# International Journal of Innovative Research in Computer and Communication Engineering 

(An ISO 3297: 2007 Certified Organization)
Vol. 3, Issue 8, August 2015

# Reconfigurable Hardware Implementation of Advanced Crypto System for Secured Communication 

Meenu Joy, Aby Mathew<br>PG Student, Dept. of ECE, SNGCE, Kadayiruppu, MG University, Kerala, India ${ }^{1}$<br>Assistant Professor, Dept. of ECE, SNGCE, Kadayiruppu, MG University, Kerala, India ${ }^{2}$


#### Abstract

This paper proposes the implementation of high speed crypto system for secured communication that is hard to crack and improve the safety of data communicated. S-box that uses the combinational logic is introduced in this paper to improving the system computing speed instead of using ROM based LUTs. In this paper we synthesize both the S-boxes and compare the performance. Comparison shows that S-box using the combinational logic is faster. It is very efficient in terms of memory consumption. Using this method of encryption the data could be protected effectively.


KEYWORDS : Add round key, Advanced Encryption Standard, Key expansion, Mix column, S-box, Shift row.

## I. INTRODUCTION


#### Abstract

Wireless communication has become an inevitable thing in the present world.Confidentiality, access control, authentication and integrity are the important concern of the wireless communication.Federal department and other government agencies, electronic financial transactions, secure video surveillance systems etc. require protection of the data being transmitted through internet or any other kind of wireless medium from different type of malwares, third party attacks and various eavesdropping. Cryptography is such a kind of method that provides protection to the data communicated. It is the art of transforming confidential information into information which is incoherent to a third party. The confidentialinformation is encrypted before transmission of the message and decrypted upon receipt using same secret keys.


In this paper we propose an advanced crypto system for the protection of data being communicated. It is a symmetric encryption system that uses the same private key for both encryption and decryption of data. The proposed crypto system replaces the existing S-box that is pre-computed values stored in a ROM based LUTs with an S-box that uses combinational logic [2]. We implement it on FPGA of family Spartan 6.

The rest parts of this paper are organized as follows: Section II describes the related works regarding the encryption method. In Section III, we presented an overview of encryption process.Section IV describes the new design method for S-box is proposed to solve the delay and boosting up the system. Section V describes the decryption process. VI presents results and comparison of both the method. Finally, we draw our conclusion in Section VII.

## II. RELATED WORKS

Cryptography plays a significant role to maintain the integrityand confidentiality of the data being communicated. Manyexistingstandard encryption algorithms and authentication schemes are available to efficiently defend against possiblethreats. The major classifications are symmetric cryptographies such as DES (Data EncryptionStandard), Triple DES, AES (Advanced Encryption Standard), and asymmetric cryptography or public key encryption.

# International Journal of Innovative Research in Computer and Communication Engineering 

## (An ISO 3297: 2007 Certified Organization)

## Vol. 3, Issue 8, August 2015

Asymmetric cryptography or public key encryption [3], use public key for encryption and private key for decryption. It is based on some complicated mathematics. Also the computer has to work very hard and large quantities of encrypted data make the system to be very slow.

Symmetric cryptographies such as DES (Data EncryptionStandard), Triple DES, AES (Advanced Encryption Standard) use the same private key to encrypt and decrypt a message. The Data EncryptionStandard [4], converts the plain text into cipher text by means of some permutation and substitution. Its key size is too small and so is easy to crack. Also short block size. It is a slower process and takes computer processor time.Triple DESadvanced version of DES, the DES cipher algorithm is applied three times to each data block. This would increase the key size of triple DES by 168 bits. But it is slow, especially in software. It is susceptible to cryptanalysis and small block size.Advanced Encryption Standard[1] also uses the same private key to encrypt and decrypt a message. It is a combination of both substitution and permutation. This is fast in both software and hardware as well. It is more secure and is less susceptible to cryptanalysis. It supports larger key sizes and block size makes it less open to attacks.

Another type of encryption method is the dynamic secret based encryption [5], which generates a shared symmetric secret key using transmission errors and other random factors. Then we monitor the error retransmission to select a group of frames and these frames are hashed into dynamic secret to encrypt the data. In this method unreliability is more when compared to other algorithms. Also the dynamic Key changing is very slow.

## III. OVERVIEW OF ENCRYPTION

Figure 3.1 shows the overview of encryption. The encryption process start by applying the plain text of 128 bit that is to be communicated over the network and secret key of 128 bit. Key size used specifies number of repetitions of transformation rounds that convert plaintext into the cipher text. Table I shows the number of repetitions of transformation rounds. Each round consists of several processing steps.

