SAECHAM: Secure and Efficient Lightweight Block Cipher CHAM Variant

IF 8.9 1区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Internet of Things Journal Pub Date : 2025-03-13 DOI:10.1109/JIOT.2025.3569746

Myoungsu Shin;Hanbeom Shin;Insung Kim;Sunyeop Kim;Dongjae Lee;Deukjo Hong;Jaechul Sung;Seokhie Hong

{"title":"SAECHAM: Secure and Efficient Lightweight Block Cipher CHAM Variant","authors":"Myoungsu Shin;Hanbeom Shin;Insung Kim;Sunyeop Kim;Dongjae Lee;Deukjo Hong;Jaechul Sung;Seokhie Hong","doi":"10.1109/JIOT.2025.3569746","DOIUrl":null,"url":null,"abstract":"The addition, rotation, XOR (ARX) structure, which comprises three fundamental operations—Addition, Rotation, and XOR—makes it well-suited for lightweight cryptography. To design a secure and efficient ARX cipher, it is necessary to find the optimal structure by properly combining the order, number of operations, and rotation amounts. <inline-formula> <tex-math>$\\textsf {CHAM64}$ </tex-math></inline-formula> is an ARX block cipher with a 64-bit block size, which is proposed as an attempt to enhance the lightweight characteristics of <inline-formula> <tex-math>$\\textsf {LEA}$ </tex-math></inline-formula>. In this article, we present secure and efficient <inline-formula> <tex-math>$\\textsf {CHAM}$ </tex-math></inline-formula> (<inline-formula> <tex-math>$\\textsf {SAECHAM}$ </tex-math></inline-formula>), a variant of <inline-formula> <tex-math>$\\textsf {CHAM64}$ </tex-math></inline-formula> with a rearranged order of operations and adjusted rotation amounts. By changing the order of the operations in <inline-formula> <tex-math>$\\textsf {CHAM64}$ </tex-math></inline-formula>, six different <inline-formula> <tex-math>$\\textsf {CHAM}$ </tex-math></inline-formula>-like structures can be created. We propose the properties that can be eliminated in the implementation process depending on the rotation amount in each structure. To improve suitability for constrained environments, such as 8-bit and 16-bit microcontrollers, we reduce the search space for rotation amounts and analyze the number of instructions. Using an SMT solver-based automatic search method, we analyze the security of <inline-formula> <tex-math>$62 \\; \\textsf {CHAM64}$ </tex-math></inline-formula> variants through differential and linear analysis. Among them, we find four variants with equal or better resistance to differential and linear cryptanalysis compared to <inline-formula> <tex-math>$\\textsf {CHAM64}$ </tex-math></inline-formula>. As a result, we propose the variant with the fewest instructions among them as <inline-formula> <tex-math>$\\textsf {SAECHAM}$ </tex-math></inline-formula>. Through software implementations on 8-bit AVR, 16-bit MSP430, 32-bit ARM Cortex-M3 and Cortex-M4 platforms, we demonstrate that <inline-formula> <tex-math>$\\textsf {SAECHAM}$ </tex-math></inline-formula> is efficient in terms of encryption speed and also performs efficiently when implemented using SIMD operations in high-performance CPUs.","PeriodicalId":54347,"journal":{"name":"IEEE Internet of Things Journal","volume":"12 15","pages":"29989-30002"},"PeriodicalIF":8.9000,"publicationDate":"2025-03-13","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Internet of Things Journal","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/11003085/","RegionNum":1,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

Abstract

The addition, rotation, XOR (ARX) structure, which comprises three fundamental operations—Addition, Rotation, and XOR—makes it well-suited for lightweight cryptography. To design a secure and efficient ARX cipher, it is necessary to find the optimal structure by properly combining the order, number of operations, and rotation amounts.

