Countermeasures against fault attacks on software implemented AES

“…Software countermeasures can be designed at different levels, such as at an algorithmic level [6], in a high-level programming language [7][8][9] or at assembly level [10][11][12]. While higher level countermeasures may be optimized away or altered by a compiler, low-level countermeasures are compatible with existing compilers and toolchains.…”

“…Software countermeasures are often based on temporal redundancy (i.e. performing the same computation multiple times) to detect or tolerate errors during computations [10,12,8,11]. Control flow protection requires different mechanisms to detect a modification of the execution flow [7,14].…”

“…al. propose assembly-level countermeasures based on software redundancy and parity checking to detect instruction skips [10]. The proposed countermeasure scheme, based on instruction duplication and triplication, is claimed to be robust against any single instruction skip fault.…”

“…al. [10] should be able to detect some instruction replacement faults, the exact types of replacements are not analyzed.…”

“…al. explored countermeasures and detections against fault attacks based on software redundancy [10]. Listings 7 and 8 illustrate how these techniques can be used to protect a load instruction.…”

Efficient Design and Evaluation of Countermeasures against Fault Attacks Using Formal Verification

“…Software countermeasures can be designed at different levels, such as at an algorithmic level [6], in a high-level programming language [7][8][9] or at assembly level [10][11][12]. While higher level countermeasures may be optimized away or altered by a compiler, low-level countermeasures are compatible with existing compilers and toolchains.…”

“…Software countermeasures are often based on temporal redundancy (i.e. performing the same computation multiple times) to detect or tolerate errors during computations [10,12,8,11]. Control flow protection requires different mechanisms to detect a modification of the execution flow [7,14].…”

“…al. propose assembly-level countermeasures based on software redundancy and parity checking to detect instruction skips [10]. The proposed countermeasure scheme, based on instruction duplication and triplication, is claimed to be robust against any single instruction skip fault.…”

“…al. [10] should be able to detect some instruction replacement faults, the exact types of replacements are not analyzed.…”

“…al. explored countermeasures and detections against fault attacks based on software redundancy [10]. Listings 7 and 8 illustrate how these techniques can be used to protect a load instruction.…”

Efficient Design and Evaluation of Countermeasures against Fault Attacks Using Formal Verification

All the HIGHT You Need on Cortex–M4

CIST: A Threat Modelling Approach for Hardware Supply Chain Security