Impact of Cipher-Core Selection on XTS-based Secure Network-Attached Storage Systems: A Comparison Study of MKV and AES
DOI:
https://doi.org/10.54654/isj.v1i27.4042Keywords:
Network-Attached Storage (NAS), FieldProgrammable Gate Array (FPGA), MKV block cipher, hardware encryption, data-at-rest protection, real-time processing, cryptographic IP core, SATA interfaceTóm tắt
The linear layer is a fundamental building block of substitution-permutation network (SPN) based ciphers, responsible for the diffusion of differences and linear masks across the state. In this paper, we analyze and evaluate several lightweight linear layers through the lens of branch number theory, focusing on constructions that rely solely on XOR operations and cyclic rotations, such as the Column Parity Mixer (CPM), the Twin Column Parity Mixer (TCPM), the Symmetric Twin Column Parity Mixer (STCPM), and the Multiple Rows Mixer (MRM). Based on these analyses, we propose new linear layers that achieve higher branch numbers while requiring fewer XOR operations than existing designs. We then evaluate the proposed constructions when instantiated in Ascon-like permutations operating on a 5 x 64-bit state, comparing Ascon, Gaston, Gaston-S, and Hsilu in terms of trail weight bounds. Our results confirm that the proposed linear layers achieve: a column differential branch number 7 at 2.8 XOR/bit (Construction 1), branch number 7 with improved linear resistance at 3 XOR/bit (Construction 2), and branch number 17 at 4 XOR/bit (Construction 3). In particular, the final structure provides a substantially higher column branch number compared to TCPM and STCPM at a similar XOR implementation cost.
Downloads
References
S. An and S. C. Seo, "Designing a New XTS-AES Parallel Optimization Implementation Technique for Fast File Encryption," IEEE Access, vol. 10, 2022.
A. Alhomoud, "Real Time FPGA Implementation of a High Speed for Video Encryption and Decryption System with High Level Synthesis Tools," IJACSA, vol. 15, no. 1, 2024.
A. Alhomoud, "Real Time FPGA Implementation of a High Speed for Video Encryption and Decryption System with High Level Synthesis Tools," IJACSA, vol. 15, no. 1, 2024.
National Institute of Standards and Technology (NIST), “FIPS PUB 197: Advanced Encryption Standard (AES)” Nov. 2001.
S. Gueron, “Intel Advanced Encryption Standard (AES) Instructions Set,” Intel White Paper, 2010.
T. Good and M. Benaissa, “AES on FPGA-from the fastest to the smallest,” in CHES, Springer, pp. 427–440, 2005.
O. Kocher, J. Jaffe, and B. Jun, “Differential Power Analysis,” in CRYPTO’99, pp. 388–397, 1999.
L. K. Grover, “A fast quantum mechanical algorithm for database search,” in STOC’96, ACM, pp. 212–219, 1996.
Cuong Nguyen, Anh Nguyen, Phong Trieu, Long Nguyen, and Lai Tran, "Analysis of a new practically secure SPN-based scheme in the Luby-Rackoff model" in The 9th International Conference on Future Data and Security Engineering, 2022.
T. S. Nam, N. V. Long, N. B. Cuong, “An Optimized Bit-Slice Implementation of Secure 8-Bit Sbox,” in IEEE KSE, 2023.
T. S. Nam et al., “A High Throughput, Low Latency 105 Gbps Four-Pipeline Stage AES”, Journal of Information Security Science and Technology, vol 1. no. 21, pp.58-66, 2024. DOI: 10.54654/isj.v1i21.1029.
N. B. Cuong et al., “FLC: a new secure and practical SPN-based scheme,” in NAFOSTED NICS, IEEE, 2022.
Internal Evaluation Report of MKV FPGA Testbench, Government Cipher Committee, 2023.
H. V. Thuc and N. B. Cuong, “Selected Results in the Development of Civil Block Cipher Standards,” Vietnam Cipher Journal, no. 4, pp. 9 -12, 2022.
TCVN 14263-2024: Information technology – Security techniques – MKV block cipher algorithm.
