一种有效对抗侧信道攻击的全并行单周期随机洗牌算法及其复杂度验证

IF 5.4 2区计算机科学 Q1 COMPUTER SCIENCE, INFORMATION SYSTEMS

IEEE Transactions on Emerging Topics in Computing Pub Date : 2024-10-17 DOI:10.1109/TETC.2024.3478228

Jong-Yeon Park;Dongsoo Lee;Seonggyeom Kim;Wonil Lee;Bo Gyeong Kang;Kouichi Sakurai

{"title":"一种有效对抗侧信道攻击的全并行单周期随机洗牌算法及其复杂度验证","authors":"Jong-Yeon Park;Dongsoo Lee;Seonggyeom Kim;Wonil Lee;Bo Gyeong Kang;Kouichi Sakurai","doi":"10.1109/TETC.2024.3478228","DOIUrl":null,"url":null,"abstract":"Hiding countermeasures are the most widely utilized techniques for thwarting side-channel attacks. Commonly, the Fisher-Yates algorithm is adopted in hiding countermeasures with permuted operation for its security and efficiency in implementation, yet the inherently sequential nature of the algorithm imposes limitations on hardware acceleration. In this work, we propose a novel method named Addition Round Rotation (<inline-formula><tex-math>$\\mathsf {ARR}$</tex-math></inline-formula>), which can introduce a time-area trade-off with block-based permutation. Our findings indicate that this approach can achieve a permutation brute force complexity level ranging from <inline-formula><tex-math>$2^{128}$</tex-math></inline-formula>, with the modified version achieving up to <inline-formula><tex-math>$2^{288}$</tex-math></inline-formula> in a single clock cycle, while maintaining substantial resistance against second-order analysis. To substantiate the security of our proposed method, we introduce a new validation technique – <i>Identity Verification</i>. This technique allows theoretical validation of the proposed algorithm’s security and is consistent with the experimental results. Finally, we introduce an actual hardware design and provide the implementation results on Application-Specific Integrated Circuit (ASIC). The measured performance demonstrates that our proposal fully supports the practical applicability.","PeriodicalId":13156,"journal":{"name":"IEEE Transactions on Emerging Topics in Computing","volume":"13 3","pages":"669-685"},"PeriodicalIF":5.4000,"publicationDate":"2024-10-17","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"Fully Parallel, One-Cycle Random Shuffling for Efficient Countermeasure Against Side Channel Attack and Its Complexity Verification\",\"authors\":\"Jong-Yeon Park;Dongsoo Lee;Seonggyeom Kim;Wonil Lee;Bo Gyeong Kang;Kouichi Sakurai\",\"doi\":\"10.1109/TETC.2024.3478228\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Hiding countermeasures are the most widely utilized techniques for thwarting side-channel attacks. Commonly, the Fisher-Yates algorithm is adopted in hiding countermeasures with permuted operation for its security and efficiency in implementation, yet the inherently sequential nature of the algorithm imposes limitations on hardware acceleration. In this work, we propose a novel method named Addition Round Rotation (<inline-formula><tex-math>$\\\\mathsf {ARR}$</tex-math></inline-formula>), which can introduce a time-area trade-off with block-based permutation. Our findings indicate that this approach can achieve a permutation brute force complexity level ranging from <inline-formula><tex-math>$2^{128}$</tex-math></inline-formula>, with the modified version achieving up to <inline-formula><tex-math>$2^{288}$</tex-math></inline-formula> in a single clock cycle, while maintaining substantial resistance against second-order analysis. To substantiate the security of our proposed method, we introduce a new validation technique – <i>Identity Verification</i>. This technique allows theoretical validation of the proposed algorithm’s security and is consistent with the experimental results. Finally, we introduce an actual hardware design and provide the implementation results on Application-Specific Integrated Circuit (ASIC). The measured performance demonstrates that our proposal fully supports the practical applicability.\",\"PeriodicalId\":13156,\"journal\":{\"name\":\"IEEE Transactions on Emerging Topics in Computing\",\"volume\":\"13 3\",\"pages\":\"669-685\"},\"PeriodicalIF\":5.4000,\"publicationDate\":\"2024-10-17\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"IEEE Transactions on Emerging Topics in Computing\",\"FirstCategoryId\":\"94\",\"ListUrlMain\":\"https://ieeexplore.ieee.org/document/10721353/\",\"RegionNum\":2,\"RegionCategory\":\"计算机科学\",\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"Q1\",\"JCRName\":\"COMPUTER SCIENCE, INFORMATION SYSTEMS\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"IEEE Transactions on Emerging Topics in Computing","FirstCategoryId":"94","ListUrlMain":"https://ieeexplore.ieee.org/document/10721353/","RegionNum":2,"RegionCategory":"计算机科学","ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q1","JCRName":"COMPUTER SCIENCE, INFORMATION SYSTEMS","Score":null,"Total":0}

引用次数: 0

摘要

隐藏对抗是最广泛使用的技术，以挫败侧信道攻击。通常采用Fisher-Yates算法来隐藏具有排列操作的对抗措施，以提高其安全性和实现效率，但该算法固有的顺序性对硬件加速施加了限制。在这项工作中，我们提出了一种名为Addition Round Rotation （$\mathsf {ARR}$）的新方法，该方法可以与基于块的排列引入时区权衡。我们的研究结果表明，这种方法可以实现从$2^{128}$的排列蛮力复杂度水平，修改后的版本在单个时钟周期内达到$2^{288}$，同时保持对二阶分析的显著抵抗。为了验证所提出方法的安全性，我们引入了一种新的验证技术——身份验证。该技术可以从理论上验证所提出算法的安全性，并与实验结果相一致。最后介绍了一个实际的硬件设计，并给出了在专用集成电路（ASIC）上的实现结果。实测性能表明，我们的方案完全支持实际应用。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

查看原文本刊更多论文

Fully Parallel, One-Cycle Random Shuffling for Efficient Countermeasure Against Side Channel Attack and Its Complexity Verification

Hiding countermeasures are the most widely utilized techniques for thwarting side-channel attacks. Commonly, the Fisher-Yates algorithm is adopted in hiding countermeasures with permuted operation for its security and efficiency in implementation, yet the inherently sequential nature of the algorithm imposes limitations on hardware acceleration. In this work, we propose a novel method named Addition Round Rotation (

$\mathsf {ARR}$

), which can introduce a time-area trade-off with block-based permutation. Our findings indicate that this approach can achieve a permutation brute force complexity level ranging from

$2^{128}$

, with the modified version achieving up to

$2^{288}$

in a single clock cycle, while maintaining substantial resistance against second-order analysis. To substantiate the security of our proposed method, we introduce a new validation technique – Identity Verification. This technique allows theoretical validation of the proposed algorithm’s security and is consistent with the experimental results. Finally, we introduce an actual hardware design and provide the implementation results on Application-Specific Integrated Circuit (ASIC). The measured performance demonstrates that our proposal fully supports the practical applicability.

求助全文

通过发布文献求助，成功后即可免费获取论文全文。去求助

来源期刊

IEEE Transactions on Emerging Topics in Computing Computer Science-Computer Science (miscellaneous)

CiteScore

12.10

自引率

5.10%

发文量

113

期刊介绍： IEEE Transactions on Emerging Topics in Computing publishes papers on emerging aspects of computer science, computing technology, and computing applications not currently covered by other IEEE Computer Society Transactions. Some examples of emerging topics in computing include: IT for Green, Synthetic and organic computing structures and systems, Advanced analytics, Social/occupational computing, Location-based/client computer systems, Morphic computer design, Electronic game systems, & Health-care IT.