On the Randomness Timing Analysis of Timing Side Channel Attack on Key Derivation Functions

Proceedings of the 2018 VII International Conference on Network, Communication and Computing Pub Date : 2017-03-20 DOI:10.1145/3301326.3301332

Wen Wen Koh, Chuah Chai Wen

{"title":"On the Randomness Timing Analysis of Timing Side Channel Attack on Key Derivation Functions","authors":"Wen Wen Koh, Chuah Chai Wen","doi":"10.1145/3301326.3301332","DOIUrl":null,"url":null,"abstract":"A timing attack is an example of a side channel attack which relies on the leaking timing information from the implementation of a cryptosystem. The different type of cryptographic primitives used to construct the key derivation functions has resulted in timing variation which enables the adversary to perform timing attack on key derivation functions. Based on the paper published by Chuah and Koh, the software implementation of key derivation functions using hash functions, stream ciphers and block cipher as the cryptographic primitives are vulnerable to the timing attack. This kind of attack can be mitigated via masks the actual timing information using randomness timing solution. The randomness timing solution is based on the concept of \"random for loop\". This paper shows the outcome of experiments on implementing the randomness timing delay on key derivation functions based on three type of cryptographic primitives. The experiment's result indicated that the countermeasure propose is secure against timing side channel attack on key derivation functions proposals.","PeriodicalId":294040,"journal":{"name":"Proceedings of the 2018 VII International Conference on Network, Communication and Computing","volume":"47 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2017-03-20","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"1","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2018 VII International Conference on Network, Communication and Computing","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3301326.3301332","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 1

Abstract

A timing attack is an example of a side channel attack which relies on the leaking timing information from the implementation of a cryptosystem. The different type of cryptographic primitives used to construct the key derivation functions has resulted in timing variation which enables the adversary to perform timing attack on key derivation functions. Based on the paper published by Chuah and Koh, the software implementation of key derivation functions using hash functions, stream ciphers and block cipher as the cryptographic primitives are vulnerable to the timing attack. This kind of attack can be mitigated via masks the actual timing information using randomness timing solution. The randomness timing solution is based on the concept of "random for loop". This paper shows the outcome of experiments on implementing the randomness timing delay on key derivation functions based on three type of cryptographic primitives. The experiment's result indicated that the countermeasure propose is secure against timing side channel attack on key derivation functions proposals.

查看原文本刊更多论文

密钥派生函数时边信道攻击的随机时序分析

定时攻击是侧信道攻击的一个例子，它依赖于从密码系统实现中泄漏的定时信息。用于构造密钥派生函数的不同类型的加密原语导致了时间变化，这使得攻击者能够对密钥派生函数进行定时攻击。根据Chuah和Koh发表的论文，使用哈希函数、流密码和分组密码作为密码原语的密钥派生函数的软件实现容易受到定时攻击。这种攻击可以通过使用随机定时解决方案屏蔽实际定时信息来减轻。随机时序解决方案基于“随机for循环”的概念。本文给出了基于三种密码原语实现密钥派生函数随机时序延迟的实验结果。实验结果表明，针对密钥派生函数方案的时序侧信道攻击，该对策方案是安全的。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2018 VII International Conference on Network, Communication and Computing

自引率

0.00%

发文量