International Association for Cryptologic Research

International Association
for Cryptologic Research


Fast Multi-precision Multiplication for Public-Key Cryptography on Embedded Microprocessors

Michael Hutter
Erich Wenger
DOI: 10.1007/s00145-020-09351-2
Search ePrint
Search Google
Abstract: Multi-precision multiplication is one of the most fundamental operations on microprocessors to allow public-key cryptography such as RSA and elliptic curve cryptography. In this paper, we present a novel multiplication technique that increases the performance of multiplication by sophisticated caching of operands. Our method significantly reduces the number of needed load instructions which is usually one of the most expensive operations on modern processors. We evaluate our new technique on an 8-b ATmega128 and a 32-b ARM7TDMI microcontroller and compare the results with existing solutions. For the ATmega128, our implementation needs only 2395 clock cycles for a 160-b multiplication. The number of required load instructions is reduced from 167 (needed for the best known hybrid multiplication) to only 80. On the ARM7TDMI, our implementation needs only 281 clock cycles as opposed to 357. For both platforms, the proposed technique outperforms related work by a factor of about 10–23%. We also show that the method scales very well even for larger integer sizes (required for RSA) and limited register sets. It fully complies with existing multiply–accumulate instructions that are integrated in most of the available processors.
  title={Fast Multi-precision Multiplication for Public-Key Cryptography on Embedded Microprocessors},
  journal={Journal of Cryptology},
  author={Michael Hutter and Erich Wenger},