Security '01 Abstract
Improving DES Coprocessor Throughput for Short Operations
Mark Lindemann, IBM T.J. Watson Research Center;
Sean W. Smith,
Dept. of CS/Institute for Security and Technology Studies
Over the last several years, our research team built
a commercially-offered secure coprocessor
that, besides other features, offers high-speed DES: over 20 megabytes/second.
However, it obtains these speeds only on operations with large data lengths.
For DES operations on short data (e.g., 8-80 bytes),
our commercial offering was benchmarked at less than 2 kilobytes/second.
The programmability of our device enabled us to investigate this issue,
identify and address a series of bottlenecks that were not initially apparent,
and ultimately bring our short-DES performance close to 3 megabytes/second.
This paper reports the results of this real-world systems exercise in
hardware cryptographic acceleration---and demonstrates the importance
of, when designing specialty hardware,
not overlooking the software aspects governing how a device can be used.
- View the full text of this paper in
The Proceedings are published as a collective work, © 2001 by the USENIX Association. All Rights Reserved. Rights
to individual papers remain with the author or the author's employer.
Permission is granted for the noncommercial reproduction of the complete
work for educational or research purposes. USENIX acknowledges all
trademarks within this paper.
- If you need the latest Adobe Acrobat Reader, you can download it from Adobe's site.
- To become a USENIX Member, please see our Membership Information.