n)的常数。Among them, s 0 , a h , s 1 , a l , s 2 , s 3 , s 4 , s 5 , s 6 , b l , b h are all elements of the finite field GF(2 n ), and e is the finite field Constant of GF(2 n ).

需要说明的是,控制器1分别与加法运算模块4、第一乘法运算模块5、第二乘法运算模块6、第一平方运算模块7、第二平方运算模块8和求逆运算模块9连接。输入端口还包括端口clk,用于输入时钟信号。控制器还用于解析所述时钟信号。时钟信号是单比特信号,取值是0或1,代表低电平或高电平,低电平转向高电平代表一个时钟周期的开始。加法运算模块包括用于计算GF(2n)加法的逻辑门电路;第一乘法运算模块和第二乘法运算模块分别包括用于计算GF(2n)乘法的查找表结构和计算电路;第一平方运算模块和第二平方运算模块分别包括用于计算GF(2n)平方的查找表结构和计算电路;求逆运算模块包括用于计算GF(2n)求逆的查找表结构和计算电路。It should be noted that the controller 1 is connected to the addition module 4 , the first multiplication module 5 , the second multiplication module 6 , the first square module 7 , the second square module 8 and the inversion module 9 . The input port also includes a port clk for inputting a clock signal. The controller is also used to parse the clock signal. The clock signal is a single-bit signal, with a value of 0 or 1, representing a low level or a high level, and a transition from a low level to a high level represents the beginning of a clock cycle. The addition module includes a logic gate circuit for calculating GF (2 n ) addition; the first multiplication module and the second multiplication module include a lookup table structure and a calculation circuit for calculating GF (2 n ) multiplication respectively; the first The square operation module and the second square operation module include a lookup table structure and a calculation circuit for calculating the square of GF(2 n ) respectively; the inverse operation module includes a lookup table structure and a calculation circuit for calculating the inverse of GF(2 n ) .

进一步地,所述加法运算模块包括n个异或逻辑门,用于针对有限域GF(2n)的两个已知元素c(x)和d(x),计算ei=ci+di,进而获得加法运算结果 Further, the addition operation module includes n XOR logic gates, which are used to calculate e i = ci +d for two known elements c(x) and d(x) of the finite field GF(2 n ) i , and then get the addition result

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en- 1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,n≥1,+是有限域GF(2n)的加法运算,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 , e(x)=e n- 1 x n-1 +e n-2 x n-2 +...+e 0 , i=0,1,... .,n-1, n≥1, + is the addition operation of finite field GF(2 n ), c n-1 ,c n-2 ,...,c 0 ,d n-1 ,d n-2 , ..., d 0 , e n-1 , e n-2 ,..., e 0 are all elements of the finite field GF(2 n ).

需要说明的是,有限域GF(2n)的加法使用异或逻辑门,因此加法运算模块包括n个异或逻辑门,用于计算GF(2n)的两个已知元素c(x)和d(x)的加法e(x)=c(x)+d(x)。在具体运行时,对于i=0,1,...,n-1,计算ei=ci+di,即可获得加法运算结果 It should be noted that the addition of the finite field GF(2 n ) uses exclusive OR logic gates, so the addition operation module includes n exclusive OR logic gates, which are used to calculate the two known elements c(x) of GF(2 n ) Addition of d(x) e(x)=c(x)+d(x). During specific operation, for i=0,1,...,n-1, calculate e i = ci +d i to obtain the addition result

进一步地,所述第一平方运算模块和所述第二平方运算模块分别用于针对有限域GF(2n)的已知元素c(x),从预先建立的平方查找表的第一列中查找ci,获取ci所在行的第二列的元素ei,进而获得c(x)的平方运算结果 Further, the first square operation module and the second square operation module are respectively used for the known element c(x) of the finite field GF(2 n ), from the first column of the pre-established square lookup table Find c i , get the element e i in the second column of the row where c i is located, and then obtain the square operation result of c(x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ).

