RISC-VAES扩展指令的硅前评估与安全增强OA北大核心CSTPCD

The instruction set architecture(ISA)extension for cryptographic algorithm acceleration may introduce the risk of side channel leakage.A side channel security evaluation process in the pre-silicon stage was proposed,which could accurately locate the time and microarchitecture components with side channel leakage risk during the processor operation.Based on a 32 bit in-order reduced instruction set compute(RISC-V)processor architecture,two representative advanced encryption standard(AES)extension instructions and extended hardware circuits were implemented,and then the proposed evaluation method was applied to evaluate the side channel security.Based on the evaluation results,a hybrid protection strategy of extension port dynamic mask and power randomization of the operation unit was proposed,and the pre-silicon security verification was carried out.Finally the AES ISA extension with high side channel security was realized.The experimental results show that the proposed hybrid protection strategy can improve the side channel security of the AES extension by 1 886 times and more under the 4.9％area overhead.