TABLE I
Number of repetitions of transformation rounds

| Key size | No. of rounds |
| :---: | :---: |
| 128 | 10 |
| 192 | 12 |
| 256 | 14 |

## International Journal of Innovative Research in Computer and Communication Engineering

(An ISO 3297: 2007 Certified Organization)
Vol. 3, Issue 8, August 2015


### 3.1 Overview of encryption process

The data block of 4 columns of 4 bytes which is called as state is applied as the input plain text. It undergoes 10 rounds of transformation and we get the cipher text at the transmitter side. Then we will send this cipher text to the receiver side and there it is decrypted back to the plain text using the same private key. Among the 10 rounds, 9 rounds in which state undergoes byte substitution, shift rows, mix columns, add round key.

Last round has no mixcolumn. Also add round key is the only stage that uses the secret key. The key is expanded into array of 32 -bit words. Among that 4 words form round key in each round.

## A. SUBSTITUTE BYTES

This stage of transformation is a table of $16 \times 16$ bytescontaining a permutation of all 2568 -bit values. The table II shows the S-box. This S-box is a pre-computed values stored in a ROM based LUTs. It is designed to be resistant to all known attacks. Also it provides nonlinearity in cipher text.

## International Journal of Innovative Research in Computer and Communication Engineering

(An ISO 3297: 2007 Certified Organization)

## Vol. 3, Issue 8, August 2015

TABLE II
S-box pre-computed values stored in ROM based LUTs

|  | $\mathbf{0}$ | $\mathbf{1}$ | $\mathbf{2}$ | $\mathbf{3}$ | $\mathbf{4}$ | $\mathbf{5}$ | $\mathbf{6}$ | $\mathbf{7}$ | $\mathbf{8}$ | $\mathbf{9}$ | $\mathbf{a}$ | $\mathbf{b}$ | $\mathbf{c}$ | $\mathbf{d}$ | $\mathbf{e}$ | $\mathbf{f}$ |
| :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: | :---: |
| $\mathbf{0 0}$ | 63 | 7 c | 77 | 7 b | f 2 | 6 b | 6 f | c 5 | 30 | 01 | 67 | 2 b | fe | d 7 | ab | 76 |
| $\mathbf{1 0}$ | ca | 82 | c 9 | 7 d | fa | 59 | 47 | f 0 | ad | d 4 | a 2 | af | 9 c | a 4 | 72 | c 0 |
| $\mathbf{2 0}$ | b 7 | fd | 93 | 26 | 36 | 3 f | f 7 | cc | 34 | a 5 | e 5 | f 1 | 71 | d 8 | 31 | 15 |
| $\mathbf{3 0}$ | 04 | c 7 | 23 | c 3 | 18 | 96 | 05 | 9 a | 07 | 12 | 80 | e 2 | eb | 27 | b 2 | 75 |
| $\mathbf{4 0}$ | 09 | 83 | 2 c | 1 a | 1 b | 6 e | 5 a | a 0 | 52 | 3 b | d 6 | b 3 | 29 | e 3 | 2 f | 84 |
| $\mathbf{5 0}$ | 53 | d 1 | 00 | ed | 20 | fc | b 1 | 5 b | 6 a | cb | be | 39 | 4 a | 4 c | 58 | cf |
| $\mathbf{6 0}$ | d 0 | ef | aa | fb | 43 | 4 d | 33 | 85 | 45 | f 9 | 02 | 7 f | 50 | 3 c | 9 f | a 8 |
| $\mathbf{7 0}$ | 51 | a 3 | 40 | 8 f | 92 | 9 d | 38 | f 5 | bc | b 6 | da | 21 | 10 | ff | f 3 | d 2 |
| $\mathbf{8 0}$ | cd | 0 c | 13 | ec | 5 f | 97 | 44 | 17 | c 4 | a 7 | 7 e | 3 d | 64 | 5 d | 19 | 73 |
| $\mathbf{9 0}$ | 60 | 81 | 4 f | dc | 22 | 2 a | 90 | 88 | 46 | ee | b 8 | 14 | de | 5 e | 0 b | db |
| $\mathbf{a 0}$ | e 0 | 32 | 3 a | 0 a | 49 | 06 | 24 | 5 c | c 2 | d 3 | ac | 62 | 91 | 95 | e 4 | 79 |
| $\mathbf{b 0}$ | e 7 | c 8 | 37 | 6 d | 8 d | d 5 | 4 e | a 9 | 6 c | 56 | f 4 | ea | 65 | 7 a | ae | 08 |
| $\mathbf{c 0}$ | ba | 78 | 25 | 2 e | 1 c | a 6 | b 4 | c 6 | e 8 | dd | 74 | 1 f | 4 b | bd | 8 b | 8 a |
| $\mathbf{d 0}$ | 70 | 3 e | b 5 | 66 | 48 | 03 | f 6 | 0 e | 61 | 35 | 57 | b 9 | 86 | c 1 | 1 d | 9 e |
| $\mathbf{e 0}$ | e 1 | f 8 | 98 | 11 | 69 | d 9 | 8 e | 94 | 9 b | 1 e | 87 | e 9 | ce | 55 | 28 | df |
| $\mathbf{f 0}$ | 8 c | a 1 | 89 | 0 d | bf | e 6 | 42 | 68 | 41 | 99 | 2 d | 0 f | b 0 | 54 | bb | 16 |

