利用分拆子字节轮函数提升 AES 固有弹性，抵御功率攻击

IF 1.7 4区计算机科学 Q3 COMPUTER SCIENCE, HARDWARE & ARCHITECTURE

IEEE Embedded Systems Letters Pub Date : 2024-06-27 DOI:10.1109/LES.2024.3420226

Vishnu Padmakumar;Titu Mary Ignatius;Thockchom Birjit Singha;Roy Paily Palathinkal;Shaik Rafi Ahamed

{"title":"利用分拆子字节轮函数提升 AES 固有弹性，抵御功率攻击","authors":"Vishnu Padmakumar;Titu Mary Ignatius;Thockchom Birjit Singha;Roy Paily Palathinkal;Shaik Rafi Ahamed","doi":"10.1109/LES.2024.3420226","DOIUrl":null,"url":null,"abstract":"Advanced encryption standard’s (AES) vulnerabilities surfaced with power-side channel attacks (PSCAs). Enhancing security by adding extra countermeasure circuitry introduces significant hardware overheads, which are impractical for resource-constrained Internet of Things (IoT) edge devices. This letter proposes an alternative approach, focusing on the AES design itself to enable lightweight countermeasures. Targeting the SubBytes round operation as the vulnerable point, the operation is split across different clock cycles to minimize side-channel information leakage. We investigated 12-clock, 22-clock, 42-clock, 82-clock, and 162-clock AES designs, among which the 82-clock version stands out as the optimal choice, providing efficient hardware resource utilization. Evaluation using hardware security metrics, such as measurements to disclose (MTD) and signal to noise ratio (SNR), confirms its superior security and reduced information leakage compared to other designs. Power traces for attacks are generated on both application-specific integrated circuit (ASIC) and field-programmable gate array (FPGA) platforms, maintaining a consistent 16 MHz design frequency with traces sampled at 1 GSa/s.","PeriodicalId":56143,"journal":{"name":"IEEE Embedded Systems Letters","volume":"17 1","pages":"10-13"},"PeriodicalIF":1.7000,"publicationDate":"2024-06-27","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Boosting AES Intrinsic Resilience Using Split SubBytes Round Function Against Power Attacks\",\"authors\":\"Vishnu Padmakumar;Titu Mary Ignatius;Thockchom Birjit Singha;Roy Paily Palathinkal;Shaik Rafi Ahamed\",\"doi\":\"10.1109/LES.2024.3420226\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Advanced encryption standard’s (AES) vulnerabilities surfaced with power-side channel attacks (PSCAs). Enhancing security by adding extra countermeasure circuitry introduces significant hardware overheads, which are impractical for resource-constrained Internet of Things (IoT) edge devices. This letter proposes an alternative approach, focusing on the AES design itself to enable lightweight countermeasures. Targeting the SubBytes round operation as the vulnerable point, the operation is split across different clock cycles to minimize side-channel information leakage. We investigated 12-clock, 22-clock, 42-clock, 82-clock, and 162-clock AES designs, among which the 82-clock version stands out as the optimal choice, providing efficient hardware resource utilization. Evaluation using hardware security metrics, such as measurements to disclose (MTD) and signal to noise ratio (SNR), confirms its superior security and reduced information leakage compared to other designs. Power traces for attacks are generated on both application-specific integrated circuit (ASIC) and field-programmable gate array (FPGA) platforms, maintaining a consistent 16 MHz design frequency with traces sampled at 1 GSa/s.\",\"PeriodicalId\":56143,\"journal\":{\"name\":\"IEEE Embedded Systems Letters\",\"volume\":\"17 1\",\"pages\":\"10-13\"},\"PeriodicalIF\":1.7000,\"publicationDate\":\"2024-06-27\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Embedded Systems Letters\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10574335/\",\"RegionNum\":4,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q3\",\"JCRName\":\"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Embedded Systems Letters","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10574335/","RegionNum":4,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q3","JCRName":"COMPUTER SCIENCE, HARDWARE & ARCHITECTURE","Score":null,"Total":0}

引用次数: 0

摘要

高级加密标准（AES）的漏洞随着电源侧信道攻击（psca）而暴露出来。通过增加额外的对抗电路来增强安全性会带来巨大的硬件开销，这对于资源受限的物联网（IoT）边缘设备来说是不切实际的。这封信提出了一种替代方法，侧重于AES设计本身，以实现轻量级对策。针对易受攻击的SubBytes轮操作，将操作分散在不同的时钟周期，以减少侧信道信息泄漏。我们研究了12时钟、22时钟、42时钟、82时钟和162时钟的AES设计，其中82时钟版本是最佳选择，提供了高效的硬件资源利用。使用硬件安全指标进行评估，如泄漏测量（MTD）和信噪比（SNR），证实了与其他设计相比，它具有更高的安全性和更少的信息泄漏。针对攻击的电源走线可在专用集成电路（ASIC）和现场可编程门阵列（FPGA）平台上生成，保持一致的16 MHz设计频率，走线采样速度为1 GSa/s。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Boosting AES Intrinsic Resilience Using Split SubBytes Round Function Against Power Attacks

Advanced encryption standard’s (AES) vulnerabilities surfaced with power-side channel attacks (PSCAs). Enhancing security by adding extra countermeasure circuitry introduces significant hardware overheads, which are impractical for resource-constrained Internet of Things (IoT) edge devices. This letter proposes an alternative approach, focusing on the AES design itself to enable lightweight countermeasures. Targeting the SubBytes round operation as the vulnerable point, the operation is split across different clock cycles to minimize side-channel information leakage. We investigated 12-clock, 22-clock, 42-clock, 82-clock, and 162-clock AES designs, among which the 82-clock version stands out as the optimal choice, providing efficient hardware resource utilization. Evaluation using hardware security metrics, such as measurements to disclose (MTD) and signal to noise ratio (SNR), confirms its superior security and reduced information leakage compared to other designs. Power traces for attacks are generated on both application-specific integrated circuit (ASIC) and field-programmable gate array (FPGA) platforms, maintaining a consistent 16 MHz design frequency with traces sampled at 1 GSa/s.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Embedded Systems Letters Engineering-Control and Systems Engineering

CiteScore

3.30

自引率

0.00%

发文量

期刊介绍： The IEEE Embedded Systems Letters (ESL), provides a forum for rapid dissemination of latest technical advances in embedded systems and related areas in embedded software. The emphasis is on models, methods, and tools that ensure secure, correct, efficient and robust design of embedded systems and their applications.