$\textsf {CHAM64}$

is an ARX block cipher with a 64-bit block size, which is proposed as an attempt to enhance the lightweight characteristics of

$\textsf {LEA}$

. In this article, we present secure and efficient

$\textsf {CHAM}$

(

$\textsf {SAECHAM}$

), a variant of

$\textsf {CHAM64}$

with a rearranged order of operations and adjusted rotation amounts. By changing the order of the operations in

$\textsf {CHAM64}$

, six different

$\textsf {CHAM}$

-like structures can be created. We propose the properties that can be eliminated in the implementation process depending on the rotation amount in each structure. To improve suitability for constrained environments, such as 8-bit and 16-bit microcontrollers, we reduce the search space for rotation amounts and analyze the number of instructions. Using an SMT solver-based automatic search method, we analyze the security of

$62 \; \textsf {CHAM64}$

variants through differential and linear analysis. Among them, we find four variants with equal or better resistance to differential and linear cryptanalysis compared to

$\textsf {CHAM64}$

. As a result, we propose the variant with the fewest instructions among them as

$\textsf {SAECHAM}$

. Through software implementations on 8-bit AVR, 16-bit MSP430, 32-bit ARM Cortex-M3 and Cortex-M4 platforms, we demonstrate that

$\textsf {SAECHAM}$

is efficient in terms of encryption speed and also performs efficiently when implemented using SIMD operations in high-performance CPUs.

查看原文本刊更多论文

SAECHAM：安全高效的轻量级分组密码CHAM变体

加法、旋转、异或（ARX）结构包含三个基本操作——加法、旋转和异或，这使得它非常适合轻量级加密。为了设计一个安全高效的ARX密码，需要将顺序、操作次数和旋转次数合理结合，找到最优结构。$\textsf {CHAM64}$是一个64位块大小的ARX块密码，它是为了增强$\textsf {LEA}$的轻量级特性而提出的。在本文中，我们介绍了安全高效的$\textsf {CHAM}$ ($\textsf {SAECHAM}$)，它是$\textsf {CHAM64}$的一个变体，具有重新排列的操作顺序和调整的旋转量。通过改变$\textsf {CHAM64}$中的操作顺序，可以创建六个不同的$\textsf {CHAM}$类结构。我们根据每个结构的旋转量提出在实施过程中可以消除的属性。为了提高对受限环境的适用性，例如8位和16位微控制器，我们减少了旋转量的搜索空间并分析了指令的数量。采用基于SMT求解器的自动搜索方法，对$62 \的安全性进行了分析；\textsf {CHAM64}$变量通过微分和线性分析。其中，我们发现与$\textsf {CHAM64}$相比，有四个变体具有相同或更好的差分和线性密码分析抗性。因此，我们建议其中指令最少的变体为$\textsf {SAECHAM}$。通过在8位AVR， 16位MSP430, 32位ARM Cortex-M3和Cortex-M4平台上的软件实现，我们证明了$\textsf {SAECHAM}$在加密速度方面是高效的，并且在高性能cpu上使用SIMD操作实现时也是高效的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

IEEE Internet of Things Journal Computer Science-Information Systems

CiteScore

17.60

自引率

13.20%

发文量

1982

期刊介绍： The EEE Internet of Things (IoT) Journal publishes articles and review articles covering various aspects of IoT, including IoT system architecture, IoT enabling technologies, IoT communication and networking protocols such as network coding, and IoT services and applications. Topics encompass IoT's impacts on sensor technologies, big data management, and future internet design for applications like smart cities and smart homes. Fields of interest include IoT architecture such as things-centric, data-centric, service-oriented IoT architecture; IoT enabling technologies and systematic integration such as sensor technologies, big sensor data management, and future Internet design for IoT; IoT services, applications, and test-beds such as IoT service middleware, IoT application programming interface (API), IoT application design, and IoT trials/experiments; IoT standardization activities and technology development in different standard development organizations (SDO) such as IEEE, IETF, ITU, 3GPP, ETSI, etc.