Side channel cryptanalysis of product ciphers

Authors:
John Kelsey;Bruce Schneier;David Wagner;Chris Hall
Affiliations:
(Correspd.) Counterpane Internet Security, 3031 Tisch Way, 100 Plaza East, San Jose, CA 95128, USA E-mail: {kelsey,schneier}@counterpane.com;Counterpane Internet Security, 3031 Tisch Way, 100 Plaza East, San Jose, CA 95128, USA E-mail: {kelsey,schneier}@counterpane.com;U.C. at Berkeley, Soda Hall, Berkeley, CA 94720-1776, USA E-mail: daw@cs.berkeley.edu;Princeton University - Mathematics, Fine Hall, Washington Road, Princeton, NJ 08544-1000, USA E-mail: cjh@math.princeton.edu
Venue:
Journal of Computer Security
Year:
2000

Citing 0
Cited 33

Power Analysis Attacks and Algorithmic Approaches to Their Countermeasures for Koblitz Curve Cryptosystems

IEEE Transactions on Computers
Hamming Weight Attacks on Cryptographic Hardware - Breaking Masking Defense

ESORICS '02 Proceedings of the 7th European Symposium on Research in Computer Security
Template Attacks

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Satisfiability-based framework for enabling side-channel attacks on cryptographic software

Proceedings of the conference on Design, automation and test in Europe: Designers' forum
Yet another MicroArchitectural Attack:: exploiting I-Cache

Proceedings of the 2007 ACM workshop on Computer security architecture
Aiding side-channel attacks on cryptographic software with satisfiability-based analysis

IEEE Transactions on Very Large Scale Integration (VLSI) Systems
Processor hardware counter statistics as a first-class system resource

HOTOS'07 Proceedings of the 11th USENIX workshop on Hot topics in operating systems
Opportunities and Limits of Remote Timing Attacks

ACM Transactions on Information and System Security (TISSEC)
Faster and Timing-Attack Resistant AES-GCM

CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Practical Electromagnetic Template Attack on HMAC

CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Cache Timing Attacks on Clefia

INDOCRYPT '09 Proceedings of the 10th International Conference on Cryptology in India: Progress in Cryptology
Advances on access-driven cache attacks on AES

SAC'06 Proceedings of the 13th international conference on Selected areas in cryptography
Cryptographic side-channels from low-power cache memory

Cryptography and Coding'07 Proceedings of the 11th IMA international conference on Cryptography and coding
Leakage-resilient storage

SCN'10 Proceedings of the 7th international conference on Security and cryptography for networks
Hardware assistance for trustworthy systems through 3-D integration

Proceedings of the 26th Annual Computer Security Applications Conference
Improved trace-driven cache-collision attacks against embedded AES implementations

WISA'10 Proceedings of the 11th international conference on Information security applications
Automatically deriving information-theoretic bounds for adaptive side-channel attacks

Journal of Computer Security
Systematic security assessment at an early processor design stage

TRUST'11 Proceedings of the 4th international conference on Trust and trustworthy computing
A cache trace attack on CAMELLIA

InfoSecHiComNet'11 Proceedings of the First international conference on Security aspects in information technology
Trace-driven cache attacks on AES (short paper)

ICICS'06 Proceedings of the 8th international conference on Information and Communications Security
Cache-collision timing attacks against AES

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
An open approach for designing secure electronic immobilizers

ISPEC'05 Proceedings of the First international conference on Information Security Practice and Experience
Cache based remote timing attack on the AES

CT-RSA'07 Proceedings of the 7th Cryptographers' track at the RSA conference on Topics in Cryptology
Differential cache-collision timing attacks on AES with applications to embedded CPUs

CT-RSA'10 Proceedings of the 2010 international conference on Topics in Cryptology
Intrusion-Resilience via the bounded-storage model

TCC'06 Proceedings of the Third conference on Theory of Cryptography
The program counter security model: automatic detection and removal of control-flow side channel attacks

ICISC'05 Proceedings of the 8th international conference on Information Security and Cryptology
An enhanced differential cache attack on CLEFIA for large cache lines

INDOCRYPT'11 Proceedings of the 12th international conference on Cryptology in India
Inspection resistant memory: architectural support for security from physical examination

Proceedings of the 39th Annual International Symposium on Computer Architecture
An analytical model for time-driven cache attacks

FSE'07 Proceedings of the 14th international conference on Fast Software Encryption
Improvement of trace-driven I-Cache timing attack on the RSA algorithm

Journal of Systems and Software
Unraveling timewarp: what all the fuzz is about?

Proceedings of the 2nd International Workshop on Hardware and Architectural Support for Security and Privacy
Attacks on implementations of cryptographic algorithms: side-channel and fault attacks

Proceedings of the 6th International Conference on Security of Information and Networks
Cache-Access pattern attack on disaligned AES t-tables

COSADE'13 Proceedings of the 4th international conference on Constructive Side-Channel Analysis and Secure Design

Quantified Score

Hi-index	0.00

Visualization

Abstract

Building on the work of Kocher (1996), Jaffe and Yun (1998), we discuss the notion of side-channel cryptanalysis: cryptanalysis using implementation data. We discuss the notion of side-channel attacks and the vulnerabilities they introduce, demonstrate side-channel attacks against three product ciphers - timing attack against IDEA, processor-flag attack against RC5, and Hamming weight attack against DES - and then generalize our research to other cryptosystems.