A Secure Reconfigurable Crypto IC With Countermeasures Against SPA, DPA, and EMA

Shan, Weiwei; Fu, Xingyuan; Xu, Zhipeng

doi:10.1109/tcad.2015.2419621

Cited by 41 publications

(9 citation statements)

References 10 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Swankoski et al [22] propose the use of a parallel architecture to achieve temporal isolation of the key. Shan et al [23] propose countermeasures to hide leakage information by utilizing idle reconfigurable processing elements to do dummy operations. Levi et al [24] propose a delay assignment algorithm that assigns buffer delays to combinational logic to implement data-dependent delays, as a means of mitigating single-bit and multi-bit CPA attacks.…”

Section: Introductionmentioning

confidence: 99%

Side-Channel Power Resistance for Encryption Algorithms Using Implementation Diversity

et al. 2020

View full text Add to dashboard Cite

This paper investigates countermeasures to side-channel attacks. A dynamic partial reconfiguration (DPR) method is proposed for field programmable gate arrays (FPGAs)s to make techniques such as differential power analysis (DPA) and correlation power analysis (CPA) difficult and ineffective. We call the technique side-channel power resistance for encryption algorithms using DPR, or SPREAD. SPREAD is designed to reduce cryptographic key related signal correlations in power supply transients by changing components of the hardware implementation on-the-fly using DPR. Replicated primitives within the advanced encryption standard (AES) algorithm, in particular, the substitution-box (SBOX)s, are synthesized to multiple and distinct gate-level implementations. The different implementations change the delay characteristics of the SBOXs, reducing correlations in the power traces, which, in turn, increases the difficulty of side-channel attacks. The effectiveness of the proposed countermeasures depends greatly on this principle; therefore, the focus of this paper is on the evaluation of implementation diversity techniques.

show abstract

Section: Introductionmentioning

confidence: 99%

Side-Channel Power Resistance for Encryption Algorithms Using Implementation Diversity

et al. 2020

View full text Add to dashboard Cite

show abstract

“…Due to the strict mathematical structure of advance encryption standards (AES) [1], AES-based cryptosystem has been proved to immune against most conventional attacks. However, with the development of physical attacks such as side-channel attack (SCA) [2,3] and fault attacks (FA) [4], it has shown vulnerabilities for hardware implementation of AES [5][6][7][8][9].…”

Section: Introductionmentioning

confidence: 99%

A novel differential fault analysis using two‐byte fault model on AES Key schedule

Zhang

et al. 2019

IET Circuits, Devices & Systems

View full text Add to dashboard Cite

One of the well-known physical attacks, i.e. differential fault analysis (DFA), can break the secret key of cryptographic device by using differential information between faulty and correct ciphertexts. Here, the authors propose a random 2-byte fault model, present a novel DFA on AES key schedule, and show how an entire AES-128 key can be cracked by using two pairs of faulty and correct ciphertexts. By inducing a random 2-byte fault in the first column of 9th round key with discontiguous rows, the authors can obtain 64 bits of AES-128 key using one pair of faulty and correct ciphertexts, two pairs of them can retrieve the entire 128-bit key without exhaustive search. The authors implement the proposed attack on HP Intel(R) Core i5-7300HQ Quad-Core 2.5 GHz CPU, 8G RAM. It takes <2 min on average to break the key. Considering the number of faulty ciphertexts, faultinduced depth, and fault model, authors' attack is the most efficient DFA as compared to existing schemes on AES-128 key schedule.

show abstract

“…However, in practical applications, the circuit charges may not be perfectly balanced, hence the power dissipation profile correlates to the charging and discharging of the circuit activities can easily leak out some pertinent information. In another study, the reconfigurable IC is implemented [6] to countermeasure against the CPA attack. The countermeasure technique utilized idle reconfigurable processing elements to generate dummy operations as to reduce the correlation.…”

Section: Introductionmentioning

confidence: 99%

High Secured Low Power Multiplexer-LUT Based AES S-Box Implementation

Pammu

Chong

et al. 2016

2016 International Conference on Information Systems Engineering (ICISE)

View full text Add to dashboard Cite

We propose a Multiplexer Look-Up-Table (MLUT) based Substitution-Box (S-Box) implementation for the Advanced Encryption Standard (AES) algorithm. There are two key features in the proposed MLUT based S-Box. First, it is implemented based on 256-byte to 1-byte multiplexer with a 256-byte memory instead of the conventional implementation of employing multiplication inversion in GF(2 8 ) and affine transformation. Thus, our proposed S-Box is simpler in circuit implementation and lower in power dissipation. Second, our S-Box is 30× more secured against the Side Channel Attack (SCA) based on Correlation Power Analysis (CPA), as our proposed S-Box exhibits smaller variance in its power dissipation profile for different processed data. Based on the measurement results of AES-128 implemented on the Sakura-X FPGA board, our proposed S-Box dissipates only 1.9mW and features 5.5× lower power than the conventional S-Box implementation. Our proposed MLUT S-Box design is also highly secured as the CPA attack on the AES with our proposed S-Box implementation requires 13540 power traces. This is significantly higher than the conventional S-Box which requires only 445 power traces to uncover the same secrete key.

show abstract

A Secure Reconfigurable Crypto IC With Countermeasures Against SPA, DPA, and EMA

Cited by 41 publications

References 10 publications

Side-Channel Power Resistance for Encryption Algorithms Using Implementation Diversity

Side-Channel Power Resistance for Encryption Algorithms Using Implementation Diversity

A novel differential fault analysis using two‐byte fault model on AES Key schedule

High Secured Low Power Multiplexer-LUT Based AES S-Box Implementation

Contact Info

Product

Resources

About