{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,3,21]],"date-time":"2026-03-21T19:22:35Z","timestamp":1774120955603,"version":"3.50.1"},"reference-count":41,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2018,7,31]],"date-time":"2018-07-31T00:00:00Z","timestamp":1532995200000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"U.S. Department of Commerce, National Institute of Standards and Technology","award":["60NANB16D289"],"award-info":[{"award-number":["60NANB16D289"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Embed. Comput. Syst."],"published-print":{"date-parts":[[2018,7,31]]},"abstract":"<jats:p>\n            The emerging areas in which highly resource constrained devices are interacting wirelessly to accomplish tasks have led manufacturers to embed communication systems in them. Tiny low-end devices such as sensor networks nodes and Radio Frequency Identification (RFID) tags are of particular importance due to their vulnerability to security attacks, which makes protecting their communication privacy and authenticity an essential matter. In this work, we present a lightweight do-it-all cryptographic design that offers the basic underlying functionalities to secure embedded communication systems in tiny devices. Specifically, we revisit the design approach of the sLiSCP family of lightweight cryptographic permutations, which was proposed in SAC 2017. sLiSCP is designed to be used in a unified duplex sponge construction to provide minimal overhead for multiple cryptographic functionalities within one hardware design. The design of sLiSCP follows a 4-subblock Type-2 Generalized Feistel-like Structure (GFS) with unkeyed round-reduced Simeck as the round function, which are extremely efficient building blocks in terms of their hardware area requirements. In\n            <jats:sc>S<\/jats:sc>\n            L\n            <jats:sc>I<\/jats:sc>\n            SCP-light, we tweak the GFS design and turn it into an elegant Partial Substitution-Permutation Network construction, which further reduces the hardware areas of the\n            <jats:sc>S<\/jats:sc>\n            L\n            <jats:sc>I<\/jats:sc>\n            SCP permutations by around 16% of their original values. The new design also enhances the bit diffusion and algebraic properties of the permutations and enables us to reduce the number of steps, thus achieving a better throughput in both the hashing and authentication modes. We perform a thorough security analysis of the new design with respect to its diffusion, differential and linear, and algebraic properties. For\n            <jats:sc>S<\/jats:sc>\n            L\n            <jats:sc>I<\/jats:sc>\n            SCP-light-192, we report parallel implementation hardware areas of 1,820 (respectively, 1,892)GE in CMOS 65\n            <jats:italic>nm<\/jats:italic>\n            (respectively, 130\n            <jats:italic>nm<\/jats:italic>\n            ) ASIC. The areas for\n            <jats:sc>S<\/jats:sc>\n            L\n            <jats:sc>I<\/jats:sc>\n            SCP-light-256 are 2,397 and 2,500GE in CMOS 65\n            <jats:italic>nm<\/jats:italic>\n            and 130\n            <jats:italic>nm<\/jats:italic>\n            ASIC, respectively. Overall, the unified duplex sponge mode of\n            <jats:sc>S<\/jats:sc>\n            L\n            <jats:sc>I<\/jats:sc>\n            SCP-light-192, which provides (authenticated) encryption and hashing functionalities, satisfies the area (1,958GE), power (3.97\u03bc\n            <jats:italic>W<\/jats:italic>\n            ), and throughput (44.4kbps) requirements of passive RFID tags.