需要说明的是,第一平方运算模块和第二平方运算模块的构造相同,用于计算有限域GF(2n)的已知元素c(x)的平方e(x)=c(x)2。在具体运行时,先在平方查找表的第一列查找ci,找到后,平方查找表中的ci所在行的第二列的元素即为ci的平方运算结果,存储至ei,即可获得c(x)的平方运算结果 It should be noted that the first square operation module and the second square operation module have the same structure, and are used to calculate the square e(x)=c(x) 2 of the known element c(x) of the finite field GF(2 n ) . During specific operation, first search for ci in the first column of the square lookup table, and after finding it, the element in the second column of the row where ci is located in the square lookup table is the square operation result of ci , and store it in e i . The result of the square operation of c(x) can be obtained

进一步地,所述第一平方运算模块和所述第二平方运算模块分别还用于针对有限域GF(2n)的每一元素α,计算β=α2modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以建立所述平方查找表;Further, the first square operation module and the second square operation module are also used to calculate β=α 2 modp(x) for each element α of the finite field GF(2 n ), and store α In the first column of the table, store β in the second column of the row where α is located in the table to build the square lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1和β均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 and β are elements of the finite field GF(2 n ).

需要说明的是,在第一平方运算模块和第二平方运算模块运行前,需在模块中建立平方查找表。对于有限域GF(2n)的每一个元素,计算其平方,例如GF(2n)元素是α,计算β=α2modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列。在将有限域GF(2n)的每一个元素及其平方结果对应存储在所述表格后,该表格即作为平方查找表。It should be noted that before the operation of the first square calculation module and the second square calculation module, a square lookup table needs to be established in the modules. For each element of the finite field GF(2 n ), calculate its square, for example, the element of GF(2 n ) is α, calculate β=α 2 modp(x), and store α in the first column of the table, and β Stored in the second column of the row of α in the table. After each element of the finite field GF(2 n ) and its square result are correspondingly stored in the table, the table serves as a square lookup table.

进一步地,所述第一乘法运算模块和第二乘法运算模块分别用于针对有限域GF(2n)的两个已知元素c(x)和d(x),从预先建立的乘法查找表的第一列中查找出所有ci,从ci所在行的第二列中查找di,获取查找出的di所在行的第三列元素ei,进而获得c(x)和d(x)的乘法运算结果 Further, the first multiplication module and the second multiplication module are respectively used for two known elements c(x) and d(x) of the finite field GF(2 n ), from a pre-established multiplication lookup table Find all ci in the first column of the row, find d i in the second column of the row where ci is located, obtain the element e i in the third column of the row where d i is located, and then obtain c(x) and d( The result of the multiplication operation of x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en- 1xn-1+en-2xn-2+...+e0,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素,i=0,1,...,n-1,n≥1。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 ,e(x)=e n- 1 x n-1 +e n-2 x n-2 +...+e 0 ,c n-1 ,c n- 2 ,...,c 0 ,d n-1 ,d n-2 ,...,d 0 ,e n-1 ,e n-2 ,...,e 0 are all finite fields GF(2 n ), i=0,1,...,n-1, n≥1.

需要说明的是,有限域GF(2n)的乘法使用与逻辑门。第一乘法运算模块和第二乘法运算模块的构造相同,用于计算有限域GF(2n)的两个已知元素c(x)和d(x)的乘法e(x)=c(x)×d(x)。在具体运行时,先在乘法查找表的第一列查找ci,一般乘法查找表的第一列具有多个ci,找出所有ci,再从每个ci所在行的第二列的元素中查找di,找到后,将ci和di所在行的第三例元素存储至ei,即可获得c(x)和d(x)的乘法运算结果 It should be noted that the multiplication of the finite field GF(2 n ) uses AND logic gates. The first multiplication module and the second multiplication module have the same structure, and are used to calculate the multiplication e(x)=c(x) of two known elements c(x) and d(x) of the finite field GF(2 n ) )×d(x). During specific operation, first look up ci in the first column of the multiplication lookup table. Generally, the first column of the multiplication lookup table has multiple ci s , find out all ci , and then start from the second column of the row where each ci is located Find d i in the elements of , and after finding it, store the third element in the row where c i and d i are located in e i , and you can get the multiplication result of c(x) and d(x)

进一步地,所述第一乘法运算模块和第二乘法运算模块分别还用于针对有限域GF(2n)的任意两个元素α和β,计算δ=α×βmodp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,将δ存储在所述表格中β所在行的第三列,以建立所述乘法查找表;Further, the first multiplication module and the second multiplication module are also used to calculate δ=α×βmodp(x) for any two elements α and β of the finite field GF(2 n ), and α Stored in the first column of the table, storing β in the second column of the row where α is located in the table, and storing δ in the third column of the row where β is located in the table, to establish the multiplication lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ).