## B. SHIFT ROWS

Here we perform a circular byte shift in each row. The first row is kept unchanged. The second row is circularleft shifted by 1 byte. The third row is circularleft shifted by 2 byte. The fourth row is circularleft shifted by 3 byte. This row shifting helps to avoid the columns being linearly independent. Also the AES is degenerated into four independent block ciphers. The decryptionright shift operation.

## C. MIX COLUMNS

In this stage each column is processed separately. Each byte replaced with value that is dependent on all 4 bytes in the entire column.Mix column provides diffusion in the cipher. And make it difficult to crack. This expresses each column as 4 equations too derive each new byte in column. Figure 3.2 shoes how to perform the mix column stage.

## International Journal of Innovative Research in Computer and Communication Engineering

## (An ISO 3297: 2007 Certified Organization)

Vol. 3, Issue 8, August 2015


Fig 3.2 Mix column

## D. ADD ROUND KEY

Here we perform XOR operation of state with 128-bits of the round key. It is designed to be as simple as possible. This is the only step uses the key. Using the key expansion the secret key is expanded and divided into words, which words form round key in each round. Using this round key, add round key stage of transformation in each round is performed.

## E. KEY EXPANSION

The secret key of 128 bit is expanded into array of 4432 -bit words. Among that 4 words form round key in each round. Using this round key, add round key stage of transformation in each round is performed.The key expansion starts by copying the key into first 4 words. Then creating groups of 4 words that depend on values in previous and four places back. The first word in 4 has to undergo rotate, S-box and XOR round constant on previous, before XOR fourth back. The figure 3.3 shows how the key expansion is performed.

## International Journal of Innovative Research in Computer and Communication Engineering

## (An ISO 3297: 2007 Certified Organization)

Vol. 3, Issue 8, August 2015


Fig 3.3 key expansion

## IV. PROPOSED S-BOX

Existing S-box is a pre-computed values stored in a ROM based LUTs [1]. It has an unbreakable delay due to fixed access time for its read and write operation. Also it is expensive in terms of hardware. So we replace the ROM based LUTs with a combinational logic [2].

Here the SubByteis computed by taking the multiplicative inverse in $\operatorname{GF}\left(2^{8}\right)$ followed by an affine transformation. For its reverse, the InvSubByte transformation, the inverse affine transformation is applied first prior to computing the multiplicative inverse. The Affine Transformation and its inverse [2] can be represented in matrix form and it is shown below.


# International Journal of Innovative Research in Computer and Communication Engineering 

(An ISO 3297: 2007 Certified Organization)

## Vol. 3, Issue 8, August 2015



Here vector ais the multiplicative inverse of the input byte from the state array.Byte representing a $\mathrm{GF}\left(2^{8}\right)$ element can be viewed as coefficients to each power term. For example, $\{10001011\} 2$ is representing the polynomial $q 7+q 3+$ $q+1$ in $\operatorname{GF}\left(2^{8}\right)$.

Computation of the multiplicative inverse cannot be directly applied to an element.It has to be mapped to its composite field representation via an isomorphic function, $\delta$.Likewise, after performing the multiplicative inversion, the result will also have to be mapped back from its composite field representation to its equivalent in $\operatorname{GF}\left(2^{8}\right)$ via the inverse isomorphic function $\delta^{-1}$. Both $\delta$ and $\delta^{-1}$ can be represented as an $8 \times 8$ matrix [2].

Let q be the element in $\operatorname{GF}\left(2^{8}\right)$, then the isomorphic mappings and its inverse can be written as $\delta^{*} \mathrm{q}$ and $\delta^{-1 *} \mathrm{q}$, which is a case of matrix multiplication as shown below, where q 7 is the most significant bit and q 0 is the least significant bit.


## V. RESULT

Advanced crypto system is synthesized in Xilinx using Verilog programming language and implementedon FPGA of family Spartan 6. A 128 bit encryption anddecryption is implemented and a comparison is made with S-box using ROM based LUTs and combinational logic.

