How to Decide Selection Functions for Power Analysis : From the Viewpoint of Hardware Architecture of Block Ciphers
スポンサーリンク
概要
- 論文の詳細を見る
In this paper we first demonstrate that effective selection functions in power analysis attacks change depending on circuit architectures of a block cipher. We then conclude that the most resistant architecture on its own, in the case of the loop architecture, has two data registers have separate roles: one for storing the plaintext and ciphertext, and the other for storing intermediate values. There, the pre-whitening operation is placed at the output of the former register. The architecture allows the narrowest range of selection functions and thereby has resistance against ordinary CPA. Thus, we can easily defend against attacks by ordinary CPA at the architectural level, whereas we cannot against DPA. Secondly, we propose a new technique called “self-templates” in order to raise the accuracy of evaluation of DPA-based attacks. Self-templates enable to differentiate meaningful selection functions for DPA-based attacks without any strong assumption as in the template attack. We also present the results of attacks to an AES co-processor on an ASIC and demonstrate the effectiveness of the proposed technique.
- 2011-01-01
著者
-
SUZUKI Daisuke
Information Technology R&D Center, Mitsubishi Electric Corporation
-
Matsumoto Tsutomu
Graduate School Of Engineering Yokohama National University:graduate School Of Environment And Infor
-
SAEKI Minoru
Information Technology R & D Center, Mitsubishi Electric Corporation
-
Saeki Minoru
Information Technology R&d Center Mitsubishi Electric Corporation
-
Matsumoto Tsutomu
Graduate School Of Environmental And Information Sciences Yokohama National University
-
Shimizu Koichi
Information Technology R&d Center Mitsubishi Electric Corporation
-
Suzuki Daisuke
Information Technology R&d Center Mitsubishi Electric Corporation
-
Suzuki Daisuke
Information Technology R & D Center Mitsubishi Electric Corporation
-
Suzuki Daisuke
Information Technol. R&d Center Mitsubishi Electric Corp.
-
Shimizu Koichi
Information Technol. R&d Center Mitsubishi Electric Corp.
関連論文
- How to Maximize the Potential of FPGA-Based DSPs for Modular Exponentiation
- Unconditionally Secure Group Signatures
- Interaction Key Generation Schemes (Protocol) (Cryptography and Information Security)
- Unconditionally Secure Authenticated Encryption(Discrete Mathematics and Its Applications)
- A Distributed User Revocation Scheme for Ad-Hoc Networks(Advances in Ad Hoc Mobile Communications and Networking)
- How to Maximize the Potential of FPGA-Based DSPs for Modular Exponentiation
- A Design Methodology for a DPA-Resistant Circuit with RSL Techniques
- How to Decide Selection Functions for Power Analysis : From the Viewpoint of Hardware Architecture of Block Ciphers
- Leakage Analysis of DPA Countermeasures at the Logic Level(Side Channel Attacks,Cryptography and Information Security)
- Random Switching Logic : A New Countermeasure against DPA and Second-Order DPA at the Logic Level(Side Channel Attacks,Cryptography and Information Security)
- Collusion Secure Codes : Systematic Security Definitions and Their Relations(Discrete Mathematics and Its Applications)
- Clone Match Rate Evaluation for an Artifact-metric System (特集:新たな脅威に立ち向かうコンピュータセキュリティ技術)
- Detection-Resistant Steganography for Standard MIDI Files (Information Security)
- High-Speed Passphrase Search System for PGP
- An Evaluation Method of Time Stamping Schemes from Viewpoints of Integrity, Cost and Availability(Special Section on Cryptography and Information Security)
- Security Evaluations of MRSL and DRSL Considering Signal Delays
- An Artifact-metric System Which Utilizes Inherent Texture (特集 21世紀のコンピュータセキュリティ技術)
- Random-Error-Resilient Tracing Algorithm for a Collusion-Secure Fingerprinting Code (特集 電子社会に向けたコンピュータセキュリティ技術)
- A Flexible Tree-Based Key Management Framework(Special Section on Cryptography and Information Security)
- An Analysis of Leakage Factors for Dual-Rail Pre-Charge Logic Style
- Information-Flow-Based Access Control for Web Browsers
- Multiparty DSA Signature Generation without Simultaneous User Operations(Application Information Security)
- Random-Error Resilience of a Short Collusion-Secure Code
- An Evaluation Method for a Magnetic Artifact-metric System (特集 電子社会に向けたコンピュータセキュリティ技術)
- A Scheme of Secret Communication Using Internet Control Message Protocol(Special Section on Cryptography and Information Security)
- On Applicability of Differential Cryptanalysis, Linear Cryptanalysis and Mod n Cryptanalysis to an Encryption Algorithm M8(ISO9979-20) (特集 21世紀のコンピュータセキュリティ技術)
- Glitch PUF : Extracting Information from Usually Unwanted Glitches
- A proper security analysis method for CMOS cryptographic circuits
- Unified Coprocessor Architecture for Secure Key Storage and Challenge-Response Authentication
- Finding Malicious Authoritative DNS Servers