需要说明的是,在第一乘法运算模块和第二乘法运算模块运行前,需在模块中建立乘法查找表。对于有限域GF(2n)的任意两个元素,计算其乘法,例如GF(2n)的两个元素是α和β,计算δ=α×βmodp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,δ存储在所述表格中α和β所在行的第三列。在将有限域GF(2n)的每两个元素及其乘法结果对应存储在所述表格后,该表格即作为乘法查找表。It should be noted that before the operation of the first multiplication module and the second multiplication module, a multiplication lookup table needs to be established in the modules. For any two elements of the finite field GF(2 n ), calculate their multiplication, for example, the two elements of GF(2 n ) are α and β, calculate δ=α×βmodp(x), and store α in the table In the first column, β is stored in the second column of the row where α is located in the table, and δ is stored in the third column of the row where α and β are located in the table. After every two elements of the finite field GF(2 n ) and their multiplication results are correspondingly stored in the table, the table serves as a multiplication lookup table.

进一步地,所述求逆运算模块用于针对有限域GF(2n)的已知元素c(x),从预先建立的求逆查找表的第一列中查找ci,若查找到ci,则获取ci所在行的第二列的元素ei,进而获得c(x)的求逆运算结果 Further, the inversion operation module is used to search for c i from the first column of the pre-established inversion lookup table for the known element c(x) of the finite field GF(2 n ), if c i is found , then obtain the element e i of the second column of the row where c i is located, and then obtain the inverse operation result of c(x)

其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ).

需要说明的是,求逆运算模块用于计算有限域GF(2n)的已知元素c(x)的求逆e(x)=c(x)-1。在具体运行时,先在平方查找表的第一列查找ci,若未找到ci,则说明ci无逆元,若找到,则求逆查找表中的ci所在行的第二列的元素即为ci的求逆结果,存储至ei,即可获得c(x)的求逆运算结果 It should be noted that the inversion operation module is used to calculate the inversion e(x)=c(x) −1 of the known element c(x) of the finite field GF(2 n ). When actually running, first search for ci in the first column of the square lookup table. If ci is not found, it means that ci has no inverse element. If it is found, find the second column of the row where ci is located in the inverse lookup table. The element of is the inversion result of c i , stored in e i , and the inversion result of c(x) can be obtained

进一步地,所述求逆运算模块还用于针对有限域GF(2n)的每一元素α,计算β=α- 1modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以构造所述求逆查找表;Further, the inversion operation module is also used to calculate β=α - 1 modp(x) for each element α of the finite field GF(2 n ), and store α in the first column of the table, and store β Stored in the second column of the row where α is located in the table, to construct the inversion lookup table;

其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ).

需要说明的是,在求逆运算模块运行前,需在模块中建立求逆查找表。对于有限域GF(2n)的每一个元素(除了零元以外),计算求逆,例如GF(2n)元素是α,计算β=α-1modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列。在将有限域GF(2n)的每一个元素及其求逆结果对应存储在所述表格后,该表格即作为求逆查找表。It should be noted that before the operation of the inversion operation module, an inversion lookup table needs to be established in the module. For each element of the finite field GF(2 n ) (except the zero element), calculate the inversion, for example, the element of GF(2 n ) is α, calculate β=α -1 modp(x), and store α in the table in the first column of , store β in the second column of the row of α in the said table. After each element of the finite field GF(2 n ) and its inversion result are correspondingly stored in the table, the table is used as an inversion lookup table.

下面以n=4为例说明本发明实施例提供的复合有限域求逆装置的工作过程。The following takes n=4 as an example to illustrate the working process of the compound finite field inversion device provided by the embodiment of the present invention.

输入端口的运算数a(x)是复合有限域GF((24)2)的元素,可以表示成多项式的形式:The operand a(x) of the input port is an element of the compound finite field GF((2 4 ) 2 ), which can be expressed as a polynomial:

a(x)=ahx+ala(x)=a h x+a l ,

ah,al是有限域GF(24)的元素。a h , a l are elements of the finite field GF(2 4 ).

输出端口的运算数b(x)是复合有限域GF((24)2)的元素,可以表示成多项式的形式:The operand b(x) of the output port is an element of the composite finite field GF((2 4 ) 2 ), which can be expressed as a polynomial:

b(x)=bhx+blb(x)=b h x+b l ,

bh,bl是有限域GF(24)的元素。b h , b l are elements of the finite field GF(2 4 ).