N. Q. Toan and N. B. Cuong, “Development of “Make in Vietnam’ Civil Cryptography Standards”, Journal of Information Security, no. 2, 2023.
T. S. Nam, N. V. Long, and N. B. Cuong, “Bit-Slice Implementation of Secure 8-Bit Sbox,” in IEEE KSE, 2023.
Draft Technical Specification of MKV, Government Cipher Committee, 2023.
Luong, T. T., “Building the dynamic diffusion layer for SPN block ciphers based on direct exponent and scalar multiplication”, Journal of Science and Technology on Information Security, vol 1, no 15, pp. 38-45, 2022.
T. S. Nam, N. V. Long, N. B. Cuong, “An efficient and secure linear diffusion layer for 256-bit block cipher based on FLC structure,” Journal of Science and Technology on Information Security, vol. 2, no. 16, pp. 31-38, 2022. DOI: 10.54654/isj.v1i16.920.
N. B. Cuong et al., “FLC: a secure and practical SPN-based scheme,” in NAFOSTED NICS, IEEE, 2022.
Internal Report: Evaluation of MKV's Cryptanalysis Resistance, Government Cipher Committee, 2023.
L. K. Grover, “A Fast Quantum Mechanical Algorithm for Database Search,” in Proc. of the 28th ACM Symposium on Theory of Computing, 1996.
Tran Van Khanh, Phan Van Ky, Vu Van Viet, “FPGA-Based inline encryption bridge using AES-XTS for storage systems”, Journal of Science and Technology on Information Security, vol 3, no 26. pp 5-17, 2025. DOI: 10.54654/isj.v2i25.1141.
S. Ghosh et al., “Hardware Security in Storage Systems,” IEEE Security & Privacy, vol. 15, no. 5, pp. 60–68, 2017.
T. Good and M. Benaissa, “AES on FPGA from the fastest to the smallest,” in CHES, Springer, pp. 427–440, 2005.
L. K. Grover, “A Fast Quantum Mechanical Algorithm for Database Search,” in Proc. of the 28th Annual ACM Symposium on Theory of Computing, pp. 212–219, 1996.
W. Ali and J. Qadir, "A compact AES encryption core on Xilinx FPGA," in 2009 2nd International Conference on Computer, Control and Communication, Karachi, Pakistan, pp. 1-4, 2009.
U. Khalid, M. A. Imran, and M. I. Abbas, "A compact and efficient AES-32GF for encryption in small IoT devices," Multimedia Tools and Applications, vol. 83, pp. 10609–10626, 2024.
X. Zhang et al., "VLSI Architecture of S-Box With High Area Efficiency Based on Composite Field Arithmetic," IEEE Transactions on Circuits and Systems II: Express Briefs, vol. 69, no. 3, pp. 1597-1601, 2022.
Downloads
Published
How to Cite
Issue
Section
License
Open Access Policy
The Journal of Science and Technology on Information Security provides open access to its published articles to broaden opportunities for high-quality research findings to be available and widely disseminated free of charge, contributing to the greater exchange of knowledge.
Open access statement: CTUJoS permits everyone to read, download, copy, distribute, print, search, or link to the full texts of the published articles without registration, price barriers, or asking for permission from the Journal or the author.
Proposed Policy for Journals That Offer Delayed Open Access
Authors who publish with this journal agree to the following terms:
1. Authors retain copyright and grant the journal right of first publication, with the work [SPECIFY PERIOD OF TIME] after publication simultaneously licensed under a Creative Commons Attribution License that allows others to share the work with an acknowledgement of the work's authorship and initial publication in this journal.
2. Authors are able to enter into separate, additional contractual arrangements for the non-exclusive distribution of the journal's published version of the work (e.g., post it to an institutional repository or publish it in a book), with an acknowledgement of its initial publication in this journal.
3. Authors are permitted and encouraged to post their work online (e.g., in institutional repositories or on their website) prior to and during the submission process, as it can lead to productive exchanges, as well as earlier and greater citation of published work (See The Effect of Open Access).
