Fault Attack Detection in AES by Monitoring Power Side-Channel Statistics

Differential Fault Analysis (DFA) is a cryptoanalysis technique to extract internal state of crypto-algorithms by inducing and propagating the faults during encryption. In this work, we present a low-power CMOS based mixed-signal framework for on-line DFA-based clock-glitch attack detection by monitoring power side-channel statistics. We discuss non-parametric kernel density estimation (KDE)-based technique to develop statistical model of power side-channel leakage. Clock-glitch attack is detected by identifying the low-likelihood samples using the developed statistical model. We have implemented KDE using CMOS current-mode Gilbert Gaussian Circuit-based Gaussian kernels. AES-128 was implemented on ARM Microcontroller by ST Microelectronics and Chip Whisperer-lite board was used to launch clock-glitch attack as well as capture power side-channel traces. We have evaluated the performance of our approach using power side-channel trace with clock-glitch attacks. We have adopted sliding window approach to update the statistical model in real-time. Discussed CMOS-based mixed-signal framework was designed at 45nm technology node and proposed design on an average consumes $\sim\mathbf{210}\mu\mathbf{W}$ at 2 MHz sampling frequency while utilizing 10 recently validated samples for PDF estimation. Moreover, discussed approach allows programming of parameters such as kernel standard deviation $(Kernel_{SD})$ and likelihood-threshold $(LH_{Thres})$ for high efficiency detection.

[1]  Marc Joye,et al.  Strengthening hardware AES implementations against fault attacks , 2007, IET Inf. Secur..

[2]  Amit Ranjan Trivedi,et al.  Non-parametric Statistical Density Function Synthesizer and Monte Carlo Sampler in CMOS , 2020, 2020 33rd International Conference on VLSI Design and 2020 19th International Conference on Embedded Systems (VLSID).

[3]  Christophe Clavier,et al.  Correlation Power Analysis with a Leakage Model , 2004, CHES.

[4]  Tadashi Shibata,et al.  An On-Chip-Trainable Gaussian-Kernel Analog Support Vector Machine , 2010, IEEE Transactions on Circuits and Systems I: Regular Papers.

[5]  Behzad Razavi,et al.  Design of Analog CMOS Integrated Circuits , 1999 .

[6]  Arijit Raychowdhury,et al.  All-Digital Low-Dropout Regulator With Adaptive Control and Reduced Dynamic Stability for Digital Load Circuits , 2016, IEEE Transactions on Power Electronics.

[7]  M. Lejeune,et al.  Smooth estimators of distribution and density functions , 1992 .

[8]  Adrian Thillard,et al.  Fault Attacks on AES with Faulty Ciphertexts Only , 2013, 2013 Workshop on Fault Diagnosis and Tolerance in Cryptography.

[9]  Ramesh Karri,et al.  Recomputing with Permuted Operands: A Concurrent Error Detection Approach , 2013, IEEE Transactions on Computer-Aided Design of Integrated Circuits and Systems.

[10]  Siva Sai Yerubandi,et al.  Differential Power Analysis , 2002 .

[11]  S. P. Singh,et al.  A new floating resistor for CMOS technology , 1989 .

[12]  Zheng Guo,et al.  Differential power cryptanalysis attacks against PRESENT implementation , 2010, 2010 3rd International Conference on Advanced Computer Theory and Engineering(ICACTE).

[13]  Guido Smits,et al.  Robust outlier detection using SVM regression , 2004, 2004 IEEE International Joint Conference on Neural Networks (IEEE Cat. No.04CH37541).

[14]  Jean-Jacques Quisquater,et al.  A Differential Fault Attack Technique against SPN Structures, with Application to the AES and KHAZAD , 2003, CHES.

[15]  V. A. Epanechnikov Non-Parametric Estimation of a Multivariate Probability Density , 1969 .