Concurrent error detection of fault-based side-channel cryptanalysis of 128-bit RC6 block cipher

Fault-based side channel cryptanalysis is very effective against symmetric and asymmetric encryption algorithms. Although straightforward hardware and time redundancy based concurrent error detection (CED) architectures can be used to thwart such attacks, they entail significant overhead (either area or performance). In this paper we investigate two systematic approaches to low-cost, low-latency CED for symmetric encryption algorithm RC6. The proposed techniques have been validated on FPGA implementations of RC6, one of the advanced encryption standard finalists.

[1]  염흥렬,et al.  [서평]「Applied Cryptography」 , 1997 .

[2]  F. Ashcroft,et al.  VIII. References , 1955 .

[3]  Enrique Mandado,et al.  Concurrent error detection in block ciphers , 2000, Proceedings International Test Conference 2000 (IEEE Cat. No.00CH37159).

[4]  Rainer Laur,et al.  On the VLSI implementation of the international data encryption algorithm IDEA , 1995, Proceedings of ISCAS'95 - International Symposium on Circuits and Systems.

[5]  Wolfgang Fichtner,et al.  VINCI: Secure test of a VLSI high-speed encryption system , 1993, Proceedings of IEEE International Test Conference - (ITC).

[6]  Ramesh Karri,et al.  Idle cycles based concurrent error detection of RC6 encryption, [FPGAs] , 2001, Proceedings 2001 IEEE International Symposium on Defect and Fault Tolerance in VLSI Systems.

[7]  Eli Biham,et al.  Differential cryptanalysis of DES-like cryptosystems , 1990, Journal of Cryptology.

[8]  Eli Biham,et al.  Differential Fault Analysis of Secret Key Cryptosystems , 1997, CRYPTO.

[9]  Jered J. Floyd,et al.  6.857 Computer & Network Security Final Project: Diierential Fault Analysis , 1996 .

[10]  Ronald L. Rivest,et al.  The RC 6 TM Block Cipher , 1998 .

[11]  Mitsuru Matsui,et al.  Linear Cryptanalysis Method for DES Cipher , 1994, EUROCRYPT.

[12]  Richard J. Lipton,et al.  On the Importance of Checking Cryptographic Protocols for Faults (Extended Abstract) , 1997, EUROCRYPT.

[13]  Arjen K. Lenstra,et al.  Selecting Cryptographic Key Sizes , 2000, Journal of Cryptology.

[14]  Markus G. Kuhn,et al.  Low Cost Attacks on Tamper Resistant Devices , 1997, Security Protocols Workshop.

[15]  Ramesh Karri,et al.  Concurrent error detection of fault-based side-channel cryptanalysis of 128-bit symmetric block ciphers , 2001, Proceedings of the 38th Design Automation Conference (IEEE Cat. No.01CH37232).

[16]  Ross J. Anderson Crypto in Europe - Markets, Law and Policy , 1995, Cryptography: Policy and Algorithms.