输入端口的时钟信号clk是单比特信号,时钟周期是50纳秒。The clock signal clk of the input port is a single-bit signal, and the clock period is 50 nanoseconds.

控制器计算GF((24)2)的b(x)=a(x)-1的求逆,其中GF((24)2)的不可约多项式是q(x)=x2+x+9,步骤如下:The controller computes the inverse of b(x)=a(x) -1 of GF((2 4 ) 2 ), where the irreducible polynomial of GF((2 4 ) 2 ) is q(x)=x 2 +x +9, the steps are as follows:

控制器接收输入运算数a(x)和时钟信号,等待时钟信号由低电平转向高电平;The controller receives the input operand a(x) and the clock signal, and waits for the clock signal to change from low level to high level;

第一个时钟周期,控制器调用第一平方运算模块计算s0=ah 2,s0,ah是有限域GF(24)的元素;控制器调用第二平方运算模块计算s1=al 2,s1,al是有限域GF(24)的元素;控制器调用加法运算模块计算s2=ah+al,s2,ah,al是有限域GF(24)的元素;In the first clock cycle, the controller calls the first square operation module to calculate s 0 =a h 2 , s 0 , a h are elements of the finite field GF(2 4 ); the controller calls the second square operation module to calculate s 1 = a l 2 , s 1 , a l are the elements of the finite field GF(2 4 ); the controller calls the addition operation module to calculate s 2 =a h +a l , s 2 , a h , a l are the elements of the finite field GF(2 4 ) elements;

第二个时钟周期,控制器调用第一乘法运算模块计算s3=al×s2,s3,al,s2是有限域GF(24)的元素;控制器调用第二乘法运算模块计算s4=s0×9,s4,s0是有限域GF(24)的元素;In the second clock cycle, the controller calls the first multiplication module to calculate s 3 =a l ×s 2 , s 3 , a l , and s 2 are elements of the finite field GF(2 4 ); the controller calls the second multiplication operation The module calculates s 4 =s 0 ×9, s 4 , s 0 are elements of the finite field GF(2 4 );

第三个时钟周期,控制器调用加法运算模块计算s5=s4+s3,s5,s4,s3是有限域GF(24)的元素;In the third clock cycle, the controller calls the addition module to calculate s 5 =s 4 +s 3 , s 5 , s 4 , and s 3 are elements of the finite field GF(2 4 );

第四个时钟周期,控制器调用求逆运算模块计算s6=s5 -1,s6,s5是有限域GF(24)的元素;In the fourth clock cycle, the controller invokes the inversion operation module to calculate s 6 =s 5 -1 , s 6 , s 5 are elements of the finite field GF(2 4 );

第五个时钟周期,控制器调用第一乘法运算模块计算bl=s2×s6,bl,s2,s6是有限域GF(24)的元素;控制器调用第二乘法运算模块计算bh=ah×s6,bl,ah,s6是有限域GF(24)的元素;In the fifth clock cycle, the controller calls the first multiplication module to calculate b l =s 2 ×s 6 , b l , s 2 , and s 6 are elements of the finite field GF(2 4 ); the controller calls the second multiplication operation The module calculates b h =a h ×s 6 , b l , a h , s 6 are elements of the finite field GF(2 4 );

最后,b(x)=bhx+bl是a(x)=ahx+al的逆元,被控制器输出至输出端口。Finally, b(x)=b h x+b l is the inverse of a(x)=a h x+a l , and is output to the output port by the controller.

本发明实施例在复合有限域求逆运算中,基于查找表进行乘法运算、平方运算和求逆运算,相对于现有技术中的有限域求逆器,有效提高运算效率,可广泛应用于各种工程领域。In the compound finite field inversion operation, the embodiment of the present invention performs multiplication, square operation and inversion operation based on the lookup table. Compared with the finite field invertor in the prior art, the operation efficiency is effectively improved, and it can be widely used in various field of engineering.

以上所述仅为本发明的较佳实施例,并不用以限制本发明,凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。The above descriptions are only preferred embodiments of the present invention, and are not intended to limit the present invention. Any modifications, equivalent replacements, improvements, etc. made within the spirit and principles of the present invention shall be included in the protection of the present invention. within range.