Table III shows the performance comparison of crypto system with S-box using ROM based LUTs and combinational logic. From the table we can see that the number of slices LUTs have been reduced to half and the IO used is also reduced. And also we can see a significant reduction in delay. Delay reduced implies the speed of the system. While we are using the pre-computed values stored in a ROM based LUTs, there will be an unbreakable delay due to fixed access time for its read and write operation. The delay is reduced to around $58 \%$ and the memory utilization is also reduced. Since it is independent of clock, the process doesn't have to wait for the clock. It also improves the speed of the proposed system.

# International Journal of Innovative Research in Computer and Communication Engineering 

(An ISO 3297: 2007 Certified Organization)

## Vol. 3, Issue 8, August 2015

TABLE III
Performance comparison of crypto system with S-box using rom based LUTs and combinational logic.

| Crypto system | No. of Slices <br> LUTs <br> (Out of 9112) | No. of IO | (Out of 232) | Delay |
| :---: | :---: | :---: | :---: | :---: |
| (ns) | Memory Usage |  |  |  |
| (KB) |  |  |  |  |
| Using ROM | 65 | 19 | 15.099 | 256036 |
| Using <br> Combinational <br> Logic | 33 | 16 | 8.781 | 204372 |

## VI. CONCLUSION

In this paper high speed crypto system for secured communication is proposed using S -box that uses the combinational logic. We implemented the crypto system using both the S -box whose pre-computed values stored in a ROM based LUTs and combinational logic. Implementation results show that S-box that uses the combinational logic is more effective in terms of speed, memory and device utilization. Also it clock independent.Advanced crypto system can be used in application were speed and memory is given more importance.

## REFERENCES

1. Vedkiran Saini, ParvinderBangar, Harjeet Singh Chauhan "Study and Literature Survey of Advanced Encryption Algorithm for Wireless Application", International Journal of Emerging Science and Engineering, ISSN: 2319-6378, Volume2, Issue-6, April 2014.
2. Edwin NC Mui, Custom R \& D Engineer, Texco Enterprise Ptd. Ltd. "Practical Implementation of Rijndael S-Box Using Combinational Logic".
3. S. Nguyen and C. Rong, "ZigBee security using identity-based cryptography autonomic and trusted computing," in Proc. 4th Int. Conf. Autonomic Trusted Comput. (ATC'07), 2007, vol. 4610, Lecture Notes in Computer Science, pp. 3-12.
4. Davis, R. Secretary of Defence for Research and Engineering "The data encryption standard in perspective", Communications Society Magazine, IEEE (Volume:16 Issue: 6 ), 06 January 2003.
5. Ting liu, yangliu, yashanmao, yao sun, xiaohongguan, Weibo gong and sheng xiao "A dynamic secret-based encryption scheme for Smart grid wireless communication", IEEE transactions on smart grid, vol. 5, no. 3, may 2014.
6. Husheng li, shuping gong, lifenglai, zhuhan, robert c. Qiu and depeng yang "Efficient and secure wireless communications for Advanced metering infrastructure in smart grids", IEEE transactions on smart grid, vol. 3, no. 3, september 2012.
7. Xudongwangand ping yi "Security framework for wireless communications in Smart distribution grid", IEEE transactions on smart grid, vol. 2, no. 4, december 2011.
8. Jinyuexia and yonggewang "Secure key distribution for the smart grid", IEEE transactions on smart grid, vol. 3, no. 3, september 2012
9. Guest editorial Cyber, physical, and system security For smart grid, IEEE transactions on smart grid, vol. 2, no. 4, december 2011.
10. Dapengwu and chi zhou "Fault-tolerant and scalable key Management for smart grid", IEEE transactions on smart grid, vol. 2, no. 2, june 2011.
11. Ye yan, yiqian and hamidsharif "A secure data aggregation and dispatch scheme for home area networks in smart grid", 2011 IEEE transactions on smart grid, vol. 1, no. 1, September 2010
12. Anthony r. Metke and randy l. Ekl "Security technology for smart grid networks", IEEE transactions on smart grid, vol. 1, no. 1, june 2010.
13. Fengjun li, boluo and pengliu "Secure information aggregation for smart grids Using homomorphic encryption", IEEE transactions on smart grid, vol. 1, no. 1, june 2009.

## BIOGRAPHY

Meenu Joy is a PG student in theDept. of ECE,Sree Narayana Gurukulam College of Engineering, Kadayiruppu, Ernakulam, India. She received Bachelor of Engineering (BE) degree in 2013 from Srinivasan Engineering College, Perambalur,Tamil Nadu, India. Her research interest is VLSI.

