Intel AES-NI Application Performance

Less Painful Application Encryption

April, 2015

Niall O’Connor

Chief Technology Officer

Boston Security Conference #4

MAKE PERSONALIZED MEDICINE A REALITY

WE ENCRYPT A LOT OF DATA

Patient Data

PGP Encryption

Transform Raw

Data Into Results

AES 256 bit Encryption

AES Decryption

Transparent Encryption & Optimization

Encryption as a Persistence Rule

● Readable

● Understandable encryption model

● No database dependency

ENCRYPTION PERFORMANCE IMPACT

IS OVERSTATED

…but worth minimizing.

OPTIMIZING THE ADVANCED

ENCRYPTION STANDARD

Full RoundSubBytes – Each byte was substituted

ShiftRows – Last three rows of block is shifted cyclically

MixColumns – Block columns are shifted

AddRoundKey

Last RoundSubBytes

ShiftRows

AddRoundKey

128 bit Key = 10192 bit Key = 12256 bit Key = 14

First RoundAddRoundKey – Each byte is XOR’d with each byte of round key

KeyExpansion – create round keys from cipher key

AES Algorithm

Block Cipher Mode of Operation

CFB CTR OFB CBC ECB

ECB Not so Fast

Block Cipher Mode of Operation

CFB CTR OFB CBC ECB

Provider Library

BC SunJCE NSS

Provider Library

Encrypt

Decrypt

ADVANCED ENCRYPTION STANDARD

NEW INSTRUCTIONS

(AES-NI)

Full RoundSubBytes

ShiftRows

MixColumns

AddRoundKey

Last RoundSubBytes

ShiftRows

AddRoundKey

First RoundAddRoundKey

KeyExpansion

AESENC/AESDEC

AESENCLAST/AESDECLAST

AESENC/AESDEC

AESKEYGENASSIST

AES Algorithm Steps Intel AES-NI Hardware

Operations

Provider Library (AES-NI)

BC SunJCE NSS

Provider Library

AES-NI

136.5ms

AES-NI Impact on Key Length

128 bit 192 bit 256 bit

AES-NI

AES-NI Key Length

128→192 128→256

Axis Title

AES-ni

GenoSpace Population Analytics

Average Attribute Request Time

AES AES-NI

Processing

DB.attributeDesc

Decrypt

Deserialization

DB.attribute

Platelet Count Request Time

AES AES-NI

processing

DB.attributeDesc

decryptTime OFF

deserializeTime OFF

DB.attribute

Scaling Decryption Time

765 1000 10000 100000

Patients

AES-NI

Conclusion

• Choose your Provider Library wisely• Operating mode• Key Length • Encryption not an application

bottleneck • Scalable data encryption

Acknowledgements

Ketan Patel and David Houlding @ Intel

Ryan Kophs @ GenoSpace

Any Questions?

Niall O’Connor

Chief Technology Officer

Boston Security Conference #4

Intel AES-NI Application Performance

Software

Transcript of Intel AES-NI Application Performance

Intel Software Network · •You can take advantage of AES-NI using one of several ways −Use Standard libraries already optimized for AES-NI >Open SSL open source libraries (v 1.0,

AES CORPORATION Dale W. Perry Vice President AES Corporation Regional Electricity Integration: The AES Focus.

For any further information, please contact exportclass@ · PDF file1 ANSSI AES New Instructions (AES NI) ... For any further information, please contact exportclass@cisco.com. CRYPTOGRAPHIC

Analysis of the Intel AES-NI Special Instruction Setece.gmu.edu/coursewebpages/ECE/ECE646/F15/project/F15... · Analysis of the Intel AES-NI Special Instruction Set Shawn Wilkinson

Atomic-AES: A Compact Implementation of the AES Encryption ... · Atomic-AES: A Compact Implementation of the AES Encryption/Decryption Core ... In this paper we present Atomic-AES,

Aucun titre de diapositive · 2 Juin 2018 Atelier GERES-SF2H - AES Analyse descriptive des accidents AES n°1 AES n°2 AES n°3 AES n°4 Spécialité/Servic e Labo privé Médecine

OpenSSL after HeartBleed• 11/08/13: added new OE: Linux 3.4 64-bit under Citrix XenServer running on Intel Xeon E5-2430L (x86) without AES-NI (gcc Compiler Version 4.8.0); Linux

Programming BBRAM and eFUSEs - xilinx.com · AES Key Zynq UltraScale+ devices use a hardened AES cryptographic block for AES encryption and decryption. The AES cryptographic block

AMCS CASE STUDY AES · 2017-09-03 · AES achieves the highest RepTrak scoring as a Service Provider in Ireland by investing in AMCS technology. AMCS CASE STUDY AES AES in brief AES,

HYPORI - NIST › csrc › media › projects › ... · 90 VMware Horizon Workspace 2.1 x86 under vSphere ESXi 5.5 Intel Xeon E3-1220 AES-NI BKP U2 91 QNX 6.5 on ARMv4 Freescale

Common AES Reporting Problems/Concerns. l Proper Format Options 2 and 3 NDR AES Filer ID-SRN NDR AES 123456789-HOU12345 NDR AES X20001121000123 Option.

Unleashing Linux*-Based Secure Storage Performance with ... · Unleashing Linux*-Based Secure Storage Performance with Intel ... AES-XTS solves the problem by “tweaking” the initialization

DHZO-A* DKZOR-A* · dhzo-a* dkzor-a* 2 *-a *-ae -aes -a, (ae) (aes) *-aeg: a ( g120 )-ae aes 7 12 aeg aes /z-aes aeg *-ps rs232 712 *-bc canbus -aes *-bp profibus-dp -aes h iso 4401

White Paper Intel Advanced Paper Encryption Standard ... 32nm Intel® microarchitecture codename Westmere. ... The AES instructions have the flexibility to support all usages of AES,

Using Intel® AES-NI to Significantly Improve IPSec ... · PDF fileUsing Intel® AES-NI to Significantly Improve IPSec Performance on Linux* 2 324238-001 Executive Summary The Advanced

137524473 AES Watch Primer on Automated Election System AES

AES EMEA Generation Business Review AES CORPORATION · AES Goals AES 2008 Target AES EMEA Generation Role--$3.5 Billion 13-19% per Year 11%-----Above Average Above Average Below Average

Intel x86 Hardware Security Primitives “What tools are in ...sergey/cs258/2015/... · In response to software-based caching attacks on AES, Intel released instruction set to support

Intel Advanced Encryption Standard (AES) New Instructions Set

Fast Multi-buffer IPsec Implementations on Intel ... · handles multi-buffer processing for packets requiring AES and HMAC processing. ... Fast Multi-buffer IPsec Implementations

Unleashing Linux-Based Secure Storage Performance with ... · Unleashing Linux-Based Secure Storage Performance with Intel ... AES-XTS solves the problem by “tweaking” the initialization

DHZO-A* DKZOR-A* · dhzo-a* dkzor-a* 2 -a -ae -aes -a, (ae) (aes) -aeg: a ( g120 )-ae aes 7 12 aeg aes /z-aes aeg -ps rs232 712 -bc canbus -aes -bp profibus-dp -aes h iso 4401