Paper 2013/428

Faster 128-EEA3 and 128-EIA3 Software

Roberto Avanzi and Billy Bob Brumley

Abstract

The 3GPP Task Force recently supplemented mobile LTE network security with an additional set of confidentiality and integrity algorithms, namely 128-EEA3 and 128-EIA3 built on top of ZUC, a new keystream generator. We propose two novel techniques to improve the software performance of these algorithms. We show how delayed modular reduction increases the efficiency of the LFSR feedback function, yielding performance gains for ZUC and thus both 128-EEA3 and 128-EIA3. We also show how to leverage carryless multiplication to evaluate the universal hash function making up the core of 128-EIA3. Our software implementation results on Qualcomm's Hexagon DSP architecture indicate significant performance gains when employing these techniques: up to roughly a 2-fold and 2.5-fold throughput improvement for 128-EEA3 and 128-EIA3, respectively.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published elsewhere. Unknown where it was published
Keywords
Stream ciphersuniversal hash functionsZUC128-EEA3128-EIA3carryless multiplicationLTE
Contact author(s)
bbb @ qti qualcomm com
History
2013-07-03: received
Short URL
https://ia.cr/2013/428
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2013/428,
      author = {Roberto Avanzi and Billy Bob Brumley},
      title = {Faster 128-EEA3 and 128-EIA3 Software},
      howpublished = {Cryptology ePrint Archive, Paper 2013/428},
      year = {2013},
      note = {\url{https://eprint.iacr.org/2013/428}},
      url = {https://eprint.iacr.org/2013/428}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.