\n          <\/jats:p>","DOI":"10.1145\/3233245","type":"journal-article","created":{"date-parts":[[2018,8,27]],"date-time":"2018-08-27T12:13:23Z","timestamp":1535372003000},"page":"1-26","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":15,"title":["<scp>S<\/scp>\n            L\n            <scp>I<\/scp>\n            SCP-light"],"prefix":"10.1145","volume":"17","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-4309-6044","authenticated-orcid":false,"given":"Riham","family":"Altawy","sequence":"first","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Raghvendra","family":"Rohit","sequence":"additional","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Morgan","family":"He","sequence":"additional","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Kalikinkar","family":"Mandal","sequence":"additional","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Gangqiang","family":"Yang","sequence":"additional","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Guang","family":"Gong","sequence":"additional","affiliation":[{"name":"University of Waterloo, Canada"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,8,25]]},"reference":[{"key":"e_1_2_1_1_1","volume-title":"EPC radio frequency identity protocols class-1 generation-2 UHF RFID protocol for communications at 860MHZ--960MHz version 2","year":"2015"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46800-5_17"},{"key":"e_1_2_1_3_1","volume-title":"Proceedings of the ACM Symposium on Applied Computing (SAC\u201917)","author":"AlTawy Riham","year":"2017"},{"key":"e_1_2_1_4_1","volume-title":"sLiSCP-light: Towards Lighter Sponge-specific Cryptographic Permutations","author":"AlTawy Riham","year":"2018"},{"key":"e_1_2_1_5_1","unstructured":"Elena Andreeva Beg\u00fcl Bilgin Andrey Bogdanov Atul Luykx Florian Mendel Bart Mennink Nicky Mouha Qingju Wang and Kan Yasuda. 2014. PRIMATEs v1.1. Retrieved from http:\/\/primates.ae\/wp-content\/uploads\/primatesv1.1.pdf.  Elena Andreeva Beg\u00fcl Bilgin Andrey Bogdanov Atul Luykx Florian Mendel Bart Mennink Nicky Mouha Qingju Wang and Kan Yasuda. 2014. PRIMATEs v1.1. Retrieved from http:\/\/primates.ae\/wp-content\/uploads\/primatesv1.1.pdf."},{"key":"e_1_2_1_6_1","doi-asserted-by":"publisher","DOI":"10.1007\/s00145-012-9125-6"},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-11212-1_2"},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-66787-4_16"},{"key":"e_1_2_1_10_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46800-5_13"},{"key":"e_1_2_1_12_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53008-5_5"},{"key":"e_1_2_1_13_1","volume-title":"Florian Mendel, Kashif Nawaz, Tobias Schneider, Peter Schwabe, Fran\u00e7ois-Xavier Standaert, Yosuke Todo, and Beno\u00eet Viguier.","author":"Bernstein Daniel J.","year":"2017"},{"key":"e_1_2_1_14_1","unstructured":"G. Bertoni J. Daemen M. Peeters and G. V. Assche. 2014a. CAESAR submission: Ketje v2. Retrieved from http:\/\/ketje.noekeon.org\/Ketjev2-doc2.0.pdf.  G. Bertoni J. Daemen M. Peeters and G. V. Assche. 2014a. CAESAR submission: Ketje v2. Retrieved from http:\/\/ketje.noekeon.org\/Ketjev2-doc2.0.pdf."},{"key":"e_1_2_1_15_1","volume-title":"Proceedings of the ECRYPT Hash Workshop","volume":"2007","author":"Bertoni Guido","year":"2007"},{"key":"e_1_2_1_16_1","unstructured":"Guido Bertoni Joan Daemen Michael Peeters and Gilles Van Assche. 2009. Keccak specifications. Submission to NIST (Round 2). (2009).  Guido Bertoni Joan Daemen Michael Peeters and Gilles Van Assche. 2009. Keccak specifications. Submission to NIST (Round 2). (2009)."},{"key":"e_1_2_1_17_1","volume-title":"Proceedings of the Symmetric Key Encryption Workshop.","author":"Bertoni Guido","year":"2011"},{"key":"e_1_2_1_18_1","volume-title":"Proceedings of the Conference on Directions in Authenticated Ciphers (DIAC\u201912)","author":"Bertoni Guido","year":"2012"},{"key":"e_1_2_1_19_1","unstructured":"G. Bertoni J. Daemen M. Peeters and G. Van Assche. 2014b. Cryptographic sponge functions. Retrieved from http:\/\/sponge.noekeon.org\/CSF-0.1.pdf.  G. Bertoni J. Daemen M. Peeters and G. Van Assche. 2014b. Cryptographic sponge functions. Retrieved from http:\/\/sponge.noekeon.org\/CSF-0.1.pdf."