International Association for Cryptologic Research

International Association
for Cryptologic Research

Transactions on Symmetric Cryptology, Volume 2025

BEANIE – A 32-bit Cipher for Cryptographic Mitigations Against Software Attacks


Simon Gerhalter
Graz University of Technology, Graz, Austria

Samir Hodžić
NXP Semiconductors, Gratkorn, Austria

Marcel Medwed
NXP Semiconductors, Gratkorn, Austria

Marcel Nageler
Graz University of Technology, Graz, Austria

Artur Folwarczny
NXP Semiconductors, Leuven, Belgium

Ventzi Nikov
NXP Semiconductors, Leuven, Belgium

Jan Hoogerbrugge
NXP Semiconductors, Eindhoven, Netherlands

Tobias Schneider
NXP Semiconductors, Gratkorn, Austria

Gary McConville
NXP Semiconductors, Gratkorn, Austria

Maria Eichlseder
Graz University of Technology, Graz, Austria


Keywords: Low-latency block cipher, Memory encryption


Abstract

Modern CPU architectures deploy a variety of security features to mitigate software attacks, including logical isolation, memory tagging, and shadow stacks. Building such features on cryptographic isolation rather than logical checks can reduce memory overhead and improve robustness against misconfiguration and low-cost physical attacks, but it requires a cipher that adds little latency or frequency overhead. At present, there is no suitable low-latency design for encrypting 32-bit words as commonly used in microcontrollers. In this paper, we propose a 32-bit tweakable block cipher tailored to memory encryption for microcontroller units. The design is optimized for low latency through a careful choice of round-function components and by leveraging an attack scenario similar to that used for SCARF. To mitigate attack vectors introduced by that scenario, we deploy a complex tweak-key schedule. Owing to the shortage of suitable 32-bit designs, we compare our design to several low-latency ciphers with different block sizes, and our hardware implementation shows competitive latency numbers.

Publication

Transactions on Symmetric Cryptology, Volume 2025, Issue 4

Paper

Artifact

Artifact number
fse/2026/a12

Artifact published
June 22, 2026

Badge
IACR FSE Artifacts Functional

README

ZIP (1659603 Bytes)  

License
GPLv3 This work is licensed under the GNU General Public License version 3.

Note that license information is supplied by the authors and has not been confirmed by the IACR.


BibTeX How to cite

Simon Gerhalter, Samir Hodžić, Marcel Medwed, Marcel Nageler, Artur Folwarczny, Ventzi Nikov, Jan Hoogerbrugge, Tobias Schneider, Gary McConville, and Maria Eichlseder. (2025). BEANIE – A 32-bit Cipher for Cryptographic Mitigations Against Software Attacks. Transactions on Symmetric Cryptology, 2025(4), 31-69. https://doi.org/10.46586/tosc.v2025.i4.31-69. Artifact available at https://artifacts.iacr.org/fse/2026/a12