This brief presents a new Advanced Encryption Standard (AES) S-Box hardware design based on linear mappings optimized by combining multiplicative and exponential offsets. Generally, the performance of S-Box with composite field representations depends on the structure of linear mappings (i.e., transformation matrices) between the polynomial field and composite field before and after the S-Box. So far, multiplicative and exponential offsets have been applied only to Boyar-Peralta type S-Box variants for optimizing the transformation matrix. In this brief, we apply the offset methods to another S-Box based on the redundant Galois field arithmetic and evaluate the performance by logic synthesis. Specifically, we design and evaluate two new types of S-Box hardware: one for encryption only (ENC) and the other for both encryption and decryption (ENC/DEC). The evaluation result confirms that the proposed ENC and ENC/DEC S-Boxes achieve a performance up to 8.7% and 28.8% higher, respectively, than the highest-performing conventional ones in terms of the area timing (AT) product.

中文翻译：

---

基于线性映射优化提高效率的 AES S-Box 硬件


本简介介绍了一种新的高级加密标准 (AES) S-Box 硬件设计，该设计基于通过组合乘法和指数偏移进行优化的线性映射。一般来说，具有复合场表示的S-Box的性能取决于S-Box之前和之后的多项式场和复合场之间的线性映射（即变换矩阵）的结构。到目前为止，乘法和指数偏移仅应用于 Boyar-Peralta 型 S-Box 变体以优化变换矩阵。在本文中，我们将偏移方法应用于另一个基于冗余伽罗瓦域算法的S-Box，并通过逻辑综合评估其性能。具体来说，我们设计并评估了两种新型 S-Box 硬件：一种仅用于加密 (ENC)，另一种用于加密和解密 (ENC/DEC)。评估结果证实，在区域定时 (AT) 产品方面，所提出的 ENC 和 ENC/DEC S-Box 的性能比最高性能的传统 S-Box 分别高出 8.7% 和 28.8%。