Energy-Efficient Side-Channel Attack Countermeasure With Awareness and Hybrid Configuration Based on It

Energy-efficient countermeasures to side-channel attacks are required for Internet of Things hardware. This paper proposes a special hiding technique for the substitution operation in block ciphers, which equalizes the power consumption of a circuit by appropriate feedforward compensation and is called power-aware hiding (PAH). A hybrid application configuration, in which PAH is applied to the S-boxes while the left linear operations are protected with a general masking method, is proposed as well. This solution not only has higher energy efficiency but can also be implemented automatically in a semicustom manner. The Advanced Encryption Standard VLSI adopting this solution was implemented and manufactured in 180-nm technology as a demonstration. The implementation issues regarding the countermeasures are discussed in this paper. Testing shows that the chip has a throughput up to 1.175 Gb/s with 18.1-mW power consumption and its number of measurements to disclosure is 13.4 million.

[1]  François-Xavier Standaert,et al.  Stealthy Compromise of Wireless Sensor Nodes with Power Analysis Attacks , 2010, MOBILIGHT.

[2]  Robert Atkinson,et al.  Architecture at A-level , 2010, Architectural Research Quarterly.

[3]  Lejla Batina,et al.  A Very Compact "Perfectly Masked" S-Box for AES , 2008, ACNS.

[4]  S. Yang,et al.  AES-Based Security Coprocessor IC in 0.18-$muhbox m$CMOS With Resistance to Differential Power Analysis Side-Channel Attacks , 2006, IEEE Journal of Solid-State Circuits.

[5]  Osnat Keren,et al.  Randomized Multitopology Logic Against Differential Power Analysis , 2015, IEEE Transactions on Very Large Scale Integration (VLSI) Systems.

[6]  Ch. Aravind Kumar,et al.  Key Updating for Leakage Resiliency with Application to AES Modes of Operation , 2016 .

[7]  Hsie-Chia Chang,et al.  A Low Overhead DPA Countermeasure Circuit Based on Ring Oscillators , 2010, IEEE Transactions on Circuits and Systems II: Express Briefs.

[8]  Christophe Clavier,et al.  Differential Power Analysis in the Presence of Hardware Countermeasures , 2000, CHES.

[9]  Amir Moradi,et al.  Moments-Correlating DPA , 2016, IACR Cryptol. ePrint Arch..

[10]  Ingrid Verbauwhede,et al.  Three Phase Dynamic Current Mode Logic: A More Secure DyCML to Achieve a More Balanced Power Consumption , 2012, WISA.

[11]  Paul C. Kocher,et al.  Differential Power Analysis , 1999, CRYPTO.

[12]  Amir Moradi,et al.  Leakage assessment methodology , 2016, Journal of Cryptographic Engineering.

[13]  David Canright,et al.  A Very Compact S-Box for AES , 2005, CHES.

[14]  Alexandre Yakovlev,et al.  Security Evaluation of Balanced 1-of- $n$ Circuits , 2011, IEEE Transactions on Very Large Scale Integration (VLSI) Systems.

[15]  Harry J.M. Veendrick Effects of Scaling on MOS IC Design and Consequences for the Roadmap , 2017 .

[16]  Ingrid Verbauwhede,et al.  A VLSI design flow for secure side-channel attack resistant ICs , 2005, Design, Automation and Test in Europe.

[17]  Christof Paar,et al.  Pushing the Limits: A Very Compact and a Threshold Implementation of AES , 2011, EUROCRYPT.

[18]  David Blaauw,et al.  Secure AES engine with a local switched-capacitor current equalizer , 2009, 2009 IEEE International Solid-State Circuits Conference - Digest of Technical Papers.

[19]  I. Verbauwhede,et al.  A dynamic and differential CMOS logic with signal independent power consumption to withstand differential power analysis on smart cards , 2002, Proceedings of the 28th European Solid-State Circuits Conference.

[20]  李翔宇,et al.  An AES chip with DPA resistance using hardware-based random order execution , 2012 .

[21]  Moyang Wang,et al.  Power-aware hiding method for S-box protection , 2014 .

[22]  Thomas S. Messerges,et al.  Securing the AES Finalists Against Power Analysis Attacks , 2000, FSE.

[23]  Marios C. Papaefthymiou,et al.  1.32GHz high-throughput charge-recovery AES core with resistance to DPA attacks , 2015, 2015 Symposium on VLSI Circuits (VLSI Circuits).