Towards Post-quantum Security for IoT Endpoints with NTRU

Oscar M. Guillen^1,a, Thomas Pöppelmann², Jose M. Bermudo Mera^1,b, Elena Fuentes Bongenaar³, Georg Sigl^1,4,c,e and Johanna Sepulveda^1,d
1Technische Universität München, Germany.
^aoscar.guillen@tum.de
^bjmb.mera@tum.de
^csigl@tum.de
^djohanna.sepulveda@tum.de
²Infineon Technologies AG, Germany.
thomas.poeppelmann@infineon.com
³Radboud University.
E.Fuentes.Bongenaar@protonmail.com
⁴Fraunhofer Institute AISEC, Germany.
^egeorg.sigl@aisec.fraunhofer.de

ABSTRACT

The NTRU cryptosystem is one of the main alternatives for practical implementations of post-quantum, public-key cryptography. In this work, we analyze the feasibility of employing the NTRU encryption scheme, NTRUEncrypt, in resource constrained devices such as those used for Internet-of-Things endpoints. We present an analysis of NTRUEncrypt's advantages over other cryptosystems for use in such devices. We describe four different NTRUEncrypt implementations on an ARM Cortex M0-based microcontroller, compare their results, and show that NTRUEncrypt is suitable for use in battery-operated devices. We present performance and memory footprint figures for different security parameters, as well as energy consumption in a resource constrained microcontroller to backup these claims. Furthermore, to the best of our knowledge, in this work we present the first time-independent implementation of NTRUEncrypt.

Keywords: IoT, Post-quantum, Security, NTRUEncrypt, Embedded devices.

---

Full Text (PDF)

© 2017 EDAA. All rights reserved.