Optimizing Dilithium Implementation with AVX2/-512
-
Published:2024-09-11
Issue:6
Volume:23
Page:1-30
-
ISSN:1539-9087
-
Container-title:ACM Transactions on Embedded Computing Systems
-
language:en
-
Short-container-title:ACM Trans. Embed. Comput. Syst.
Author:
Xu Runqing1ORCID,
He Debiao1ORCID,
Luo Min1ORCID,
Peng Cong1ORCID,
Zeng Xiangyong1ORCID
Affiliation:
1. Wuhan University, Wuhan, China
Abstract
Dilithium is a signature scheme that is currently being standardized to the Module-Lattice-Based Digital Signature Standard by NIST. It is believed to be secure even against attacks from large-scale quantum computers based on lattice problems. The implementation efficiency is important for promoting the migration of current cryptography algorithms to post-quantum cryptography algorithms. In this article, we optimize the implementation of Dilithium with several new approaches proposed. Firstly, we improve the efficiency of parallel NTT implementations. The overhead of shuffling operations is reduced in our implementations, and fewer loading instructions are invoked for the precomputations. Then, we optimize the sampling and bit-packing of polynomial coefficients in Dilithium. We can handle double the number of coefficients within one register using a new approach for the sampling of secret key polynomials. The approaches proposed in this article are applicable to implementations under AVX2 and AVX-512 instruction sets. Take Dilithium2 as an illustration, our AVX2 implementation demonstrates improvements of 22.7%, 16.9%, and 13.5% for KeyGen, Sign, and Verify compared with the previous implementation.
Funder
National Key Research and Development Program of China
National Natural Science Foundation of China
New 20 Project of Higher Education of Jinan
Innovation Group Project of the Natural Science Foundation of Hubei Province
Fundamental Research Funds for the Central Universities
Publisher
Association for Computing Machinery (ACM)
Reference38 articles.
1. Fast and Clean: Auditable high-performance assembly via constraint solving
2. Faster Kyber and Dilithium on the Cortex-M4
3. Erdem Alkim, Léo Ducas, Thomas Pöppelmann, and Peter Schwabe. 2016. Post-quantum key exchange - a new hope. In 25th USENIX Security Symposium, USENIX Security 16, Austin, TX, USA, August 10-12, 2016, Thorsten Holz and Stefan Savage (Eds.). USENIX Association, 327–343. Retrieved from https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/alkim
4. Dor Mariel Alter Peter Schwabe and Joan Daemen. 2021. Optimizing the NIST post quantum candidate SPHINCS+ using AVX-512.
5. Protecting Dilithium against Leakage