论文信息 - Filtering-based CPA: a successful side-channel attack against desynchronization countermeasures

Filtering-based CPA: a successful side-channel attack against desynchronization countermeasures

Secure implementations against side channel attacks usually combine hiding and masking protections in software implementations. In this work, we focus on desynchronization protection which is considered as a hiding countermeasure. The idea of desynchronization is to obtain a non-predictable offset of the attacking point in terms of time dimension. For this purpose, we present exploiting pattern-recognition methods to filter interesting points for obtaining a successful side channel attack. Using this tool as a case study, we completely cancel the desynchronization effect of the CHES 2009/2010 countermeasure [2, 3]. Moreover, 25k traces are needed for a successful key recoveries in case of polymorphism-based countermeasure [4].

[1] Christof Paar,et al. An Efficient Method for Eliminating Random Delays in Power Traces of Embedded Software , 2011, ICISC.

[2] Giovanni Agosta,et al. A code morphing methodology to automate power analysis countermeasures , 2012, DAC Design Automation Conference 2012.

[3] Jean-Louis Lanet,et al. Runtime Code Polymorphism as a Protection Against Side Channel Attacks , 2016, WISTP.

[4] Jean-Sébastien Coron,et al. Analysis and Improvement of the Random Delay Countermeasure of CHES 2009 , 2010, CHES.

[5] Jean-Sébastien Coron,et al. An Efficient Method for Random Delay Generation in Embedded Software , 2009, CHES.

[6] Dirk Fox,et al. Advanced Encryption Standard (AES) , 1999, Datenschutz und Datensicherheit.

[7] Simon Heron,et al. Encryption: Advanced Encryption Standard (AES) , 2009 .

[8] Emmanuel Prouff,et al. Higher-Order Masking and Shuffling for Software Implementations of Block Ciphers , 2009, CHES.

[9] François Durvaux,et al. Cryptanalysis of the CHES 2009/2010 Random Delay Countermeasure , 2012, IACR Cryptol. ePrint Arch..