Lattice-based Encryption Over Standard Lattices in Hardware

Lattice-based cryptography has gained credence recently as a replacement for current public-key cryptosystems, due to its quantum-resilience, versatility, and relatively low key sizes. To date, encryption based on the learning with errors (LWE) problem has only been investigated from an ideal lattice standpoint, due to its computation and size efficiencies. However, a thorough investigation of standard lattices in practice has yet to be considered. Standard lattices may be preferred to ideal lattices due to their stronger security assumptions and less restrictive parameter selection process. In this paper, an area-optimised hardware architecture of a standard lattice-based cryptographic scheme is proposed. The design is implemented on a FPGA and it is found that both encryption and decryption fit comfortably on a Spartan-6 FPGA. This is the first hardware architecture for standard lattice-based cryptography reported in the literature to date, and thus is a benchmark for future implementations.
Additionally, a revised discrete Gaussian sampler is proposed which is the fastest of its type to date, and also is the first to investigate the cost savings of implementing with lamda_2-bits of precision. Performance results are promising in comparison to the hardware designs of the equivalent ring-LWE scheme, which in addition to providing a stronger security proof; generate 1272 encryptions per second and 4395 decryptions per second.

Time-Independent Discrete Gaussian Sampling for Post-Quantum Cryptography

As the development of a viable quantum computer nears, existing widely used public-key cryptosystems, such as RSA, will no longer be secure. Thus, significant effort is being invested into post-quantum cryptography (PQC). Lattice-based cryptography (LBC) is one such promising area of PQC, which offers versatile, efficient, and high performance security services. However, the vulnerabilities of these implementations against side-channel attacks (SCA) remain significantly understudied. Most, if not all, lattice-based cryptosystems require noise samples generated from a discrete Gaussian distribution, and a successful timing analysis attack can render the whole cryptosystem broken, making the discrete Gaussian sampler the most vulnerable module to SCA. This research proposes countermeasures against timing information leakage with FPGA-based designs of the CDT-based discrete Gaussian samplers with constant response time, targeting encryption and signature scheme parameters. The proposed designs are compared against the state-of-the-art and are shown to significantly outperform existing implementations. For encryption, the proposed sampler is 9x faster in comparison to the only other existing time-independent CDT sampler design. For signatures, the first time-independent CDT sampler in hardware is proposed. 

Ring currents in azulene

We propose a self consistent polarisable ion tight binding theory for the study of push-pull processes in aromatic molecules. We find that the method quantitatively reproduces ab initio calculations of dipole moments and polarisability. We apply the scheme in a simulation which solves the time dependent Schroedinger equation to follow the relaxation of azulene from the second excited to the ground states. We observe rather spectacular oscillating ring currents which we explain in terms of interference between the HOMO and LUMO states.

On the derived category of a regular toric scheme

Let X be a quasi-compact scheme, equipped with an open covering by affine schemes U s = Spec A s . A quasi-coherent sheaf on X gives rise, by taking sections over the U s , to a diagram of modules over the coordinate rings A s , indexed by the intersection poset S of the covering. If X is a regular toric scheme over an arbitrary commutative ring, we prove that the unbounded derived category of quasi-coherent sheaves on X can be obtained from a category of Sop-diagrams of chain complexes of modules by inverting maps which induce homology isomorphisms on hyper-derived inverse limits. Moreover, we show that there is a finite set of weak generators, one for each cone in the fan S. The approach taken uses the machinery of Bousfield–Hirschhorn colocalisation of model categories. The first step is to characterise colocal objects; these turn out to be homotopy sheaves in the sense that chain complexes over different open sets U s agree on intersections up to quasi-isomorphism. In a second step it is shown that the homotopy category of homotopy sheaves is equivalent to the derived category of X.

Low-cost digital signature architecture suitable for radio frequency identification tags

Continuing achievements in hardware technology are bringing ubiquitous computing closer to reality. The notion of a connected, interactive and autonomous environment is common to all sensor networks, biosystems and radio frequency identification (RFID) devices, and the emergence of significant deployments and sophisticated applications can be expected. However, as more information is collected and transmitted, security issues will become vital for such a fully connected environment. In this study the authors consider adding security features to low-cost devices such as RFID tags. In particular, the authors consider the implementation of a digital signature architecture that can be used for device authentication, to prevent tag cloning, and for data authentication to prevent transmission forgery. The scheme is built around the signature variant of the cryptoGPS identification scheme and the SHA-1 hash function. When implemented on 130 nm CMOS the full design uses 7494 gates and consumes 4.72 mu W of power, making it smaller and more power efficient than previous low-cost digital signature designs. The study also presents a low-cost SHA-1 hardware architecture which is the smallest standardised hash function design to date.

Molecular similarity between myelodysplastic form of chronic myelomonocytic leukemia and refractory anemia with ring sideroblasts

