AES256-XTS-STG IP Core Datasheet
2. Encryption/Decryption control
Core Facts |
|
|
Provided with Core |
|
|
Documentation |
User Guide, Design Guide |
|
Design File Formats |
Encrypted HDL |
|
Instantiation Templates |
VHDL |
|
Reference Designs & Application Notes |
Vivado Project, See Reference design manual |
|
Additional Items |
Demo onVCK190, VPK120 |
|
Support |
|
|
Support Provided by Design Gateway Co., Ltd. |
|
Design Gateway Co.,Ltd
E-mail: ip-sales@design-gateway.com
URL: design-gateway.com
Features
· Support AES-XTS mode standard.
· Support 256-bit key size.
· Support 128-bit IV size.
· Support auto increment IV every 512-byte Mode.
· Customized service for following features.
Modify block size for IV auto increment mode.
The products in this series
· AES256XTSSTG IP
Support data width 128-bit alignment.
Peak throughput rate at 128Mbits/MHz.
Speed up to 57.6 Gbps or 7.2 GBps @450MHz on ZCU106.
· AES256XTSSTG2X IP
Support data width 256-bit alignment.
Peak throughput rate at 256Mbits/MHz.
Speed up to 102.4 Gbps or 12.8 GBps @400MHz on VCK190.
· AES256XTSSTG4X IP
Support data width 512-bit alignment.
Peak throughput rate at 512Mbits/MHz.
Speed up to 184.32 Gbps or 23.0 GBps @360MHz on VPK120.
Table 1: Example Implementation Statistics for AES256XTS-STG
|
Family |
Example Device |
Type |
Fmax (MHz) |
CLB Regs |
CLB LUTs |
CLB1 |
Design Tools |
|
Zynq-Ultrascale+2 |
xczu7ev-ffvc1156-2-e |
ENC |
450 |
5082 |
3910 |
2035 |
Vivado2021.1 |
|
DEC |
450 |
5163 |
15414 |
2555 |
|||
|
Kintex-UltraScale+2 |
xcku5p-ffvb676-2-e |
ENC |
450 |
5099 |
3929 |
2066 |
Vivado2021.1 |
|
DEC |
450 |
5083 |
15392 |
2804 |
|||
|
Virtex-Ultrascale+2 |
xcvu9p-flga2104-2L-e |
ENC |
450 |
5083 |
3929 |
2144 |
Vivado2021.1 |
|
DEC |
450 |
5083 |
15425 |
2575 |
Table 2: Example Implementation Statistics for AES256XTS-STG-2X
|
Family |
Example Device |
Type |
Fmax (MHz) |
CLB Regs |
CLB LUTs |
Slice1 |
Design Tools |
|
Versal AI Core |
xcvc1902-vsva2197-2MP-e-S |
ENC |
400 |
9855 |
25963 |
4681 |
Vivado2022.1 |
|
DEC |
400 |
9855 |
30856 |
5262 |
Table 3: Example Implementation Statistics for AES256XTS-STG-4X
|
Family |
Example Device |
Type |
Fmax (MHz) |
CLB Regs |
CLB LUTs |
Slice1 |
Design Tools |
|
Versal Premium |
xcvp1202-vsva2785-2MHP-e-S |
ENC |
360 |
19180 |
56253 |
8986 |
Vivado2023.2 |
|
DEC |
360 |
19294 |
66429 |
10910 |
|||
|
Versal AI Core2 |
xcvc1902-vsva2197-2MP-e-S |
ENC |
380 |
19580 |
51614 |
8635 |
Vivado2022.1 |
|
DEC |
380 |
19562 |
61520 |
10407 |
Notes:
1) Actual logic resource is dependent on percentage of unrelated logic.
2) The results were obtained from implementation in the same environment, but have not been tested on the actual board.
Figure 1: Block Diagram
General Description
AES256-XTS-STG IP Core (AES256XTSSTGIP) implement the advanced encryption standard (AES) with XEX (XOR Encrypt XOR) tweakable block cipher which operates sequences of complete blocks and is widely used in protecting the confidentiality of data on various storage devices with interfaces such as SATA and NVMe.
AES256XTSSTGIP works with 256-bit encryption key and 256-bit tweakable key. It supports 128-bit initialization vector (IV) which usually represents the logical block addressing (LBA) of 512-byte block size. The encryption/decryption operates on 512-byte data block. After encrypting/decrypting each block of data, AES256XTSSTGIP recalculates a tweak value from the IV. When auto increment IV mode is enabled, the IV value will be increased by 1 for every block of encryption/decryption, ensuring a unique IV for each block and enhancing the security of the encryption/decryption process.