},{"key":"e_1_2_1_20_1","doi-asserted-by":"publisher","DOI":"10.5555\/647934.740905"},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-07536-5_17"},{"key":"e_1_2_1_22_1","volume-title":"Proceedings of CHES","author":"Bogdanov Andrey"},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-540-74735-2_31"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53887-6_18"},{"key":"e_1_2_1_25_1","unstructured":"Christoph Dobraunig Maria Eichlseder Florian Mendel and Martin Schl\u00e4ffer. 2016. Ascon v1.2. Submission to the CAESAR competition. Retrieved from http:\/\/competitions.cr.yp.to\/round3\/asconv12.pdf (http:\/\/ascon.iaik.tugraz.at\/implementation.html).  Christoph Dobraunig Maria Eichlseder Florian Mendel and Martin Schl\u00e4ffer. 2016. Ascon v1.2. Submission to the CAESAR competition. Retrieved from http:\/\/competitions.cr.yp.to\/round3\/asconv12.pdf (http:\/\/ascon.iaik.tugraz.at\/implementation.html)."},{"key":"e_1_2_1_26_1","unstructured":"EPCglobal. 2008. EPC Class 1 Generation 2 Standard ver. 1.2. Retrieved from https:\/\/www.gs1.org\/sites\/default\/files\/docs\/epc\/uhfc1g2_1_2_0-standard-20080511.pdf.  EPCglobal. 2008. EPC Class 1 Generation 2 Standard ver. 1.2. Retrieved from https:\/\/www.gs1.org\/sites\/default\/files\/docs\/epc\/uhfc1g2_1_2_0-standard-20080511.pdf."},{"key":"e_1_2_1_27_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-40349-1_22"},{"key":"e_1_2_1_28_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSD.2015.14"},{"key":"e_1_2_1_29_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-53887-6_4"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.5555\/2033036.2033053"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.5555\/2044928.2044958"},{"key":"e_1_2_1_32_1","doi-asserted-by":"publisher","DOI":"10.1007\/11535218_18"},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.5555\/1926325.1926353"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-47989-6_8"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.5555\/2033036.2033052"},{"key":"e_1_2_1_36_1","doi-asserted-by":"publisher","DOI":"10.46586\/tosc.v2017.i1.358-379"},{"key":"e_1_2_1_37_1","volume-title":"Meltem S\u00f6nmez Turan, and Nicky Mouha","author":"McKay Kerry","year":"2017"},{"key":"e_1_2_1_38_1","volume-title":"Total break of zorro using linear and differential attacks. ISC Int. J. Info. Secur. 6 (1)","author":"Rasoolzadeh Shahram","year":"2014"},{"key":"e_1_2_1_39_1","volume-title":"Proceedings of the Conference on Cryptographic Hardware and Embedded Systems (CHES\u201903)","author":"Sarma Sanjay E."},{"key":"e_1_2_1_40_1","doi-asserted-by":"publisher","DOI":"10.5555\/1876089.1876092"},{"key":"e_1_2_1_41_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-46800-5_12"},{"key":"e_1_2_1_42_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-52993-5_18"},{"key":"e_1_2_1_43_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-48324-4_16"}],"container-title":["ACM Transactions on Embedded Computing Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3233245","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3233245","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T02:13:12Z","timestamp":1750212792000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3233245"}},"subtitle":["Towards Hardware Optimized Sponge-specific Cryptographic Permutations"],"short-title":[],"issued":{"date-parts":[[2018,7,31]]},"references-count":41,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2018,7,31]]}},"alternative-id":["10.1145\/3233245"],"URL":"https:\/\/doi.org\/10.1145\/3233245","relation":{},"ISSN":["1539-9087","1558-3465"],"issn-type":[{"value":"1539-9087","type":"print"},{"value":"1558-3465","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,7,31]]},"assertion":[{"value":"2018-01-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2018-06-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2018-08-25","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}