A 2.5ns-latency 0.39pJ/b 289μm²/Gb/s ultra-light-weight PRINCE cryptographic processor

“…The chosen-input attack scenarios considered in this paper have been used in power analysis against some implementations of block ciphers (e.g., DES [12] and AES [13]). R RC [1] p c R RC [2] R RC [3] R RC [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] S M S -1 -1 -1 -1 -1 -1 1 2 3 4 5 6 7 8 9 Against DES software, previous attacks, such as those in [14], [15], and [16], have overcome some masking methods by fixing the inputs in a particular manner. Against an AES software implementation in which the inner rounds were not protected, Lu et al [17] demonstrated a first-and second-order differential power analysis (DPA) attack that exploits some inner round intermediate values by fixing certain parts of the inputs.…”

“…Figure 7 shows an example of power traces and a CPA result obtained from the FPGA implementation. c R K RC [3] R RC [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] RC [11] K' wh [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] wh…”

“…FPGA hardware implementation Software computation Rounds 1-3 [6] R RC [7] R RC [8] R RC [9] R RC [10] RC [11] K' wh…”

“…More concretely, we consider a possible countermeasure that combines TI with register elements (i.e., pipeline registers or deglitchers) following the insights in [7]. A deglitcher is an element that suppresses glitches, and has commonly been implemented using a latch and a delay path with the same length as the critical path of a function, as shown in [10]. The delay path can also be implemented by a series of buffer elements as, for example, in [11].…”

Diffusional Side-Channel Leakage From Unrolled Lightweight Block Ciphers: A Case Study of Power Analysis on PRINCE

“…The chosen-input attack scenarios considered in this paper have been used in power analysis against some implementations of block ciphers (e.g., DES [12] and AES [13]). R RC [1] p c R RC [2] R RC [3] R RC [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] S M S -1 -1 -1 -1 -1 -1 1 2 3 4 5 6 7 8 9 Against DES software, previous attacks, such as those in [14], [15], and [16], have overcome some masking methods by fixing the inputs in a particular manner. Against an AES software implementation in which the inner rounds were not protected, Lu et al [17] demonstrated a first-and second-order differential power analysis (DPA) attack that exploits some inner round intermediate values by fixing certain parts of the inputs.…”

“…Figure 7 shows an example of power traces and a CPA result obtained from the FPGA implementation. c R K RC [3] R RC [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] RC [11] K' wh [4] R RC [5] R RC [6] R RC [7] R RC [8] R RC [9] R RC [10] wh…”

“…FPGA hardware implementation Software computation Rounds 1-3 [6] R RC [7] R RC [8] R RC [9] R RC [10] RC [11] K' wh…”

“…More concretely, we consider a possible countermeasure that combines TI with register elements (i.e., pipeline registers or deglitchers) following the insights in [7]. A deglitcher is an element that suppresses glitches, and has commonly been implemented using a latch and a delay path with the same length as the critical path of a function, as shown in [10]. The delay path can also be implemented by a series of buffer elements as, for example, in [11].…”

Diffusional Side-Channel Leakage From Unrolled Lightweight Block Ciphers: A Case Study of Power Analysis on PRINCE

“…Color versions of one or more figures in this article are available at https://doi.org/ level performance for more ubiquitous leverage of cryptography [7]- [9]. On the other hand, public-key ciphers realize the higher order security functionality demanded in IoT evolvements [10]- [11].…”

Physical Attack Protection Techniques for IC Chip Level Hardware Security

PRINCE Cipher and eFUSE-Based Embedded Encryption System for Optical Nerve Stimulator