在逻辑独立的块之间存在信息泄漏的证据

Proceedings of the Second Workshop on Cryptography and Security in Computing Systems Pub Date : 2015-01-19 DOI:10.1145/2694805.2694810

Loïc Zussa, Ingrid Exurville, J. Dutertre, J. Rigaud, B. Robisson, A. Tria, J. Clédière

{"title":"在逻辑独立的块之间存在信息泄漏的证据","authors":"Loïc Zussa, Ingrid Exurville, J. Dutertre, J. Rigaud, B. Robisson, A. Tria, J. Clédière","doi":"10.1145/2694805.2694810","DOIUrl":null,"url":null,"abstract":"In this paper we study the information leakage that may exist, due to electrical coupling, between logically independent blocks of a secure circuit as a new attack path to retrieve secret information. First, an aes-128 has been implemented on a fpga board. Then, this aes implementation has been secured with a delay-based countermeasure against fault injection related to timing constraints violations. The countermeasure's detection threshold was supposed to be logically independent from the data handled by the cryptographic algorithm. Thus, it theoretically does not leak any information related to sensitive values. However experiments point out an existing correlation between the fault detection threshold of the countermeasure and the aes's calculations. As a result, we were able to retrieve the secret key of the aes using this correlation. Finally, different strategies were tested in order to minimize the number of triggered alarm to retrieve the secret key.","PeriodicalId":441957,"journal":{"name":"Proceedings of the Second Workshop on Cryptography and Security in Computing Systems","volume":"39 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2015-01-19","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"6","resultStr":"{\"title\":\"Evidence of an information leakage between logically independent blocks\",\"authors\":\"Loïc Zussa, Ingrid Exurville, J. Dutertre, J. Rigaud, B. Robisson, A. Tria, J. Clédière\",\"doi\":\"10.1145/2694805.2694810\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"In this paper we study the information leakage that may exist, due to electrical coupling, between logically independent blocks of a secure circuit as a new attack path to retrieve secret information. First, an aes-128 has been implemented on a fpga board. Then, this aes implementation has been secured with a delay-based countermeasure against fault injection related to timing constraints violations. The countermeasure's detection threshold was supposed to be logically independent from the data handled by the cryptographic algorithm. Thus, it theoretically does not leak any information related to sensitive values. However experiments point out an existing correlation between the fault detection threshold of the countermeasure and the aes's calculations. As a result, we were able to retrieve the secret key of the aes using this correlation. Finally, different strategies were tested in order to minimize the number of triggered alarm to retrieve the secret key.\",\"PeriodicalId\":441957,\"journal\":{\"name\":\"Proceedings of the Second Workshop on Cryptography and Security in Computing Systems\",\"volume\":\"39 1\",\"pages\":\"0\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2015-01-19\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"6\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"Proceedings of the Second Workshop on Cryptography and Security in Computing Systems\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/10.1145/2694805.2694810\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"Proceedings of the Second Workshop on Cryptography and Security in Computing Systems","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1145/2694805.2694810","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 6

摘要

本文研究了安全电路逻辑独立块之间由于电耦合而可能存在的信息泄漏，作为获取秘密信息的一种新的攻击路径。首先，在fpga板上实现了aes-128。然后，使用基于延迟的对策来保护该aes实现，以防止与时间约束违反相关的故障注入。反措施的检测阈值应该在逻辑上独立于加密算法处理的数据。因此，理论上它不会泄露任何与敏感值相关的信息。然而，实验表明，对策的故障检测阈值与aes的计算结果存在相关性。因此，我们能够使用这种相关性检索aes的秘密密钥。最后，测试了不同的策略，以尽量减少触发警报的次数来检索密钥。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Evidence of an information leakage between logically independent blocks

In this paper we study the information leakage that may exist, due to electrical coupling, between logically independent blocks of a secure circuit as a new attack path to retrieve secret information. First, an aes-128 has been implemented on a fpga board. Then, this aes implementation has been secured with a delay-based countermeasure against fault injection related to timing constraints violations. The countermeasure's detection threshold was supposed to be logically independent from the data handled by the cryptographic algorithm. Thus, it theoretically does not leak any information related to sensitive values. However experiments point out an existing correlation between the fault detection threshold of the countermeasure and the aes's calculations. As a result, we were able to retrieve the secret key of the aes using this correlation. Finally, different strategies were tested in order to minimize the number of triggered alarm to retrieve the secret key.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

Proceedings of the Second Workshop on Cryptography and Security in Computing Systems

自引率

0.00%

发文量