CFB Mode¶
Overview¶
The Cipher Feedback (CFB) mode is a typical block cipher mode of operation using block cipher algorithm. In this version, we provide Data Encryption Standard (DES) and Advanced Encryption Standard (AES) processing ability, the cipherkey length for DES should be 64 bits, and 128/192/256 bits for AES. Another limitation is that our working mode works on units of a fixed size (64 or 128 bits for 1 block), but text in the real world has a variety of lengths. So, the last block of the text provided to this primitive must be padded to 128 bits before encryption or decryption. Although, CFB1 and CFB8 modes share the same interface with CFB128 mode, the plaintext and ciphertext is processed bit-by-bit or byte-by-byte not block-by-block for CFB1 and CFB8 modes respectively.
Implementation on FPGA¶
We support three different modes in this implementation: CFB1, CFB8, and CFB128. The length of the text to be processed in one iteration corresponding to specific mode. CFB1 is 1 bit per iteration, CFB8 is 8 bits per iteration, and CFB128 is 128 bits per iteration.
Attention
The bit-width of the interfaces we provide is shown as follows:
| plaintext | ciphertext | cipherkey | IV | |
| CFB1-DES | 64 | 64 | 64 | 64 |
| CFB1-AES128 | 128 | 128 | 128 | 128 |
| CFB1-AES192 | 128 | 128 | 192 | 128 |
| CFB1-AES256 | 128 | 128 | 256 | 128 |
| CFB8-DES | 64 | 64 | 64 | 64 |
| CFB8-AES128 | 128 | 128 | 128 | 128 |
| CFB8-AES192 | 128 | 128 | 192 | 128 |
| CFB8-AES256 | 128 | 128 | 256 | 128 |
| CFB128-DES | 64 | 64 | 64 | 64 |
| CFB128-AES128 | 128 | 128 | 128 | 128 |
| CFB128-AES192 | 128 | 128 | 192 | 128 |
| CFB128-AES256 | 128 | 128 | 256 | 128 |
The algorithm flow chart is shown as follow, and the length of the text is denoted as ‘s’:
As we can see from the chart, the encryption part of each CFB mode has loop-carried dependency which is enforced by the algorithm, the input block of each iteration (except for iteration 0) needs a feedback data from its last iteration. Thus, the initiation interval (II) of each CFB encryption mode cannot achieve an II = 1. However, the decryption part of each CFB mode has no dependencies, so that it can achieve an II = 1.
Profiling¶
CFB1-DES encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 329 | 1548 | 2520 | 0 | 0 | 0 | 0 | 2.658 |
CFB1-DES decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 352 | 1532 | 2482 | 0 | 0 | 0 | 0 | 2.156 |
CFB1-AES128 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 1822 | 7787 | 5708 | 0 | 2 | 361 | 0 | 2.807 |
CFB1-AES128 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 1853 | 7711 | 5613 | 0 | 2 | 371 | 0 | 2.830 |
CFB1-AES192 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2330 | 11283 | 7352 | 0 | 6 | 489 | 0 | 3.061 |
CFB1-AES192 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2316 | 11290 | 7294 | 0 | 6 | 499 | 0 | 2.719 |
CFB1-AES256 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2633 | 12918 | 8374 | 0 | 2 | 617 | 0 | 3.033 |
CFB1-AES256 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2751 | 12902 | 8281 | 0 | 2 | 627 | 0 | 2.991 |
CFB8-DES encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 344 | 16828 | 2703 | 0 | 0 | 0 | 0 | 2.478 |
CFB8-DES decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 336 | 1613 | 2723 | 0 | 13 | 0 | 0 | 2.474 |
CFB8-AES128 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 1963 | 8152 | 5730 | 0 | 2 | 368 | 0 | 2.833 |
CFB8-AES128 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 1803 | 7852 | 5643 | 0 | 2 | 382 | 0 | 2.705 |
CFB8-AES192 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2654 | 13418 | 7421 | 0 | 6 | 496 | 0 | 2.933 |
CFB8-AES192 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2487 | 11265 | 7319 | 0 | 6 | 510 | 0 | 2.901 |
CFB8-AES256 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 3001 | 15448 | 8397 | 0 | 2 | 624 | 0 | 3.016 |
CFB8-AES256 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2670 | 12890 | 8313 | 0 | 2 | 638 | 0 | 2.956 |
CFB128-DES encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 341 | 1677 | 2734 | 0 | 0 | 0 | 0 | 2.290 |
CFB128-DES decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 367 | 1734 | 2802 | 0 | 0 | 33 | 0 | 2.216 |
CFB128-AES128 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2151 | 9196 | 6633 | 0 | 2 | 512 | 0 | 2.805 |
CFB128-AES128 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2153 | 9259 | 6465 | 0 | 2 | 577 | 0 | 2.691 |
CFB128-AES192 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2951 | 15237 | 8321 | 0 | 6 | 640 | 0 | 2.952 |
CFB128-AES192 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 2952 | 15075 | 8449 | 0 | 6 | 705 | 0 | 2.808 |
CFB128-AES256 encryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 3083 | 14748 | 9309 | 0 | 2 | 768 | 0 | 2.945 |
CFB128-AES256 decryption¶
| CLB | LUT | FF | DSP | BRAM | SRL | URAM | CP(ns) |
|---|---|---|---|---|---|---|---|
| 3305 | 17041 | 9441 | 0 | 2 | 833 | 0 | 2.959 |