Claims (10)

1.一种基于查找表的复合有限域求逆装置,其特征在于,包括控制器、输入端口、输出端口和运算器;1. A compound finite field inverting device based on look-up table, is characterized in that, comprises controller, input port, output port and operator; 所述输入端口用于输入复合有限域GF((2n)2)的求逆运算数a(x);The input port is used to input the inversion operand a(x) of the compound finite field GF((2 n ) 2 ); 所述控制器用于调用所述运算器对所述求逆运算数a(x)进行求逆运算,获得复合有限域GF((2n)2)的求逆运算结果b(x);The controller is used to call the arithmetic unit to perform an inversion operation on the inversion operand a(x) to obtain an inversion operation result b(x) of the composite finite field GF((2 n ) 2 ); 所述运算器用于运行加法运算以及基于查找表的乘法运算、平方运算和求逆运算;The arithmetic unit is used to perform addition and look-up table-based multiplication, squaring and inversion; 所述输出端口用于输出所述求逆运算结果b(x)。The output port is used to output the inversion result b(x). 2.如权利要求1所述的基于查找表的复合有限域求逆装置,其特征在于,所述求逆运算数a(x)的多项式表示形式为a(x)=ahx+al2. the compound finite field inversion device based on look-up table as claimed in claim 1, is characterized in that, the polynomial expression form of described inversion operand a(x) is a(x)=a h x+a l ; 所述求逆运算结果b(x)的多项式表示形式为b(x)=bhx+bl;b(x)=a(x)-1The polynomial representation of the inversion result b(x) is b(x)=b h x+b l ; b(x)=a(x) -1 ; 其中,ah,al,bh,bl均为有限域GF(2n)的元素。Among them, a h , a l , b h , b l are all elements of the finite field GF(2 n ). 3.如权利要求2所述的基于查找表的复合有限域求逆装置,其特征在于,所述运算器包括加法运算模块、第一乘法运算模块、第二乘法运算模块、第一平方运算模块、第二平方运算模块和求逆运算模块;3. the compound finite field inversion device based on look-up table as claimed in claim 2, is characterized in that, described arithmetic unit comprises addition operation module, the first multiplication operation module, the second multiplication operation module, the first square operation module , the second square operation module and the inverse operation module; 所述输入端口还用于输入时钟信号;The input port is also used to input a clock signal; 所述控制器具体用于在第一个时钟周期,调用所述第一平方运算模块计算s0=ah 2,调用所述第二平方运算模块计算s1=al 2,调用所述加法运算模块计算s2=ah+alThe controller is specifically configured to call the first square operation module to calculate s 0 =a h 2 , call the second square operation module to calculate s 1 =a l 2 , and call the addition in the first clock cycle. The operation module calculates s 2 =a h +a l ; 在第二个时钟周期,调用所述第一乘法运算模块计算s3=al×s2,调用所述第二乘法运算模块计算s4=s0×e;In the second clock cycle, call the first multiplication module to calculate s 3 = al ×s 2 , call the second multiplication module to calculate s 4 =s 0 ×e; 在第三个时钟周期,调用所述加法运算模块计算s5=s4+s3In the third clock cycle, call the addition module to calculate s 5 =s 4 +s 3 ; 在第四个时钟周期,调用所述求逆运算模块计算s6=s5 -1In the fourth clock cycle, call the inversion operation module to calculate s 6 =s 5 -1 ; 在第五个时钟周期,调用所述第一乘法运算模块计算bl=s2×s6,调用所述第二乘法运算模块计算bh=ah×s6,进而计算b(x)=bhx+blIn the fifth clock cycle, call the first multiplication module to calculate b l =s 2 ×s 6 , call the second multiplication module to calculate b h =a h ×s 6 , and then calculate b(x)= b h x+b l ; 其中,s0,ah,s1,al,s2,s3,s4,s5,s6,bl,bh均为有限域GF(2n)的元素,e为有限域GF(2n)的常数。Among them, s 0 , a h , s 1 , a l , s 2 , s 3 , s 4 , s 5 , s 6 , b l , b h are all elements of the finite field GF(2 n ), and e is the finite field Constant of GF(2 n ). 4.如权利要求3所述的基于查找表的复合有限域求逆装置,其特征在于,所述加法运算模块包括n个异或逻辑门,用于针对有限域GF(2n)的两个已知元素c(x)和d(x),计算ei=ci+di,进而获得加法运算结果 4. The compound finite field inversion device based on look-up table as claimed in claim 3, is characterized in that, described addition operation module comprises n XOR logic gates, is used for two for finite field GF (2 n ) Given the elements c(x) and d(x), calculate e i = ci +d i , and then obtain the addition result 其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,n≥1,+是有限域GF(2n)的加法运算,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 , e(x)=e n-1 x n-1 +e n-2 x n-2 +...+e 0 , i=0,1,... .,n-1, n≥1, + is the addition operation of finite field GF(2 n ), c n-1 ,c n-2 ,...,c 0 ,d n-1 ,d n-2 , ..., d 0 , e n-1 , e n-2 ,..., e 0 are all elements of the finite field GF(2 n ). 5.如权利要求3所述的基于查找表的复合有限域求逆装置,其特征在于,所述第一平方运算模块和所述第二平方运算模块分别用于针对有限域GF(2n)的已知元素c(x),从预先建立的平方查找表的第一列中查找ci,获取ci所在行的第二列的元素ei,进而获得c(x)的平方运算结果 5. The compound finite field inversion device based on look-up table as claimed in claim 3, is characterized in that, described first square operation module and described second square operation module are respectively used for finite field GF (2 n ) The known element c(x) of , look up ci from the first column of the pre-established square lookup table, obtain the element e i of the second column of the row where ci is located, and then obtain the square operation result of c(x) 其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ). 6.