论文信息 - A code morphing methodology to automate power analysis countermeasures

A code morphing methodology to automate power analysis countermeasures

We introduce a general framework to automate the application of countermeasures against Differential Power Attacks aimed at software implementations of cryptographic primitives. The approach enables the generation of multiple versions of the code, to prevent an attacker from recognizing the exact point in time where the observed operation is executed and how such operation is performed. The strategy increases the effort needed to retrieve the secret key through hindering the formulation of a correct hypothetical consumption to be correlated with the power measurements. The experimental evaluation shows how a DPA attack against OpenSSL AES implementation on an industrial grade ARM-based SoC is hindered with limited performance overhead.

Giovanni Agosta | Alessandro Barenghi | Gerardo Pelosi

[1] Evelyn Duesterwald. Dynamic Compilation , 2002, The Compiler Design Handbook.

[2] Alessandro Barenghi,et al. Improving first order differential power attacks through digital signal processing , 2010, SIN.

[3] Paolo Ienne,et al. A first step towards automatic application of power analysis countermeasures , 2011, 2011 48th ACM/EDAC/IEEE Design Automation Conference (DAC).

[4] Emmanuel Prouff,et al. Higher-Order Masking and Shuffling for Software Implementations of Block Ciphers , 2009, CHES.

[5] Jean-Sébastien Coron,et al. Analysis and Improvement of the Random Delay Countermeasure of CHES 2009 , 2010, CHES.

[6] Stefan Mangard,et al. Power analysis attacks - revealing the secrets of smart cards , 2007 .

[7] Paul C. Kocher,et al. Differential Power Analysis , 1999, CRYPTO.

[8] Saumya K. Debray,et al. Obfuscation of executable code to improve resistance to static disassembly , 2003, CCS '03.

[9] Stefan Tillich,et al. Attacking State-of-the-Art Software Countermeasures-A Case Study for AES , 2008, CHES.

[10] Alessandro Barenghi,et al. Information Leakage Discovery Techniques to Enhance Secure Chip Design , 2011, WISTP.