AES256XTSSTGIP(AES256XTS-StorageIP) Series consists of encryption module and decryption module, which each module contains of Tweak Generator and AES256 for encryption/decryption. The detailed of the products within the series is below.
AES256XTSSTGIP: This IP core includes the following modules:
· AES256XTSSTGENC is encrypted module designed for AES256XTSSTGIP.
· AES256XTSSTGDEC is decrypted module designed for AES256XTSSTGIP.
AES256XTSSTG2XIP: This IP core includes the following modules:
· AES256XTSSTG2XENC is encrypted module designed for AES256XTSSTG2XIP.
· AES256XTSSTG2XDEC is decrypted module designed for AES256XTSSTG2XIP.
AES256XTSSTG4XIP: This IP core includes the following modules:
· AES256XTSSTG4XENC is encrypted module designed for AES256XTSSTG4XIP.
· AES256XTSSTG4XDEC is decrypted module designed for AES256XTSSTG4XIP.
Functional Description
In the AES256XTSSTGIP Series encryption module and decryption module, the interface signals and operation are the same, therefore AES256XTSSTG is used to represent the interface signals and operation of both modules.
Table 4: Interface signals of AES256XTSSTG
|
Signal name |
Dir |
Description |
|
RstB |
In |
IP core system reset. Active low. |
|
Clk |
In |
IP core system clock. |
|
version[31:0] |
Out |
32-bit version number of AES256XTSSTG. |
|
Encryption Key setting signals |
||
|
EKeyInValid |
In |
EKeyInValid is a user signal to specify data valid of EKeyIn. Assert to ‘1’ to indicate that EKeyIn is valid and start encryption key setting. |
|
EKeyInBusy |
Out |
EKeyInBusy specifies busy status of encryption key setting. Assert to ‘1’ after user set EKeyInValid, until the last cycle of operation. EKeyInValid or InitStart will be ignored while EKeyInBusy is ‘1’. |
|
EKeyInFinish |
Out |
EKeyInFinish specifies finish status of encryption key setting. Assert to ‘1’ at the last cycle of operation. |
|
EKeyIn[255:0] |
In |
EKeyIn is 256-bit key data for encryption/decryption. EKeyIn must be valid when EKeyInValid is asserted to ‘1’. |
|
Tweakable Key setting signals |
||
|
TKeyInValid |
In |
TKeyInValid is a user signal to specify data valid of TKeyIn. Assert to ‘1’ to indicate that TKeyIn is valid and start tweakable key setting. |
|
TKeyInBusy |
Out |
TKeyInBusy specifies busy status of tweakable key setting. Assert to ‘1’ after user set TKeyInValid, until the last cycle of operation. TKeyInValid or InitStart will be ignored while TKeyInBusy is ‘1’. |
|
TKeyInFinish |
Out |
TKeyInFinish specifies finish status of tweakable setting. Assert to ‘1’ at the last cycle of operation. |
|
TKeyIn[255:0] |
In |
TKeyIn is 256-bit key data for encryption tweakable. TKeyIn must be valid when TKeyInValid is asserted to ‘1’. |
|
Encryption/Decryption control signals |
||
|
InitStart |
In |
InitStart is a user signal to start AES256XTSSTG operation. |
|
Busy |
Out |
Busy specifies busy status of operation. Busy is active after user set InitStart or DataInValid, until the last cycle of operation. EKeyInValid or TKeyInValid or InitStart will be ignored while Busy is ‘1’. |
|
Finish |
Out |
Finish specifies finish status of the last data calculation. After the user does not send DataInValid=‘1’ for 16 clock cycles Finish is asserted to ‘1’ at the last cycle of operation. |
|
IvIncrement |
In |
IvIncrement is a user signal to specify IV auto increment mode. This mode IV will increment by '1' for every 512-byte of data. IvIncrement must be valid when InitStart is asserted as '1'. |
|
IvIn[127:0] |
In |
IvIn is 128-bit IV data for generate tweak. IvIn must be valid when InitStart is asserted to ‘1’. |
Data control signals |
||
|
DataInReady |
Out |
DataInReady specifies that AES256XTSSTG is ready to receive data. DataInValid will be ignored while DataInReady is ‘0’. |
|
DataInValid |
In |
DataInValid is a user signal to specify data valid of DataIn. Assert to ‘1’ to indicate that DataIn is valid. |
|
DataIn[n-1:0] |
In |
DataIn is n-bit input data. DataIn must be valid when DataInValid is asserted to ‘1’. |
|
DataOutValid |
Out |
DataOutValid specifies data valid for DataOut. Assert to ‘1’ when DataOut is valid. |
|
DataOut[n-1:0] |
Out
|
DataOut is n-bit data output of AES256XTSSTG. Valid when DataOutValid is asserted to ‘1’. |
Note: n are integers representing the total data path width.
