Correlation-enhanced power analysis collision attack

Authors:
Amir Moradi;Oliver Mischke;Thomas Eisenbarth
Affiliations:
Horst Görtz Institute for IT Security, Ruhr University Bochum, Germany;Horst Görtz Institute for IT Security, Ruhr University Bochum, Germany;Horst Görtz Institute for IT Security, Ruhr University Bochum, Germany and Department of Mathematical Sciences, Florida Atlantic University, FL
Venue:
CHES'10 Proceedings of the 12th international conference on Cryptographic hardware and embedded systems
Year:
2010

Citing 22
Cited 17

Differential Power Analysis

CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
ElectroMagnetic Analysis (EMA): Measures and Counter-Measures for Smart Cards

E-SMART '01 Proceedings of the International Conference on Research in Smart Cards: Smart Card Programming and Security
A Compact Rijndael Hardware Architecture with S-Box Optimization

ASIACRYPT '01 Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
An Implementation of DES and AES, Secure against Some Attacks

CHES '01 Proceedings of the Third International Workshop on Cryptographic Hardware and Embedded Systems
Electromagnetic Analysis: Concrete Results

CHES '01 Proceedings of the Third International Workshop on Cryptographic Hardware and Embedded Systems
The EM Side-Channel(s)

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Multiplicative Masking and Power Analysis of AES

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Power Analysis Attacks: Revealing the Secrets of Smart Cards (Advances in Information Security)

Power Analysis Attacks: Revealing the Secrets of Smart Cards (Advances in Information Security)
Secure FPGA circuits using controlled placement and routing

CODES+ISSS '07 Proceedings of the 5th IEEE/ACM international conference on Hardware/software codesign and system synthesis
PRESENT: An Ultra-Lightweight Block Cipher

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems
Multiple-Differential Side-Channel Collision Attacks on AES

CHES '08 Proceeding sof the 10th international workshop on Cryptographic Hardware and Embedded Systems
Attacking State-of-the-Art Software Countermeasures--A Case Study for AES

CHES '08 Proceeding sof the 10th international workshop on Cryptographic Hardware and Embedded Systems
Secure Hardware Implementation of Non-linear Functions in the Presence of Glitches

Information Security and Cryptology --- ICISC 2008
Compact and secure design of masked AES S-box

ICICS'07 Proceedings of the 9th international conference on Information and communications security
A very compact "Perfectly masked" S-box for AES

ACNS'08 Proceedings of the 6th international conference on Applied cryptography and network security
Provably secure masking of AES

SAC'04 Proceedings of the 11th international conference on Selected Areas in Cryptography
A side-channel analysis resistant description of the AES s-box

FSE'05 Proceedings of the 12th international conference on Fast Software Encryption
Pinpointing the side-channel leakage of masked AES hardware implementations

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
Small size, low power, side channel-immune AES coprocessor: design and synthesis results

AES'04 Proceedings of the 4th international conference on Advanced Encryption Standard
Successfully attacking masked AES hardware implementations

CHES'05 Proceedings of the 7th international conference on Cryptographic hardware and embedded systems
A very compact s-box for AES

CHES'05 Proceedings of the 7th international conference on Cryptographic hardware and embedded systems
An AES smart card implementation resistant to power analysis attacks

ACNS'06 Proceedings of the 4th international conference on Applied Cryptography and Network Security

Pushing the limits: a very compact and a threshold implementation of AES

EUROCRYPT'11 Proceedings of the 30th Annual international conference on Theory and applications of cryptographic techniques: advances in cryptology
Improved collision-correlation power analysis on first order protected AES

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
On the power of fault sensitivity analysis and collision side-channel attacks in a combined setting

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
Localized electromagnetic analysis of cryptographic implementations

CT-RSA'12 Proceedings of the 12th conference on Topics in Cryptology
Overcoming significant noise: correlation-template-induction attack

ISPEC'12 Proceedings of the 8th international conference on Information Security Practice and Experience
Statistical tools flavor side-channel collision attacks

EUROCRYPT'12 Proceedings of the 31st Annual international conference on Theory and Applications of Cryptographic Techniques
How far should theory be from practice?: evaluation of a countermeasure

CHES'12 Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems
Unified and optimized linear collision attacks and their application in a non-profiled setting

CHES'12 Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems
A case study of side-channel analysis using decoupling capacitor power measurement with the OpenADC

FPS'12 Proceedings of the 5th international conference on Foundations and Practice of Security
Key-Dependent weakness of AES-Based ciphers under clockwise collision distinguisher

ICISC'12 Proceedings of the 15th international conference on Information Security and Cryptology
Masked dual-rail precharge logic encounters state-of-the-art power analysis methods

IEEE Transactions on Very Large Scale Integration (VLSI) Systems
A low-entropy first-degree secure provable masking scheme for resource-constrained devices

Proceedings of the Workshop on Embedded Systems Security
Collision-Correlation attack against some 1st-order boolean masking schemes in the context of secure devices

COSADE'13 Proceedings of the 4th international conference on Constructive Side-Channel Analysis and Secure Design
On the simplicity of converting leakages from multivariate to univariate: case study of a glitch-resistant masking scheme

CHES'13 Proceedings of the 15th international conference on Cryptographic Hardware and Embedded Systems
On measurable side-channel leaks inside ASIC design primitives

CHES'13 Proceedings of the 15th international conference on Cryptographic Hardware and Embedded Systems
Leakage-Resilient symmetric encryption via re-keying

CHES'13 Proceedings of the 15th international conference on Cryptographic Hardware and Embedded Systems
First-order collision attack on protected NTRU cryptosystem

Microprocessors & Microsystems

Quantified Score

Hi-index	0.00

Visualization

Abstract

Side-channel based collision attacks are a mostly disregarded alternative to DPA for analyzing unprotected implementations. The advent of strong countermeasures, such as masking, has made further research in collision attacks seemingly in vain. In this work, we show that the principles of collision attacks can be adapted to efficiently break some masked hardware implementation of the AES which still have first-order leakage. The proposed attack breaks an AES implementation based on the corrected version of the masked S-box of Canright and Batina presented at ACNS 2008. The attack requires only six times the number of traces necessary for breaking a comparable unprotected implementation. At the same time, the presented attack has minimal requirements on the abilities and knowledge of an adversary. The attack requires no detailed knowledge about the design, nor does it require a profiling phase.