Using linear codes as a fault countermeasure for nonlinear operations: application to AES and formal verification

Azzi, Sabine; Barras, Bruno; Christofi, Maria; Vigilant, David

doi:10.1007/s13389-016-0138-1

Cited by 14 publications

(2 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Finally, the work of Azzi et al in [11] adapts the ODSM scheme to enhance the fault detection capability through non-linear functions. However this comes at the cost of additional computations with regards to the side-channel resistance property.…”

Section: Related Workmentioning

confidence: 99%

Analysis of a Code-Based Countermeasure Against Side-Channel and Fault Attacks

Barbu

Battistello

2016

Information Security Theory and Practice

View full text Add to dashboard Cite

The design of robust countermeasures against Side-Channel Analysis or Fault Attacks is always a challenging task. At WISTP'14, a single countermeasure designed to thwart in the same effort both kinds of attacks was presented. This countermeasure is based on coding theory and consists in a specific encoding of the manipulated data acting in the same time as a random masking and an error detector. In this paper, we prove that this countermeasure does not meet the ambitious objectives claimed by its authors. Indeed, we exhibit a bias in the distribution of the masked values that can be exploited to retrieve the sensitive data from the observed side-channel leakage. Going further, we show that this bias is inherent to the nature of the encoding and that randomizing the code itself can be useful to reduce the bias but cannot completely fix the scheme.

show abstract

Section: Related Workmentioning

confidence: 99%

Analysis of a Code-Based Countermeasure Against Side-Channel and Fault Attacks

Barbu

Battistello

2016

Information Security Theory and Practice

View full text Add to dashboard Cite

show abstract

“…Detecting Codes (EDCs) with parity as the most straightforward case [9] and linear codes as more sophisticated solutions [10], [11]. Besides the fact that most of the aforementioned works provide only ad-hoc solutions, almost none of them consider a formal description of the adversary's capabilities.…”

Section: Introductionmentioning

confidence: 99%

Cryptographic Fault Diagnosis using VerFI

Arribas

Wegener

Moradi

et al. 2020

2020 IEEE International Symposium on Hardware Oriented Security and Trust (HOST)

View full text Add to dashboard Cite

Historically, fault diagnosis for integrated circuits has singularly dealt with reliability concerns. In contrast, a cryptographic circuit needs to be primarily evaluated concerning information leakage in the presence of maliciously crafted faults. While Differential Fault Attacks (DFAs) on symmetric ciphers have been known for over 20 years, recent developments have tried to structurally classify the attackers' capabilities as well as the properties of countermeasures. Correct realization of countermeasures should still be manually verified, which is errorprone and infeasible for even moderate-size real-world designs.Here, we introduce the concept of Cryptographic Fault Diagnosis, which revises and shapes the notions of fault diagnosis in reliability testing to the needs of evaluating cryptographic implementations. Additionally, we present VerFI, which materializes the idea of Cryptographic Fault Diagnosis. It is a fully automated, open-source fault detection tool processing the gate-level representation of arbitrary cryptographic implementations. By adjusting the bounds of the underlying adversary model, VerFI allows us to rapidly examine the desired fault detection/correction capabilities of the given implementation. Among several case studies, we demonstrate its application on an implementation of LED cipher with combined countermeasures against side-channel analysis and fault-injection attacks (published at CRYPTO 2016). This experiment revealed general implementation flaws and undetectable faults leading to successful DFA on the protected design with full-key recovery.

show abstract

Statistical properties of side-channel and fault injection attacks using coding theory

Carlet

Guilley

2017

Cryptogr. Commun.

View full text Add to dashboard Cite

Using linear codes as a fault countermeasure for nonlinear operations: application to AES and formal verification

Cited by 14 publications

References 30 publications

Analysis of a Code-Based Countermeasure Against Side-Channel and Fault Attacks

Analysis of a Code-Based Countermeasure Against Side-Channel and Fault Attacks

Cryptographic Fault Diagnosis using VerFI

Statistical properties of side-channel and fault injection attacks using coding theory

Contact Info

Product

Resources

About