Presentation
Gypsophila: A Scalable and Bandwidth-Optimized Multi-Scalar Multiplication Architecture
SessionHardware Security Primitives
DescriptionMulti-Scalar Multiplication (MSM) is a fundamental cryptographic
primitive, which plays a crucial role in Zero-knowledge proof systems.
In this paper, we optimize the single MSM Process Element
(PE) utilizing buckets with fewer conflicts, enhanced by Greedy-based
scheduling, to achieve higher efficiency. The evaluation results
show our optimized single MSM PE achieving a speedup of
over two times on average, peaking at 3.63 times compared to previous
works. Furthermore, we introduce Gypsophila, a scalable
and bandwidth-optimized architecture for implementing multiple
MSM PEs. Leveraging the characteristics of the bucket method,
we optimize the data flow by balancing the throughput of bucket
classification, bucket aggregation, and result aggregation in MSM.
Simultaneously, multiple PEs with different data access patterns
share a universal point input channel and post-processing unit,
which improves the module utilization and mitigates the bandwidth
pressure. Gypsophila with 16 PEs, accomplishes 16 MSM tasks in
a mere 1.01% additional time, showcasing an approximate 7.8% reduction
in area, with only about 1/16 of the bandwidth requirement,
compared with 16 PEs without input channel and post-process unit
sharing.
primitive, which plays a crucial role in Zero-knowledge proof systems.
In this paper, we optimize the single MSM Process Element
(PE) utilizing buckets with fewer conflicts, enhanced by Greedy-based
scheduling, to achieve higher efficiency. The evaluation results
show our optimized single MSM PE achieving a speedup of
over two times on average, peaking at 3.63 times compared to previous
works. Furthermore, we introduce Gypsophila, a scalable
and bandwidth-optimized architecture for implementing multiple
MSM PEs. Leveraging the characteristics of the bucket method,
we optimize the data flow by balancing the throughput of bucket
classification, bucket aggregation, and result aggregation in MSM.
Simultaneously, multiple PEs with different data access patterns
share a universal point input channel and post-processing unit,
which improves the module utilization and mitigates the bandwidth
pressure. Gypsophila with 16 PEs, accomplishes 16 MSM tasks in
a mere 1.01% additional time, showcasing an approximate 7.8% reduction
in area, with only about 1/16 of the bandwidth requirement,
compared with 16 PEs without input channel and post-process unit
sharing.
Event Type
Research Manuscript
TimeWednesday, June 264:00pm - 4:15pm PDT
Location3012, 3rd Floor
Security
Hardware Security: Primitives, Architecture, Design & Test