Fault Template Attacks on Block Ciphers Exploiting Fault Propagation

Saha, Soumen; Bag, Arnab; Roy, Debapriya Basu; Patranabis, Sikhar; Mukhopadhyay, Debdeep

doi:10.1007/978-3-030-45721-1_22

Cited by 38 publications

(19 citation statements)

References 24 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In [20], the authors provide a ML-assisted technique to explore and characterize the fault attack space and use the knowledge of a known fault attack on a cipher in understanding new attack instances. Regarding detection of fault attacks, a recent work [19] is presented that evaluates fault induced leakages from noncryptographic peripheral components of a security module, targeting cipher implementations, using a Deep Neural Network (DNN) test. From the defensive side, while most fault analyses are based on the characterized faults from known attacks (like [6]), our work is based on a completely different approach of online identification of attacks using real-time sensors.…”

Section: Detecting Fault Attacks With Machine Learningmentioning

confidence: 99%

Multi-source Fault Injection Detection Using Machine Learning and Sensor Fusion

Shrivastwa¹,

Guilley²,

Danger³

2021

Communications in Computer and Information Science

View full text Add to dashboard Cite

Fault attacks have raised serious concern with the growing amount of connected devices. Even a small vulnerability might compromise a complete network. It is therefore important to secure all the devices in the connected architecture. A solution to this problem is presented in this paper where we provide a hardware framework, called Smart Monitor, that utilizes a set of sensors (digital or physical) placed on the chip alongside the security target to be protected. The framework continuously monitors the status of the sensors and its Artificial Intelligence (AI) core produces two outputs viz. presence of a fault and type of detected perturbation. The types of attack sources can be electromagnetic, clock-glitch, laser, temperature, etc. In this work we utilize Electro-Magnetic (EM) and Clock-Glitch (CG) as sources of fault injections. Both attacks are performed in multiple settings to increase attack diversity. The framework is able to detect the presence of an attack with 92% accuracy for mixed or multiple attack sources, and further classify the type of perturbation with 78% accuracy keeping the false positive rate at 0%. Overall, this two-stage detection framework is a cost-effective countermeasure that can be deployed easily in any integrated circuit to safeguard against multiple fault attacks. The AI core is further evaluated for consistency in performance on hardware using High Level Synthesis (HLS), as a proof-of-concept, emulating real-world scenario.

show abstract

Section: Detecting Fault Attacks With Machine Learningmentioning

confidence: 99%

Multi-source Fault Injection Detection Using Machine Learning and Sensor Fusion

Shrivastwa¹,

Guilley²,

Danger³

2021

Communications in Computer and Information Science

View full text Add to dashboard Cite

show abstract

“…We consider a template building phase [20] wherein the faults are targeted at the registers storing the masks 3 0 and 1 2 . In order to build the templates for obtaining the various bits of a nibble of the PRESENT cipher we consider the following faults:…”

Section: Fault Location and Attack Outlinementioning

confidence: 99%

“…This often restricts the attacks to the starting or finishing rounds of the block cipher. Recently, the first profiled fault attack, called Fault Template Attack (FTA) was proposed [20]. FTA is based on fault propagation characteristic which is dependent on the inputs to a Boolean circuit and is defined in a fault template collected in a profiling phase.…”

Section: Introductionmentioning

confidence: 99%

Faultless to a fault?

Mukhopadhyay

2020

Proceedings of the 39th International Conference on Computer-Aided Design

Self Cite

View full text Add to dashboard Cite

“…Nowadays, 25 years after these attacks were published, this area has become one of the major areas in hardware security, alongside the passive side-channel attacks (SCA) [3]. Many analysis methods have been published to date, to mention the most prominent ones apart from the DFA: statistical ineffective fault analysis (SIFA) [4], persistent fault attack (PFA) [5], fault sensitivity analysis (FSA) [6], fault template attacks (FTA) [7], and FIA combined with SCA [8]. Aside from targeting cryptography, fault attacks have been used for bypassing checking routines [9], [10], and even faulting neural network…”

Section: Introductionmentioning

confidence: 99%

How Practical Are Fault Injection Attacks, Really?

Breier

Hou

2022

IEEE Access

View full text Add to dashboard Cite

Fault injection attacks (FIA) are a class of active physical attacks, mostly used for malicious purposes such as extraction of cryptographic keys, privilege escalation, attacks on neural network implementations. There are many techniques that can be used to cause the faults in integrated circuits, many of them coming from the area of failure analysis. In this paper we tackle the topic of practicality of FIA. We analyze the most commonly used techniques that can be found in the literature, such as voltage/clock glitching, electromagnetic pulses, lasers, and Rowhammer attacks. To summarize, FIA can be mounted on most commonly used architectures from ARM, Intel, AMD, by utilizing injection devices that are often below the thousand dollar mark. Therefore, we believe these attacks can be considered practical in many scenarios, especially when the attacker can physically access the target device.INDEX TERMS Hardware security, fault injection attacks, fault analysis, cryptography.

show abstract

Fault Template Attacks on Block Ciphers Exploiting Fault Propagation

Cited by 38 publications

References 24 publications

Multi-source Fault Injection Detection Using Machine Learning and Sensor Fusion

Multi-source Fault Injection Detection Using Machine Learning and Sensor Fusion

Faultless to a fault?

How Practical Are Fault Injection Attacks, Really?

Contact Info

Product

Resources

About