如权利要求5所述的基于查找表的复合有限域求逆装置,其特征在于,所述第一平方运算模块和所述第二平方运算模块分别还用于针对有限域GF(2n)的每一元素α,计算β=α2modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以建立所述平方查找表;6. the compound finite field inversion device based on lookup table as claimed in claim 5, is characterized in that, described first square operation module and described second square operation module are also used for finite field GF (2 n ) for each element α, calculate β=α 2 modp(x), and store α in the first column of the table, store β in the second column of the row where α is located in the table, to establish the square lookup surface; 其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1和β均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 and β are elements of the finite field GF(2 n ). 7.如权利要求3所述的基于查找表的复合有限域求逆装置,其特征在于,所述第一乘法运算模块和第二乘法运算模块分别用于针对有限域GF(2n)的两个已知元素c(x)和d(x),从预先建立的乘法查找表的第一列中查找出所有ci,从ci所在行的第二列中查找di,获取查找出的di所在行的第三列元素ei,进而获得c(x)和d(x)的乘法运算结果 7. The compound finite field inversion device based on look-up table as claimed in claim 3, is characterized in that, described first multiplication module and the second multiplication module are respectively used for two for finite field GF (2 n ) Known elements c(x) and d(x), find out all c i from the first column of the pre-established multiplication lookup table, find d i from the second column of the row where c i is located, and obtain the found The third column element e i of the row where d i is located, and then obtain the multiplication result of c(x) and d(x) 其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,d(x)=dn-1xn-1+dn-2xn-2+...+d0,e(x)=en-1xn-1+en-2xn-2+...+e0,cn-1,cn-2,...,c0,dn-1,dn-2,...,d0,en-1,en-2,...,e0均为有限域GF(2n)的元素,i=0,1,...,n-1,n≥1。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , d(x)=d n-1 x n-1 +d n-2 x n-2 +...+d 0 , e(x)=e n-1 x n-1 +e n-2 x n-2 +...+e 0 , c n-1 ,c n- 2 ,...,c 0 ,d n-1 ,d n-2 ,...,d 0 ,e n-1 ,e n-2 ,...,e 0 are all finite fields GF(2 n ), i=0,1,...,n-1, n≥1. 8.如权利要求7所述的基于查找表的复合有限域求逆装置,其特征在于,所述第一乘法运算模块和第二乘法运算模块分别还用于针对有限域GF(2n)的任意两个元素α和β,计算δ=α×βmodp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,将δ存储在所述表格中β所在行的第三列,以建立所述乘法查找表;8. The compound finite field inversion device based on look-up table as claimed in claim 7, is characterized in that, described first multiplication module and the second multiplication module are respectively also used for finite field GF (2 n ) For any two elements α and β, calculate δ=α×βmodp(x), and store α in the first column of the table, store β in the second column of the row where α is located in the table, and store δ in the The third column of the row where β is located in the table, to set up the multiplication lookup table; 其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ). 9.如权利要求3所述的基于查找表的复合有限域求逆装置,其特征在于,所述求逆运算模块用于针对有限域GF(2n)的已知元素c(x),从预先建立的求逆查找表的第一列中查找ci,若查找到ci,则获取ci所在行的第二列的元素ei,进而获得c(x)的求逆运算结果 9. The compound finite field inversion device based on look-up table as claimed in claim 3, is characterized in that, described inversion operation module is used for the known element c (x) of finite field GF (2 n ), from Search for c i in the first column of the pre-established inversion lookup table, if c i is found, obtain the element e i of the second column of the row where c i is located, and then obtain the inversion result of c(x) 其中,c(x)=cn-1xn-1+cn-2xn-2+...+c0,e(x)=en-1xn-1+en-2xn-2+...+e0,i=0,1,...,n-1,cn-1,cn-2,...,c0,en-1,en-2,...,e0均为有限域GF(2n)的元素。Among them, c(x)=c n-1 x n-1 +c n-2 x n-2 +...+c 0 , e(x)=en -1 x n-1 +e n-2 x n-2 +...+e 0 ,i=0,1,...,n-1,c n-1 ,c n-2 ,...,c 0 ,e n-1 ,e n -2 ,...,e 0 are all elements of the finite field GF(2 n ). 10.如权利要求9所述的基于查找表的复合有限域求逆装置,其特征在于,所述求逆运算模块还用于针对有限域GF(2n)的每一元素α,计算β=α-1modp(x),并将α存储在表格的第一列,将β存储在所述表格中α所在行的第二列,以构造所述求逆查找表;10. The compound finite field inversion device based on a lookup table as claimed in claim 9, wherein the inversion operation module is also used for calculating β= α -1 modp(x), and α is stored in the first column of the table, and β is stored in the second column of the row where α is in the table, to construct the inversion lookup table; 其中,mod为模运算,p(x)=xn+pn-1xn-1+...+1为有限域GF(2n)的不可约多项式,pn-1,pn-2,...,p1,δ均为有限域GF(2n)的元素。Among them, mod is a modular operation, p(x)=x n +p n-1 x n-1 +...+1 is an irreducible polynomial of finite field GF(2 n ), p n-1 ,p n- 2 ,...,p 1 ,δ are elements of the finite field GF(2 n ).
CN201711259902.7A 2017-12-04 2017-12-04 A lookup table based complex finite field inversion device Active CN108008934B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201711259902.7A CN108008934B (en) 2017-12-04 2017-12-04 A lookup table based complex finite field inversion device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201711259902.7A CN108008934B (en) 2017-12-04 2017-12-04 A lookup table based complex finite field inversion device

