论文信息 - A new correlation frequency analysis of the side channel

A new correlation frequency analysis of the side channel

Security in embedded computing systems is now an important concern for a diverse set of applications. However, the embedded hardware implementation may unintentionally leak information, through its electromagnetic emanations or current draw, which may lead to the revelation of secrets used in the cryptographic computations being performed. This paper presents an attack methodology and an empirical study, based on Correlation Analysis in the Frequency domain (CAF) with pre-characterization of the embedded system. Unlike previous research this analysis exploits the fact that a few frequencies are more likely to leak computing information, and are independent of the system clock (rather a function of the technology). Results indicate that the secret key can be reliably extracted from both hardware and software implementations of AES. The analysis presented is additionally tolerant to trace misalignments and has been tested with real power and electromagnetic (EM) traces used to extract 8-bit keys and full 128-bit keys. This research is important for providing more secure cryptographic computations necessary in many embedded systems.

Catherine H. Gebotys | Edgar Mateos

[1] Peng Zhang,et al. EM Frequency Domain Correlation Analysis on Cipher Chips , 2009, 2009 First International Conference on Information Science and Engineering.

[2] Stefan Mangard,et al. Power analysis attacks - revealing the secrets of smart cards , 2007 .

[3] Francis Olivier,et al. Electromagnetic Analysis: Concrete Results , 2001, CHES.

[4] W. Rosenstiel,et al. Correlation power analysis in frequency domain extended abstract , 2010 .

[5] Paul Dischamp,et al. Power Analysis, What Is Now Possible , 2000, ASIACRYPT.

[6] Siva Sai Yerubandi,et al. Differential Power Analysis , 2002 .

[7] Jean-Jacques Quisquater,et al. ElectroMagnetic Analysis (EMA): Measures and Counter-Measures for Smart Cards , 2001, E-smart.

[8] Dakshi Agrawal,et al. The EM Side-Channel(s) , 2002, CHES.

[9] Tom Caddy,et al. Side-Channel Attacks , 2016 .

[10] Christophe Clavier,et al. Correlation Power Analysis with a Leakage Model , 2004, CHES.

[11] Paul C. Kocher,et al. Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems , 1996, CRYPTO.

[12] Moti Yung,et al. A Unified Framework for the Analysis of Side-Channel Key Recovery Attacks (extended version) , 2009, IACR Cryptol. ePrint Arch..

[13] Catherine H. Gebotys,et al. EM Analysis of Rijndael and ECC on a Wireless Java-Based PDA , 2005, CHES.