SM Algorithm Analysis and Software Performance Research

doi:10.3969/j.issn.1671-1122.2021.10.002

Abstract

Abstract:

Encryption technology is the core of information security, and the promotion of national secret algorithms is of great significance to safeguarding country’s network information security. In recent years, commercial encryption industry of China has developed rapidly, but the SM algorithm generally has the problem of low implementation efficiency. In order to explored the feasibility of the SM algorithm to replace the international encryption algorithm, this article mainly focused on the SM3, SM2, SM4 of SM algorithm and comprehensive comparison of the target international cryptographic algorithms, analyzed the calculation amount and security of the algorithms, and used OpenSSL and a SM algorithm optimized by a domestic manufacturer A to test the performance of each algorithm. The performance test results show that the SM3 is similar to the SHA-256, the performance of the SM2 digital signature algorithm and the ECDSA algorithm is affected by the Hash function they select, but the overall performance is similar. With small amount of data, the performance of SM2 public key encryption algorithm and ECIES algorithm depend on the size of the encrypted data. As the amount of data increases, the performance of the latter is significantly better than the former. The performance of the SM4 algorithm is between AES and 3DES.

Key words: SM algorithm, SM2 algorithm, SM3 algorithm, SM4 algorithm, software performance

CLC Number:

TP309

HU Jingxiu, YANG Yang, XIONG Lu, WU Jintan. SM Algorithm Analysis and Software Performance Research[J]. Netinfo Security, 2021, 21(10): 8-16.

Figures/Tables 14

References 15

[1]	National Institute of Standards and Technology. Federal Information Processing Standards Publication 180-3, Secure Hash Standards(SHS)[S]. Gaithersburg: National Institute of Standards and Technology, 2008.
[2]	WANG Xiaoyun, YU Hongbo. How to Break MD5 and Other Hash Functions [C]//Springer. 24th Annual International Conference on Theory and Applications of Cryptographic Techniques, May 22-26, 2005, Aarhus, Denmark. Berlin: Springer, 2005: 19-35.
[3]	National Cryptography Administration. SM3 Cryptographic Hash Algorithm[EB/OL]. https://sca.gov.cn/sca/xwdt/2010-12/17/content_1002389.shtml, 2010-12-17.
	国家密码管理局. SM3密码杂凑算法[EB/OL]. https://sca.gov.cn/sca/xwdt/2010-12/17/content_1002389.shtml, 2010-12-17.
[4]	SHEN Yanzhao. Analysis of SM3 Cryptographic Hash Algorithm[D]. Shanghai: Donghua University, 2013.
	申延召. SM3密码杂凑算法分析[D]. 上海:东华大学, 2013.
[5]	National Cryptography Administration. Public Key Cryptographic Algorithm SM2 Based Elliptic Curves[EB/OL]. https://sca.gov.cn/sca/xwdt/2010-12/17/content_1002386.shtml, 2010-12-17.
	国家密码管理局. SM2椭圆曲线公钥密码算法[EB/OL]. https://sca.gov.cn/sca/xwdt/2010-12/17/content_1002386.shtml, 2010-12-17.
[6]	JOHNSON D, MENEZES A, VANSTONE S. The Elliptic Curve Digital Signature Algorithm (ECDSA)[J]. International Journal of Information Security, 2001, 1(1):36-63. doi: 10.1007/s102070100002 URL
[7]	RIVEST R L. A Method for Obtaining Digital Signatures and Public-key Cryptosystems[J]. Communications of the ACM, 1978, 26(2):96-99. doi: 10.1145/357980.358017 URL
[8]	SUN Rongyan, CAI Changshu, ZHOU Zhou, et al. The Comparision Between Digital Signature Based on SM2 and ECDSA[J]. Network Security Technology and Application, 2013(2):60-62.
	孙荣燕, 蔡昌曙, 周洲, 等. 国密SM2数字签名算法与ECDSA算法对比分析研究[J]. 网络安全技术与应用, 2013(2):60-62.
[9]	ASSOCIATION A B. Public Key Cryptography for the Financial Services Industry, Key Agreement and Key Transport Using Elliptic Curve Cryptography[J]. Speculum, 2006, 81(2):566-569. doi: 10.1017/S0038713400003262 URL
[10]	BIRYUKOV A, CANNIÈRE C D. Data Encryption Standard(DES)[J]. Encyclopedia of Cryptography & Security, 2011, 28(2):295-301.
[11]	DAEMEN J, RIJMEN V. Rijndael, the Advanced Encryption Standard[J]. Dr Dobbs Journal, 2001, 26(3):137-139.
[12]	National Cryptography Administration. Announcement of the State Password Administration(No.7)[EB/OL]. https://www.oscca.gov.cn/sca/xwdt/2006-01/06/content_1002355.shtml, 2016-11-04.
	国家密码管理局国家密码管理局公告（第7号）[EB/OL]. https://www.oscca.gov.cn/sca/xwdt/2006-01/06/content_1002355.shtml, 2016-11-04.
[13]	MERKLE R C, HELLMAN M E. On the Security of Multiple Encryption[J]. Communications of the ACM, 1981, 24(7):465-467. doi: 10.1145/358699.358718 URL
[14]	OORSCHOT P C V, WIENER M J. A Known-plaintext Attack on Two-key Triple Encryption[J]. Springer, 1991(473):318-325.
[15]	DAEMEN J. The Design of Rijndael[J]. Information Security & Cryptography, 2001, 26(3):137-139.

杂凑算法	消息扩展	状态更新	合计
SM3	416SH+584LO	1024SH+1328LO+ 384MA	1440SH+1912LO+ 384MA
SHA-256	480SH+384LO+ 144MA	768SH+1152LO+ 256MA	1248SH+1536LO+ 400MA

输入长度	运行时间比
输入长度	A厂商SM3/SHA-256	OpenSSL SM3/SHA-256
8 B	1.3819	1.8048
64 B	1.2329	1.8392
256 B	1.1652	1.9581
1 KB	1.1295	2.0152
512 KB	1.1181	2.0292
1 MB	1.1160	2.0546

签名算法		SM2	ECDSA
签名产生	椭圆曲线运算	1MP	1MP
签名产生	模运算	3MA+1MI+1MM	1MA+1MI+1MM+1MO
签名验证	椭圆曲线运算	2MP+1AP	2MP+1AP
签名验证	模运算	2MA	2MA+1MI+1MO

算法	签名耗时比	签名验证耗时比
ECDSA_secp256k1/OpenSSL SM2	1.11	1.12
ECDSA_secp256k1/ECDSA_X9.62prime256v1	16.60	4.16

加/解密算法		SM2	ECIES
公钥加密	椭圆曲线运算	3MP	2MP
	逻辑运算	1LO	1LO
	模乘运算	—	1MM
	杂凑运算	（klen/256）× HO₁+1HO	((klen+mackeylen)/256)HO₂+1HH
私钥解密	椭圆曲线运算	2MP	1MP
	逻辑运算	1LO	1LO
	模乘运算	—	1MM
	杂凑运算	（klen/256）HO	（klen/256）HO