Side-channel Leakage Assessment Metrics: A Case Study of GIFT Block Ciphers

Unger, William; Babinkostova, Liljana; Borowczak, Mike; J, Erbes, Robert

doi:10.1109/isvlsi51109.2021.00051

Cited by 4 publications

(2 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The hypothesis tested whether the gathered traces are truly random or if there is leakage present within traces. While this methodology can be beneficial and has been used recently to show side-channel vulnerabilities in some of the NIST lightweight cryptography round 2 candidate s-boxes [18,19], TVLA can have issues demonstrated by relatively high rates of false negatives or false positives, even when using different tests such as the Pearson χ 2 test [20].…”

Section: Sca Backgroundsmentioning

confidence: 99%

Power-Based Side-Channel Attacks on Program Control Flow with Machine Learning Models

Robins,

Olguin,

Brown

et al. 2023

JCP

Self Cite

View full text Add to dashboard Cite

The control flow of a program represents valuable and sensitive information; in embedded systems, this information can take on even greater value as the resources, control flow, and execution of the system have more constraints and functional implications than modern desktop environments. Early works have demonstrated the possibility of recovering such control flow through power-based side-channel attacks in tightly constrained environments; however, they relied on meaningful differences in computational states or data dependency to distinguish between states in a state machine. This work applies more advanced machine learning techniques to state machines which perform identical operations in all branches of control flow. Complete control flow is recovered with 99% accuracy even in situations where 97% of work is outside of the control flow structures. This work demonstrates the efficacy of these approaches for recovering control flow information; continues developing available knowledge about power-based attacks on program control flow; and examines the applicability of multiple standard machine learning models to the problem of classification over power-based side-channel information.

show abstract

Section: Sca Backgroundsmentioning

confidence: 99%

Power-Based Side-Channel Attacks on Program Control Flow with Machine Learning Models

Robins,

Olguin,

Brown

et al. 2023

JCP

Self Cite

View full text Add to dashboard Cite

show abstract

“…The study of [20] evaluates and analyses authenticated lightweight cipher WAGE vulnerability to CPA and compares it against LWC second round candidates. [23] focuses on the study of side channel leakage of GIFT‐COFB by applying CPA with the Hamming distance model. Then, they use the attack results to rate the reliability of several side‐channel leakage assessment metrics: transparency order, revisited transparency order, and signal‐to‐noise ratio, amongst others.…”

Section: Introductionmentioning

confidence: 99%

Residual vulnerabilities to power side channel attacks of lightweight ciphers cryptography competition finalists

Mozipo

Acken

2023

IET Computers & Digital Tech

View full text Add to dashboard Cite

The protection of communications between Internet of Things (IoT) devices is of great concern because the information exchanged contains vital sensitive data. Malicious agents seek to exploit those data to extract secret information about the owners or the system. Power side channel attacks are of great concern on these devices because their power consumption unintentionally leaks information correlatable to the device's secret data. Several studies have demonstrated the effectiveness of authenticated encryption with advanced data, in protecting communications with these devices. A comprehensive evaluation of the seven (out of 10) algorithm finalists of the National Institute of Standards and Technology (NIST) IoT lightweight cipher competition that do not integrate built‐in countermeasures is proposed. The study shows that, nonetheless, they still present some residual vulnerabilities to power side channel attacks (SCA). For five ciphers, an attack methodology as well as the leakage function needed to perform correlation power analysis (CPA) is proposed. The authors assert that Ascon, Sparkle, and PHOTON‐Beetle security vulnerability can generally be assessed with the security assumptions “Chosen ciphertext attack and leakage in encryption only, with nonce‐misuse resilience adversary (CCAmL1)” and “Chosen ciphertext attack and leakage in encryption only with nonce‐respecting adversary (CCAL1)”, respectively. However, the security vulnerability of GIFT‐COFB, Grain, Romulus, and TinyJambu can be evaluated more straightforwardly with publicly available leakage models and solvers. They can also be assessed simply by increasing the number of traces collected to launch the attack.

show abstract

Is ASCON the best choice regarding the Side-channel Analysis?

Olekšák

Miškovský

2023

2023 12th Mediterranean Conference on Embedded Computing (MECO)

View full text Add to dashboard Cite

Side-channel Leakage Assessment Metrics: A Case Study of GIFT Block Ciphers

Cited by 4 publications

References 13 publications

Power-Based Side-Channel Attacks on Program Control Flow with Machine Learning Models

Power-Based Side-Channel Attacks on Program Control Flow with Machine Learning Models

Residual vulnerabilities to power side channel attacks of lightweight ciphers cryptography competition finalists

Is ASCON the best choice regarding the Side-channel Analysis?

Contact Info

Product

Resources

About