Publications (2)

Publication Number Publication Date
CN108008934A true CN108008934A (en) 2018-05-08
CN108008934B CN108008934B (en) 2021-09-07

Family

ID=62056279

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201711259902.7A Active CN108008934B (en) 2017-12-04 2017-12-04 A lookup table based complex finite field inversion device

Country Status (1)

Country Link
CN (1) CN108008934B (en)

Cited By (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108874367A (en) * 2018-06-29 2018-11-23 深圳职业技术学院 Compound finite field inverter based on power operation and inversion method thereof
CN108897526A (en) * 2018-06-29 2018-11-27 深圳职业技术学院 A kind of compound finite field inverter and its inversion technique based on multiple square operation

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4994995A (en) * 1990-03-14 1991-02-19 International Business Machines Corporation Bit-serial division method and apparatus
CN1688121A (en) * 2005-06-16 2005-10-26 北京中星微电子有限公司 AES add decipher circuit optimization method and multiplex sbox module
US20080189346A1 (en) * 2007-02-06 2008-08-07 Wu Jau-Yet Method for realizing finite field divider architecture
CN101572602A (en) * 2008-04-28 2009-11-04 陈婧 Finite field inversion method and device based on hardware design
CN101788900A (en) * 2009-01-22 2010-07-28 北京大学 Method and system for realizing multiplicative inverse and division mold operation on galois field GF (2n) based on DNA self-assembly technology
CN102521211A (en) * 2011-11-17 2012-06-27 华南理工大学 Parallel device for solving linear equation set on finite field
CN107015782A (en) * 2017-04-12 2017-08-04 深圳职业技术学院 A kind of Galois field multiplier based on irreducible trinomial
US20170272237A1 (en) * 2007-12-28 2017-09-21 Intel Corporation Instructions and logic to provide general purpose gf(256) simd cryptographic arithmetic functionality