· n=128 for AES256XTSSTGIP
· n=256 for AES256XTSSTG2XIP
· n=512 for AES256XTSSTG4XIP
AES256XTSSTG operation is as simple as 2 steps to use as below.
1. Key setting
Key setting is the first step to use AES256XTSSTG. As shown in Figure 2. In the key setting process consists of encryption key setting and tweakable key setting, the two processes are completely independent of each other. AES256XTSSTG is started encryption key setting process when EKeyInValid=‘1’ and takes 14 clocks cycles to finish the process (EKeyInBusy=‘0’). After that, this EKeyIn is used for every encryption/decryption and can be changed via EKeyInValid is asserted to ‘1’. AES256XTSSTG is started tweakable key setting process when TKeyInValid=‘1’ and takes 14 clocks cycles to finish the process (TKeyInBusy=‘0’). After that, this TKeyIn is used for every encryption/decryption and can be changed via TKeyInValid is asserted to ‘1’.
Figure 2: AES256XTSSTG key setting timing diagram
2. Encryption/Decryption control
As shown in Figure 3 After Encryption key setting process and Tweak key setting process, AES256XTSSTG starts the process when InitStart is asserted to ‘1’ where IvIn and IvIncrement must be valid. Busy is set to be ‘1’ and DataInReady is cleared to ‘0’ in the next cycle. DataInReady signal is asserted to ‘1’ when the AES256XTSSTG is ready to receive incoming data. After that, AES256XTSSTG can operate data every clock cycle. The encryption/decryption process of the DataIn[n-1:0] data occurs when both the DataInValid signal and the DataInReady signal are asserted to '1'. Encrypted/Decrypted data is set to DataOut[n-1:0] signal, while the DataOutValid signal is set to be ‘1’. After the user does not send DataInValid=‘1’ for 16 clock cycles, Finish is active only one clock at the last cycle of operation and DataInBusy is cleared to ‘0’ in the next cycle.
Figure 3: Example of encryption/decryption timing diagram
If the user intends to modify the Initialization Vector (IV) value for every 512-byte block, user can set the IvIncrement to ‘1’ when initiating the process (InitStart=‘1’). The AES256XTSSTG encryption/decryption will automatically update the IV value by incrementing it by 1 for each 512-byte data segment transmitted by the user. It is important to note that the user is not required to set InitStart to ‘1’ to change the new IV value for uninterrupted data transfer in the case of continuous data.
Figure 4: Example of encryption/decryption in IV auto increment mode for AES256XTSSTGIP
Figure 5: Example of encryption/decryption in IV auto increment mode for AES256XTSSTG2XIP
Figure 6: Example of encryption/decryption in IV auto increment mode for AES256XTSSTG4XIP
As shown in Figure 7, Busy signal will be cleared when the user does not send DataInValid=‘1’ more than 16 clock cycle, If the user wants to encrypted/decrypted with the same key and continuous IV as the previous operation, user can send DataInValid=‘1’ to encrypted/decrypted DataIn[n-1:0] without key setting. DataInReady signal will be cleared for initial new IV and IVIncrement mode when the user set InitStart=‘1’.
Figure 7: The timing diagram displays the pausing and continuing of the DataInvalid.
Verification Methods
AES256-XTS-STG IP Core functionality were verified on real board design by using VCK190 and VPK120 Evaluation Board.
Recommended Design Experience
The user must be familiar with HDL design methodology to integrate this IP into system.
Ordering Information
This product is available directly from Design Gateway Co., Ltd. Please contact Design Gateway Co., Ltd. For pricing and additional information about this product using the contact information on the front page of this datasheet.
Revision History
|
Revision |
Date |
Description |
|
1.01 |
9/May/2024 |
Update example implementation statistics for AES256XTS-STG-4X |
|
1.00 |
11/Sep/2023 |
New release |