On second-order differential power analysis

Authors:
Marc Joye;Pascal Paillier;Berry Schoenmakers
Affiliations:
CIM-PACA, Centre de Micro-électronique de Provence – George Charpak, Gardanne, France;Advanced Research and Security Centre, Gemplus S.A., Issy-les-Moulineaux, France;Dept of Mathematics and Computing Science, Eindhoven University of Technology, Eindhoven, The Netherlands
Venue:
CHES'05 Proceedings of the 7th international conference on Cryptographic hardware and embedded systems
Year:
2005

Citing 9
Cited 31

The art of computer programming, volume 1 (3rd ed.): fundamental algorithms

The art of computer programming, volume 1 (3rd ed.): fundamental algorithms
Examining Smart-Card Security under the Threat of Power Analysis Attacks

IEEE Transactions on Computers
Differential Power Analysis

CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
ElectroMagnetic Analysis (EMA): Measures and Counter-Measures for Smart Cards

E-SMART '01 Proceedings of the International Conference on Research in Smart Cards: Smart Card Programming and Security
Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems

CRYPTO '96 Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology
On Boolean and Arithmetic Masking against Differential Power Analysis

CHES '00 Proceedings of the Second International Workshop on Cryptographic Hardware and Embedded Systems
Using Second-Order Power Analysis to Attack DPA Resistant Software

CHES '00 Proceedings of the Second International Workshop on Cryptographic Hardware and Embedded Systems
Electromagnetic Analysis: Concrete Results

CHES '01 Proceedings of the Third International Workshop on Cryptographic Hardware and Embedded Systems
The EM Side-Channel(s)

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems

An overview of side channel analysis attacks

Proceedings of the 2008 ACM symposium on Information, computer and communications security
Protecting AES Software Implementations on 32-Bit Processors Against Power Analysis

ACNS '07 Proceedings of the 5th international conference on Applied Cryptography and Network Security
Gaussian Mixture Models for Higher-Order Side Channel Analysis

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems
Side Channel Cryptanalysis of a Higher Order Masking Scheme

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems
Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis

Fast Software Encryption
Attacking State-of-the-Art Software Countermeasures--A Case Study for AES

CHES '08 Proceeding sof the 10th international workshop on Cryptographic Hardware and Embedded Systems
MUTE-AES: a multiprocessor architecture to prevent power analysis based side channel attack of the AES algorithm

Proceedings of the 2008 IEEE/ACM International Conference on Computer-Aided Design
Demonstrable differential power analysis attacks on real-world FPGA-based embedded systems

Integrated Computer-Aided Engineering
First-Order Side-Channel Attacks on the Permutation Tables Countermeasure

CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Higher-Order Masking and Shuffling for Software Implementations of Block Ciphers

CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Non-deterministic processors: FPGA-based analysis of area, performance and security

WESS '09 Proceedings of the 4th Workshop on Embedded Systems Security
Algorithm level evaluation of cryptosystem resistance to second-order DPA

CNIS '07 Proceedings of the Fourth IASTED International Conference on Communication, Network and Information Security
First-order differential power analysis on the duplication method

INDOCRYPT'07 Proceedings of the cryptology 8th international conference on Progress in cryptology
A generic method for secure Sbox implementation

WISA'07 Proceedings of the 8th international conference on Information security applications
A secure remote authentication scheme preserving user anonymity with non-tamper resistant smart cards

WSEAS Transactions on Information Science and Applications
Improving first order differential power attacks through digital signal processing

Proceedings of the 3rd international conference on Security of information and networks
Combined side-channel attacks

WISA'10 Proceedings of the 11th international conference on Information security applications
Higher-order glitches free implementation of the AES using secure multi-party computation protocols

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
Thwarting higher-order side channel analysis with additive and multiplicative maskings

CHES'11 Proceedings of the 13th international conference on Cryptographic hardware and embedded systems
Threshold implementations against side-channel attacks and glitches

ICICS'06 Proceedings of the 8th international conference on Information and Communications Security
Generic cryptanalysis of combined countermeasures with randomized BSD representations

CARDIS'06 Proceedings of the 7th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications
Pinpointing the side-channel leakage of masked AES hardware implementations

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
Practical second-order DPA attacks for masked smart card implementations of block ciphers

CT-RSA'06 Proceedings of the 2006 The Cryptographers' Track at the RSA conference on Topics in Cryptology
Higher order masking of the AES

CT-RSA'06 Proceedings of the 2006 The Cryptographers' Track at the RSA conference on Topics in Cryptology
An AES smart card implementation resistant to power analysis attacks

ACNS'06 Proceedings of the 4th international conference on Applied Cryptography and Network Security
Template attacks on masking—resistance is futile

CT-RSA'07 Proceedings of the 7th Cryptographers' track at the RSA conference on Topics in Cryptology
Revisiting higher-order DPA attacks: multivariate mutual information analysis

CT-RSA'10 Proceedings of the 2010 international conference on Topics in Cryptology
Randomized Instruction Injection to Counter Power Analysis Attacks

ACM Transactions on Embedded Computing Systems (TECS)
Analyzing side channel leakage of masked implementations with stochastic methods

ESORICS'07 Proceedings of the 12th European conference on Research in Computer Security
Selecting time samples for multivariate DPA attacks

CHES'12 Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems
Role of power grid in side channel attack and power-grid-aware secure design

Proceedings of the 50th Annual Design Automation Conference

Quantified Score

Hi-index	0.00

Visualization

Abstract

Differential Power Analysis (DPA) is a powerful cryptanalytic technique aiming at extracting secret data from a cryptographic device by collecting power consumption traces and averaging over a series of acquisitions. In order to prevent the leakage, hardware designers and software programmers make use of masking techniques (a.k.a. data whitening methods). However, the resulting implementations may still succumb to second-order DPA. Several recent papers studied second-order DPA but, although the conclusions that are drawn are correct, the analysis is not. This paper fills the gap by providing an exact analysis of second-order DPA as introduced by Messerges. It also considers several generalizations, including an extended analysis in the more general Hamming-distance model.