Overview :: News :: Downloads :: Tracker :: Discussions (cores)

Crypto-PAn: Overview Details Name: cryptopan_core Created: 16-Feb-2007 15:50:01 Updated: 17-Feb-2007 05:45:55 CVS: browse Other project properties Category :: Crypto core Language :: VHDL License :: GPL Phaze :: FPGA proven Development status :: Production/Stable Project maintainers Anthony Blake Statistics view Crypto-PAn A hardware implementation of Crypto-PAn[1]. The core makes use of a fully pipelined 128-bit AES (Rijndael) cipher engine as the underlying pseudorandom function, supports online key changes, and is capable of line rates exceeding gigabit ethernet. Please see http://www.cc.gatech.edu/computing/Networking/projects/cryptopan/ for more information. [1] J. Fan, J. Xu, M. H. Ammar, S. B. Moon, "Prefix-Preserving IP Address Anonymization", Computer Networks, Volume 46, Issue 2, 7 October 2004, Pages 253-272, Elsevier. Features Crypto-PAn features: One to one mapping from original IP address to anonymized IP address Prefixes are preserved. That is, if two original IP addresses sharea a k-bit prefix, their anonymized mapping also share a k-bit prefix. Consistency is maintained across traces. That is, the same IP address in differant traces is mapped to the same anonymized IP address, if the secret key used is the same. Core features: Fully pipelined AES(Rijndael) engine capable of 32Gbit/s throughput on Virtex-4. Supports online secret key changes. Compatiable with Jinliang Fan's C++ reference implementation. That is, using the same secret keys, IP addresses will map to the same anonymous IP addresses. Capable of anonymizing traces at line rates above gigabit ethernet. Status Verified in hardware on XCV4FX60 FPGA.