Differential fault analysis on AES key schedule and some countermeasures

Authors:
Chien-Ning Chen;Sung-Ming Yen
Affiliations:
Laboratory of Cryptography and Information Security, Dept of Computer Science and Information Engineering, National Central University, Chung-Li, Taiwan, R.O.C.;Laboratory of Cryptography and Information Security, Dept of Computer Science and Information Engineering, National Central University, Chung-Li, Taiwan, R.O.C.
Venue:
ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
Year:
2003

Citing 5
Cited 22

The Design of Rijndael

The Design of Rijndael
Differential Fault Analysis of Secret Key Cryptosystems

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
On the importance of checking cryptographic protocols for faults

EUROCRYPT'97 Proceedings of the 16th annual international conference on Theory and application of cryptographic techniques
Amplified differential power cryptanalysis on Rijndael implementations with exponentially fewer power traces

ACISP'03 Proceedings of the 8th Australasian conference on Information security and privacy
A simple power-analysis (SPA) attack on implementations of the AES key expansion

ICISC'02 Proceedings of the 5th international conference on Information security and cryptology

Robust codes and robust, fault-tolerant architectures of the Advanced Encryption Standard

Journal of Systems Architecture: the EUROMICRO Journal
Differential fault analysis on the ARIA algorithm

Information Sciences: an International Journal
Error detection and error correction procedures for the advanced encryption standard

Designs, Codes and Cryptography
Differential fault analysis on the contracting UFN structure, with application to SMS4 and MacGuffin

Journal of Systems and Software
An EDA tool for implementation of low power and secure crypto-chips

Computers and Electrical Engineering
Differential Fault Analysis on DES Middle Rounds

CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Differential fault analysis on Camellia

Journal of Systems and Software
Differential fault analysis on CLEFIA

ICICS'07 Proceedings of the 9th international conference on Information and communications security
Fault analysis on stream cipher MUGI

ICISC'10 Proceedings of the 13th international conference on Information security and cryptology
Meet-in-the-middle and impossible differential fault analysis on AES

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
Amplifying side-channel attacks with techniques from block cipher cryptanalysis

CARDIS'06 Proceedings of the 7th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Fault based collision attacks on AES

FDTC'06 Proceedings of the Third international conference on Fault Diagnosis and Tolerance in Cryptography
Fault attack resistant cryptographic hardware with uniform error detection

FDTC'06 Proceedings of the Third international conference on Fault Diagnosis and Tolerance in Cryptography
Exploring the feasibility of low cost fault injection attacks on sub-threshold devices through an example of a 65nm AES implementation

RFIDSec'11 Proceedings of the 7th international conference on RFID Security and Privacy
Differential fault analysis of AES-128 key schedule using a single multi-byte fault

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Combined fault and side-channel attack on protected implementations of AES

CARDIS'11 Proceedings of the 10th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Differential fault analysis of AES: Toward reducing number of faults

Information Sciences: an International Journal
Differential fault analysis of full LBlock

COSADE'12 Proceedings of the Third international conference on Constructive Side-Channel Analysis and Secure Design
Linear fault analysis of block ciphers

ACNS'12 Proceedings of the 10th international conference on Applied Cryptography and Network Security
Error detecting AES using polynomial residue number systems

Microprocessors & Microsystems
Fault analysis study of the block cipher FOX64

Multimedia Tools and Applications
A New Recovery Scheme Against Short-to-Long Duration Transient Faults in Combinational Logic

Journal of Electronic Testing: Theory and Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

This paper describes a DFA attack on the AES key schedule. This fault model assumes that the attacker can induce a single byte fault on the round key. It efficiently finds the key of AES-128 with feasible computation and less than thirty pairs of correct and faulty ciphertexts. Several countermeasures are also proposed. This weakness can be resolved without modifying the structure of the AES algorithm and without decreasing the efficiency.