Chronic myelomonocytic leukemia is similar to but a separate entity from both myeloproliferative neoplasms and myelodysplastic syndromes, and shows either myeloproliferative or myelodysplastic features. We ask whether this distinction may have a molecular basis. We established the gene expression profiles of 39 samples of chronic myelomonocytic leukemia (including 12 CD34-positive) and 32 CD34-positive samples of myelodysplastic syndromes by using Affymetrix microarrays, and studied the status of 18 genes by Sanger sequencing and array-comparative genomic hybridization in 53 samples. Analysis of 12 mRNAS from chronic myelomonocytic leukemia established a gene expression signature of 122 probe sets differentially expressed between proliferative and dysplastic cases of chronic myelomonocytic leukemia. As compared to proliferative cases, dysplastic cases over-expressed genes involved in red blood cell biology. When applied to 32 myelodysplastic syndromes, this gene expression signature was able to discriminate refractory anemias with ring sideroblasts from refractory anemias with excess of blasts. By comparing mRNAS from these two forms of myelodysplastic syndromes we derived a second gene expression signature. This signature separated the myelodysplastic and myeloproliferative forms of chronic myelomonocytic leukemias. These results were validated using two independent gene expression data sets. We found that myelodysplastic chronic myelomonocytic leukemias are characterized by mutations in transcription/epigenetic regulators (ASXL1, RUNX1, TET2) and splicing genes (SRSF2) and the absence of mutations in signaling genes. Myelodysplastic chronic myelomonocytic leukemias and refractory anemias with ring sideroblasts share a common expression program suggesting they are part of a continuum, which is not totally explained by their similar but not, however, identical mutation spectrum. © 2013 Ferrata Storti Foundation.

Design of a silicone reservoir intravaginal ring for the delivery of oxybutynin.

Oxybutynin, a drug of choice in the treatment of urinary incontinence, has low oral bioavailability due to extensive first-pass metabolism. A toxic metabolite, N-desethyloxybutynin, has been linked to adverse reactions to oral oxybutynin. This study, therefore, reports on the design of an oxybutynin intravaginal ring (IVR) of reservoir design, comprising an oxybutynin silicone elastomer core encased in a non-medicated silicone sheath, manufactured by reaction injection moulding at 50oC. An unusually high initial burst release of oxybutynin (42.7 mg in 24 h) was observed in vitro with a full length core (100 mg drug loading), with subsequent non-zero order drug release. Use of fractional segment cores substantially reduced the burst effect, yielding linear cumulative drug release versus time plots from days 2 to 14. Thus, a 1/8 fractional segment core gave a 24 h burst of 11.28 mg oxybutynin and, thereafter, zero order release at the target dose of 5 mg/day over 14 days. Two oxybutynin cores, each 1/16 of full length, gave a greater release than a single 1/8 core, due to core segment end effects resulting in an increased surface area for release. The burst release was investigated by determining drug solubilities in the propan-1-ol product of elastomer condensation cure (390 mg/ml) and in the elastomer itself (13.9-20.21 mg/ml, by direct extraction and indirect thermal methods). These high oxybutynin solubilities were considered the major contributors to the burst effect. It was concluded that use of a fractional segment core would allow development of a suitable oxybutynin reservoir IVR.

Fault Diagnosis in Internal Combustion Engines Using Nonlinear Multivariate Statistics

This paper presents a statistical-based fault diagnosis scheme for application to internal combustion engines. The scheme relies on an identified model that describes the relationships between a set of recorded engine variables using principal component analysis (PCA). Since combustion cycles are complex in nature and produce nonlinear relationships between the recorded engine variables, the paper proposes the use of nonlinear PCA (NLPCA). The paper further justifies the use of NLPCA by comparing the model accuracy of the NLPCA model with that of a linear PCA model. A new nonlinear variable reconstruction algorithm and bivariate scatter plots are proposed for fault isolation, following the application of NLPCA. The proposed technique allows the diagnosis of different fault types under steady-state operating conditions. More precisely, nonlinear variable reconstruction can remove the fault signature from the recorded engine data, which allows the identification and isolation of the root cause of abnormal engine behaviour. The paper shows that this can lead to (i) an enhanced identification of potential root causes of abnormal events and (ii) the masking of faulty sensor readings. The effectiveness of the enhanced NLPCA based monitoring scheme is illustrated by its application to a sensor fault and a process fault. The sensor fault relates to a drift in the fuel flow reading, whilst the process fault relates to a partial blockage of the intercooler. These faults are introduced to a Volkswagen TDI 1.9 Litre diesel engine mounted on an experimental engine test bench facility.

Intravaginal ring delivery of the reverse transcriptase inhibitor TMC 120 as an HIV microbicide

TMC 120 (Dapivirine) is a potent non-nucleoside reverse transcriptase inhibitor that is presently being developed as a vaginal HIV microbicide. To date, most vaginal microbicides under clinical investigation have been formulated as single-dose semi-solid gels, designed for application to the vagina before each act of intercourse. However, a clear rationale exists for providing long-term, controlled release of vaginal microbicides in order to afford continuous protection against heterosexually transmitted HIV infection and to improve user compliance. In this study we report on the incorporation of various pharmaceutical excipients into TMC 120 silicone, reservoir-type intravaginal rings (IVRs) in order to modify the controlled release characteristics of the microbicide. The results demonstrate that TMC 120 is released in zero-order fashion from the rings over a 28-day period and that release parameters could be modified by the inclusion of release-modifying excipients in the IVR. The hydrophobic liquid excipient isopropyl myristate had little effect on steady-state daily release rates, but did increase the magnitude and duration of burst release in proportion to excipient loading in the IVR. By comparison, the hydrophobic liquid poly(dimethylsiloxane) had little effect on TMC 120 release parameters. A hydrophilic excipient, lactose, had the surprising effect of decreasing TMC 120 burst release while increasing the apparent steady-state daily release in a concentration-dependent manner. Based on previous cell culture data and vaginal physiology, TMC120 is released from the various ring formulations in amounts potentially capable of maintaining a protective vaginal concentration. It is further predicted that the observed release rates may be maintained for at least a period of 1 year from a single ring device. TMC 120 release profiles and the mechanical properties of rings could be modified by the physicochemical nature of hydrophobic and hydrophilic excipients incorporated into the IVRs.