Differential Fault Attack on KASUMI Cipher Used in GSM Telephony

Wang, Zongyue; Dong, Xiaoyang; Jia, Keting; Zhao, Jinshi

doi:10.1155/2014/251853

Cited by 9 publications

(7 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The basic idea of AFA is to convert both the cipher and the injected faults into algebraic equations and recover the secret key with automated solvers such as SAT instead of the manual analysis on fault propagations in DFA, hence making it easier to extend AFA to deep rounds and different ciphers and fault models. AFA has been successfully used to improve DFA on the stream ciphers such as Trivium [19] and Grain [20] and block ciphers such as AES [21], LED [22,23], KASUMI [24], and Piccolo [25].…”

Section: Security and Communication Networkmentioning

confidence: 99%

Stealthy Hardware Trojan Based Algebraic Fault Analysis of HIGHT Block Cipher

Chen

Wang

Zhang

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

HIGHT is a lightweight block cipher which has been adopted as a standard block cipher. In this paper, we present a bit-level algebraic fault analysis (AFA) of HIGHT, where the faults are perturbed by a stealthy HT. The fault model in our attack assumes that the adversary is able to insert a HT that flips a specific bit of a certain intermediate word of the cipher once the HT is activated. The HT is realized by merely 4 registers and with an extremely low activation rate of about 0.000025. We show that the optimal location for inserting the designed HT can be efficiently determined by AFA in advance. Finally, a method is proposed to represent the cipher and the injected faults with a merged set of algebraic equations and the master key can be recovered by solving the merged equation system with an SAT solver. Our attack, which fully recovers the secret master key of the cipher in 12572.26 seconds, requires three times of activation on the designed HT. To the best of our knowledge, this is the first Trojan attack on HIGHT.

show abstract

Section: Security and Communication Networkmentioning

confidence: 99%

Stealthy Hardware Trojan Based Algebraic Fault Analysis of HIGHT Block Cipher

Chen

Wang

Zhang

et al. 2017

Security and Communication Networks

View full text Add to dashboard Cite

show abstract

“…It is very sensitive to initial conditions and presents high recurrences [29]. It is characterized by the following equation set ( 5) [30,31] :…”

Section: Chaotic Generatormentioning

confidence: 99%

“…The strength of the proposed algorithm lies in the additional chaotic generator associated with the regular algorithm. The principle property of this generator is its hight sensitivity to initial conditions (x0, y0, z0, w0) and control parameters (a, b, c, d) defined in the equation set (5). Thereby, the new key space is formed by respecting those eight parameters in addition to the original CK.…”

Section: Key Space Analysismentioning

confidence: 99%

“…Therefore, the main security algorithm used by those networks is the KASUMI block cipher, which forms the kernel of GSM and UMTS security mechanisms [1,2] widely used in most countries. However, in the last decade KASAUMI security was the object of many cryptanalyzed attacks as mentioned in [3][4][5][6][7][8][9]. But, investigations are still proposed to improve the security and resistance of the KASUMI algorithm [10][11][12].…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

FPGA implementation of an enhanced chaotic-KASUMI block cipher

Madani

Tanougast

2021

Microprocessors and Microsystems

View full text Add to dashboard Cite

“…Through this attack it was shown that only one 16-bit word fault was enough to perform a successful key recovery attack. Emphasis was made on the last two rounds of KASUMI and was proposed that these two rounds should be specially designed to protect against fault injection [9]. Many algorithms have been proposed and are used for different encryption purposes [10][11][12][13].…”

Section: Literature Surveymentioning

confidence: 99%

Reducing the time required by KASUMI to generate output by modifying the FL and FI functions

Muthalagu

Jain

2018

Iran J Comput Sci

View full text Add to dashboard Cite

KASUMI is an eight-round Fiestel network that produces 64-bit output data from 64-bit input data using a 128-bit key. Three functions, FL, FO, FI , are involved in each round and each function has its respective keys KL, KO, KI. This work proposed the modifications in existing KASUMI block cipher, which can reduce time delay for generating 64-bit encrypted data. Also, we proposed a modification in FL functions: FL(a) and FL(b) of the existing KASUMI block cipher. Rijndael's 32-bit S-box is introduced in FL (a) function of standard FL function so that it can only work with 16-bit data. The second modification is introduced in the FL(b) function by adding a third stage where XOR and shift operations are involved before the final concatenation of two 16-bit data inside the standard FL function. In addition, the FI function uses S7 and S9 tables only one time instead of two times in the existing KASUMI block cipher, which leads to reduce the overall time delay. The performance improvement of the proposed algorithm over the conventional algorithm is verified by simulation results.

show abstract

Differential Fault Attack on KASUMI Cipher Used in GSM Telephony

Cited by 9 publications

References 24 publications

Stealthy Hardware Trojan Based Algebraic Fault Analysis of HIGHT Block Cipher

Stealthy Hardware Trojan Based Algebraic Fault Analysis of HIGHT Block Cipher

FPGA implementation of an enhanced chaotic-KASUMI block cipher

Reducing the time required by KASUMI to generate output by modifying the FL and FI functions

Contact Info

Product

Resources

About