[Cryptech Tech] FPGA tasks

[Joachim Strömbergson]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA256

Aloha!

Павел Шатов wrote:
> Joachim, Randy suggested working on ECDSA. Have you already done 
> anything? I think we need to sync to avoid doing duplicate work.

I saw that, and it probably is better to visibly move forward on P256
ECDSA (which is what I've understood we need and was planning to work on.)

I've only just read through the FIPS 186 document and friends, played
around with OpenSSL to generate some test keys etc. I've also searched
through OpenCores as well as looked at some vendors to see what size and
complexity to expect. The short version is that there really aren't that
much available about ecsda cores.

I can gather my notes, but there is little risk of overlap since I
haven't really started. Create a ticket, assign it to yourself and hack
away!


Coming back to the task list I sent last week. We do need to consider
how to handle internal transfer between cores and command handler. And I
think that functionality hooks into the core selector you designed.

What I'm thinking about is that we want to from the CPU be able to say
things like:

(1) Place the hash result for the given data in buffer XYZ.
(2) Sign the contents in buffer XYZ with key ABC

But on a fairly low level. Basically be able to set destination
addresses for hash cores to a set of internal buffers instead of them
having separate ones. And be able to select one of these buffers as
input to modexp and ecdsa. And also connect the modexp and ecdsa to
different keys that are available from within the FPGA.

Fairly dumb stuff, but needs to be architected.

I think we at least need to start draw this on paper and discuss command
set fairly soon(ish).

Any thoughts on this? Rob, Paul?

- -- 
Med vänlig hälsning, Yours

Joachim Strömbergson - Alltid i harmonisk svängning.
========================================================================
 Joachim Strömbergson          Secworks AB          joachim at secworks.se
========================================================================
-----BEGIN PGP SIGNATURE-----
Version: GnuPG/MacGPG2 v2
Comment: GPGTools - http://gpgtools.org
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iQIcBAEBCAAGBQJVK8rKAAoJEF3cfFQkIuyN38IQAIbt09G1nIeT+2siIZLrxtzb
MMgR4ARLYxR+SC0dD0mplCNPiuCQxW+jGsAWxtpCW6dqH1MI4T5Vbi0xJbNhNwnf
vcrU7yi/Q9dVufhnGWyBh0A6XuAuSizAWqn8Ub1/1nCitIeDtRy6Gx2p5thBKIlh
0CW/5/e0sitNSbIsBkT+wdc6TcNSSyudyOiJbyQjGJtpKyM/8kCPxtjxTLW3PVss
Kd4zbayHaZnu3LML/idMrUij/pbba42fRMm0HaSH/0q8cQA2VhOid+ihiU+RzIjx
8K1P+N/KjsiWuS0UMFEbwRhi6qQvxpZfNb6lzofMmH2U9WtA7V4wIERfCQhxqv76
3aMOmSLGKGUEELPPeOXWf1vI5ltPGNIQb4paj1gGaHpYoPpLOGb0GjtzWx+G10jZ
Hsu1eA683MKRjNqLEOt21mj5EJpgmVgRewTybHnj40MGSrwhxGxKlR/i2TT1gzLD
5LvSxbiAJaRRfL3R2DmPTZ2XfhfQARaEDBGPjsndXOGaPHodRmFKJBHVTmIgfWaG
QC72TQu2xqIWLh6a44i1MDEW8RNl3ELueR7K+lxIFEufdtmoCvJus1i2duJ/vKas
jZBPamJehw0eZ1N5R3Lgban7Qq/IX6YEQm87W7oCMo9XuEwBqd6Fd+27+6IPk21L
VVFnDcW+Y8HlcXtRR+B3
=MUcl
-----END PGP SIGNATURE-----