CINI MINIS: Domain Isolation for Fault and Combined Security

Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security Pub Date : 2022-11-07 DOI:10.1145/3548606.3560614

Jakob Feldtkeller, Jan Richter-Brockmann, Pascal Sasdrich, T. Güneysu

{"title":"CINI MINIS: Domain Isolation for Fault and Combined Security","authors":"Jakob Feldtkeller, Jan Richter-Brockmann, Pascal Sasdrich, T. Güneysu","doi":"10.1145/3548606.3560614","DOIUrl":null,"url":null,"abstract":"Observation and manipulation of physical characteristics are well-known and powerful threats to cryptographic devices. While countermeasures against passive side-channel and active fault-injection attacks are well understood individually, combined attacks, i.e., the combination of fault injection and side-channel analysis, is a mostly unexplored area. Naturally, the complexity of analysis and secure construction increases with the sophistication of the adversary, making the combined scenario especially challenging. To tackle complexity, the side-channel community has converged on the construction of small building blocks, which maintain security properties even when composed. In this regard, Probe-Isolating Non-Interference (PINI) is a widely used notion for secure composition in the presence of side-channel attacks due to its efficiency and elegance. In this work, we transfer the core ideas behind PINI to the context of fault and combined security and, from that, construct the first trivially composable gadgets in the presence of a combined adversary.","PeriodicalId":435197,"journal":{"name":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","volume":"30 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2022-11-07","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"7","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/3548606.3560614","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 7

Abstract

Observation and manipulation of physical characteristics are well-known and powerful threats to cryptographic devices. While countermeasures against passive side-channel and active fault-injection attacks are well understood individually, combined attacks, i.e., the combination of fault injection and side-channel analysis, is a mostly unexplored area. Naturally, the complexity of analysis and secure construction increases with the sophistication of the adversary, making the combined scenario especially challenging. To tackle complexity, the side-channel community has converged on the construction of small building blocks, which maintain security properties even when composed. In this regard, Probe-Isolating Non-Interference (PINI) is a widely used notion for secure composition in the presence of side-channel attacks due to its efficiency and elegance. In this work, we transfer the core ideas behind PINI to the context of fault and combined security and, from that, construct the first trivially composable gadgets in the presence of a combined adversary.

查看原文本刊更多论文

CINI MINIS:针对故障的域隔离和组合安全

对物理特性的观察和操纵是众所周知的对加密设备的强大威胁。虽然针对被动侧通道攻击和主动断层注入攻击的对策已经得到了很好的理解，但联合攻击，即断层注入和侧通道分析的结合，是一个大部分未开发的领域。自然，分析和安全构建的复杂性随着对手的复杂程度而增加，使得组合场景特别具有挑战性。为了解决复杂性问题，侧信道社区已经聚集在小型构建块的构建上，这些构建块即使在组合时也能保持安全属性。在这方面，探针隔离无干扰(PINI)由于其效率和优雅性而被广泛用于存在侧信道攻击的安全组合。在这项工作中，我们将PINI背后的核心思想转移到故障和组合安全的上下文中，并以此为基础，在组合对手存在的情况下构建第一个平凡的可组合小工具。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文求助全文

来源期刊

Proceedings of the 2022 ACM SIGSAC Conference on Computer and Communications Security

自引率

0.00%

发文量