WIESS 2000 Abstract
A Fast Implementation of DES and Triple-DES on PA-RISC 2.0
Francisco Corella, Hewlett-Packard Co.
Abstract
Encryption is an essential tool for protecting the confidentiality of data. Network security protocols such as SSL or IPSec use encryption to
protect Internet traffic from eavesdropping. Encryption is also used to protect sensitive data before it is stored on non-secure disks or tapes.
Encryption, however, is computationally expensive. A computer server that must encrypt data for thousands of clients before sending it over
the network can easily become crypto-bound. The capacity of the server is then determined by the speed at which it can perform encryption.
This is especially the case when slow encryption protocols such as the Digital Encryption Standard (DES) or Triple-DES are employed. Since
DES and Triple-DES are very widely used, it is important to optimize the performance of these algorithms.
We describe an implementation of DES and Triple-DES in PA-RISC 2.0 assembly language that outperforms other practical (non bit-sliced)
implementations by large margins. It is based on a technique due to Eli Biham of the Technion that takes advantage of 64-bit registers, with
substantial improvements developed at Hewlett Packard.
We assume that the reader is familiar with the details of DES and Triple-DES, which are described in [1].
- View the full text of this paper in
HTML form, and
PDF form.
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
- To become a USENIX Member, please see our Membership Information.
|