Precise fault-injections using voltage and temperature manipulation for differential cryptanalysis

Kumar, Raghavan; Jovanovic, Philipp; Polian, Ilia

doi:10.1109/iolts.2014.6873670

Cited by 14 publications

(6 citation statements)

References 21 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…To perform an invasive attack, it is required to remove at least part of the passivation layer to establish the contact between the probes and silicon [16]. Non-invasive attacks, on the other hand, mainly focus on investigating the settings that can be controlled externally [17], or passively measuring the running time, the cache behavior, the power consumption, and/or the electromagnetic radiation of the device through the package [18].…”

Section: Fault Injection Attacksmentioning

confidence: 99%

A Fast Characterization Method for Semi-invasive Fault Injection Attacks

Ribera²,

Beringuier-Boher³

et al. 2020

Topics in Cryptology – CT-RSA 2020

View full text Add to dashboard Cite

Semi-invasive fault injection attacks are powerful techniques well-known by attackers and secure embedded system designers. When performing such attacks, the selection of the fault injection parameters is of utmost importance and usually based on the experience of the attacker. Surprisingly, there exists no formal and general approach to characterize the target behavior under attack. In this work, we present a novel methodology to perform a fast characterization of the fault injection impact on a target, depending on the possible attack parameters. We experimentally show our methodology to be a successful one when targeting different algorithms such as DES and AES encryption and then extend to the full characterization with the help of deep learning. Finally, we show how the characterization results are transferable between different targets.

show abstract

Section: Fault Injection Attacksmentioning

confidence: 99%

A Fast Characterization Method for Semi-invasive Fault Injection Attacks

Ribera²,

Beringuier-Boher³

et al. 2020

Topics in Cryptology – CT-RSA 2020

View full text Add to dashboard Cite

show abstract

“…Thus, it can be deduced that each attempt carries a 50% probability of no effect, a 27.5% chance of a reboot failure, a 20.5% chance of a communication failure, and a 12% chance of a glitch. Finally, it is imperative to consider the temperature during the tests since it has a significant impact on the failure rate [ 13 , 28 , 30 ]. Despite restricting the temperature variation to between 19 °C and 23 °C, the outcomes might have been marginally affected.…”

Section: Analysis and Discussionmentioning

confidence: 99%

“…However, these attacks are not necessarily limited to manipulating a single parameter. In [ 30 ], an FIA is executed combining voltage and heat glitches, while in [ 28 ], heat is combined with a clock glitch. Therefore, the parameters that are not part of the attack must be controlled to guarantee the expected result.…”

Section: Introductionmentioning

confidence: 99%

A Novel Approach of a Low-Cost Voltage Fault Injection Method for Resource-Constrained IoT Devices: Design and Analysis

Ruminot,

Estevez,

Montejo-Sánchez

2023

Sensors

View full text Add to dashboard Cite

The rapid development of the Internet of Things (IoT) has brought about the processing and storage of sensitive information on resource-constrained devices, which are susceptible to various hardware attacks. Fault injection attacks (FIAs) stand out as one of the most widespread. Particularly, voltage-based FIAs (V-FIAs) have gained popularity due to their non-invasive nature and high effectiveness in inducing faults by pushing the IoT hardware to its operational limits. Improving the security of devices and gaining a comprehensive understanding of their vulnerabilities is of utmost importance. In this study, we present a novel fault injection method and employ it to target an 8-bit AVR microcontroller. We identify the optimal attack parameters by analyzing the detected failures and their trends. A case study is conducted to validate the efficacy of this new method in a more realistic scenario, focusing on a simple authentication method using the determined optimal parameters. This analysis not only demonstrates the feasibility of the V-FIA but also elucidates the primary characteristics of the resulting failures and their propagation in resource-constrained devices. Additionally, we devise a hardware/software countermeasure that can be integrated into any resource-constrained device to thwart such attacks in IoT scenarios.

show abstract

“…Precise high variations, or power spikes, modify the state of latches of flip-flops, influencing the control and data path logic of the circuit [25]. For example, if the voltage spike happens during memory reading, wrong data may be retrieved.…”

Section: A Clock/voltage Glitchingmentioning

confidence: 99%

How Practical Are Fault Injection Attacks, Really?

Breier

Hou

2022

IEEE Access

View full text Add to dashboard Cite

Fault injection attacks (FIA) are a class of active physical attacks, mostly used for malicious purposes such as extraction of cryptographic keys, privilege escalation, attacks on neural network implementations. There are many techniques that can be used to cause the faults in integrated circuits, many of them coming from the area of failure analysis. In this paper we tackle the topic of practicality of FIA. We analyze the most commonly used techniques that can be found in the literature, such as voltage/clock glitching, electromagnetic pulses, lasers, and Rowhammer attacks. To summarize, FIA can be mounted on most commonly used architectures from ARM, Intel, AMD, by utilizing injection devices that are often below the thousand dollar mark. Therefore, we believe these attacks can be considered practical in many scenarios, especially when the attacker can physically access the target device.INDEX TERMS Hardware security, fault injection attacks, fault analysis, cryptography.

show abstract

Precise fault-injections using voltage and temperature manipulation for differential cryptanalysis

Cited by 14 publications

References 21 publications

A Fast Characterization Method for Semi-invasive Fault Injection Attacks

A Fast Characterization Method for Semi-invasive Fault Injection Attacks

A Novel Approach of a Low-Cost Voltage Fault Injection Method for Resource-Constrained IoT Devices: Design and Analysis

How Practical Are Fault Injection Attacks, Really?

Contact Info

Product

Resources

About