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US4994995A (en) * 1990-03-14 1991-02-19 International Business Machines Corporation Bit-serial division method and apparatus
CN1688121A (en) * 2005-06-16 2005-10-26 北京中星微电子有限公司 AES add decipher circuit optimization method and multiplex sbox module
US20080189346A1 (en) * 2007-02-06 2008-08-07 Wu Jau-Yet Method for realizing finite field divider architecture
US20170272237A1 (en) * 2007-12-28 2017-09-21 Intel Corporation Instructions and logic to provide general purpose gf(256) simd cryptographic arithmetic functionality
CN101572602A (en) * 2008-04-28 2009-11-04 陈婧 Finite field inversion method and device based on hardware design
CN101788900A (en) * 2009-01-22 2010-07-28 北京大学 Method and system for realizing multiplicative inverse and division mold operation on galois field GF (2n) based on DNA self-assembly technology
CN102521211A (en) * 2011-11-17 2012-06-27 华南理工大学 Parallel device for solving linear equation set on finite field
CN107015782A (en) * 2017-04-12 2017-08-04 深圳职业技术学院 A kind of Galois field multiplier based on irreducible trinomial

Non-Patent Citations (3)

* Cited by examiner, † Cited by third party
Title
ATHAR MAHBOOB等: "Faster polynomial basis finite field squaring and inversion for GF(2m) with cryptographic software application", 《2008 INTERNATIONAL SYMPOSIUM ON BIOMETRICS AND SECURITY TECHNOLOGIES》 *
张学颖: "对称密码有限域运算模块可重构设计技术研究", 《中国优秀硕士学位论文全文数据库(电子期刊)》 *
易海博: "有限域运算和多变量公钥密码硬件的优化和设计", 《中国博士学位论文全文数据库 信息科技辑》 *

Cited By (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108874367A (en) * 2018-06-29 2018-11-23 深圳职业技术学院 Compound finite field inverter based on power operation and inversion method thereof
CN108897526A (en) * 2018-06-29 2018-11-27 深圳职业技术学院 A kind of compound finite field inverter and its inversion technique based on multiple square operation
CN108874367B (en) * 2018-06-29 2022-05-13 深圳职业技术学院 A Composite Finite Field Inverter Based on Power Operation and Its Inverting Method

Also Published As

Publication number Publication date
CN108008934B (en) 2021-09-07

Similar Documents

Publication Publication Date Title
CN101782845B (en) A high-speed computing device and method for elliptic curve cryptography
CN103942028B (en) Apply large integer multiplication operation method and device in cryptographic technique
US8862651B2 (en) Method and apparatus for modulus reduction
CN103793199B (en) A kind of fast rsa password coprocessor supporting dual domain
CN107015782A (en) A kind of Galois field multiplier based on irreducible trinomial
CN103942031A (en) Elliptic domain curve operational method and elliptic domain curve arithmetic unit
CN102314330B (en) Composite finite field multiplier
Yan et al. An implementation of Montgomery modular multiplication on FPGAs
CN108008934A (en) A kind of compound finite field inversions device based on look-up table
CN107885486A (en) A kind of compound finite field inversions device based on search tree
CN106951210B (en) A Finite Field Multiplication Device Based on Cardiac Array
CN202217262U (en) A Composite Finite Field Multiplier
CN104699452A (en) Modular multiplier for realizing variable bit wide under prime field GF (P)
CN108874367B (en) A Composite Finite Field Inverter Based on Power Operation and Its Inverting Method
CN108897526B (en) Compound finite field inverter based on multiple square operations and inversion method thereof
CN102646033B (en) Provide implementation method and the device of the RSA Algorithm of encryption and signature function
CN103023659A (en) ECC (elliptic curve cryptosystem) encryption hardware device with expandable parameter bit width
US12217018B2 (en) Method and architecture for performing modular addition and multiplication sequences
Rahimzadeh et al. Radix-4 implementation of redundant interleaved modular multiplication on FPGA
CN109358836B (en) A Table Structure-Based Composite Field Division Device
CN208689565U (en) A Composite Finite Field Inverter
CN108874365A (en) A kind of finite field inverter and finite field inversions method based on irreducible trinomial
CN206224471U (en) A kind of Solving Linear device based on finite field
CN104750457B (en) A kind of data processing method and device based on Montgomery Algorithm
CN208766637U (en) A kind of finite field inverter

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant