Sk Subidh Ali scite author profile

Abstract. In this paper we propose an improved multi-byte differential fault analysis of AES-128 key schedule using a single pair of fault-free and faulty ciphertexts. We propose a four byte fault model where the fault is induced at ninth round key. The induced fault corrupts all the four bytes of the first column of the ninth round key which subsequently propagates to the entire tenth round key. The elegance of the proposed attack is that it requires only a single faulty ciphertext and reduce the search space of the key to 2 32 possible choices. Using two faulty ciphertexts the attack uniquely determines the key. The attack improves the existing DFA of AES-128 key schedule, which requires two faulty ciphertexts to reduce the key space of AES-128 to 2 32 , and four faulty ciphertexts to uniquely retrieve the key. Therefore, the proposed attack is more lethal than the existing attack as it requires lesser number of faulty ciphertexts. The simulated attack takes less than 20 minutes to reveal 128-bit secret key; running on a 8 core Intel Xeon E5606 processor at 2.13 GHz speed.

show abstract

Differential fault analysis of AES: towards reaching its limits

Ali

Mukhopadhyay

Tunstall

2012

J Cryptogr Eng

View full text Add to dashboard Cite

Abstract. In this paper we present a theoretical analysis of the limits of the Differential Fault Analysis (DFA) of AES by developing an interrelationship between conventional cryptanalysis of AES and DFAs. We show that the existing attacks have not reached these limits and present techniques to reach these. More specifically, we propose optimal DFA on states of AES-128 and AES-256. We also propose attacks on the key schedule of the three versions of AES, and demonstrate that these are some of the most efficient attacks on AES to date. Our attack on AES-128 key schedule is optimal, and the attacks on AES-192 and AES-256 key schedule are very close to optimal. Detailed experimental results have been provided for the developed attacks. The work has been compared to other works and also the optimal limits of Differential Fault Analysis of AES.

show abstract

A Differential Fault Analysis on AES Key Schedule Using Single Fault

Ali

Mukhopadhyay

2011

View full text Add to dashboard Cite

Novel Test-Mode-Only Scan Attack and Countermeasure for Compression-Based Scan Architectures

Ali¹,

Saeed

Sinanoglu³

et al. 2015

IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst.

View full text Add to dashboard Cite

New scan-based attack using only the test mode

Ali

Sinanoglu

Saeed

et al. 2013

View full text Add to dashboard Cite

Multi-level attacks: An emerging security concern for cryptographic hardware

Ali

Chakraborty

Mukhopadhyay

et al. 2011

View full text Add to dashboard Cite

Modern hardware and software implementations of cryptographic algorithms are subject to multiple sophisticated attacks, such as differential power analysis (DPA) and faultbased attacks. In addition, modern integrated circuit (IC) design and manufacturing follows a horizontal business model where different third-party vendors provide hardware, software and manufacturing services, thus making it difficult to ensure the trustworthiness of the entire process. Such business practices make the designs vulnerable to hard-to-detect malicious modifications by an adversary, termed as "Hardware Trojans". In this paper, we show that malicious nexus between multiple parties at different stages of the design, manufacturing and deployment makes the attacks on cryptographic hardware more potent. We describe the general model of such an attack, which we refer to as Multi-level Attack, and provide an example of it on the hardware implementation of the Advanced Encryption Standard (AES) algorithm, where a hardware Trojan is embedded in the design. We then analytically show that the resultant attack poses a significantly stronger threat than that from a Trojan attack by a single adversary. We validate our theoretical analysis using power simulation results as well as hardware measurement and emulation on a FPGA platform.

show abstract

Test-mode-only scan attack and countermeasure for contemporary scan architectures

Saeed

Ali

Sinanoglu

et al. 2014

View full text Add to dashboard Cite

Test-mode-only scan attack using the boundary scan chain

Ali

Sinanoglu

Karri

2014

View full text Add to dashboard Cite

12 3 4 5 6

scite is a Brooklyn-based organization that helps researchers better discover and understand research articles through Smart Citations–citations that display the context of the citation and describe whether the article provides supporting or contrasting evidence. scite is used by students and researchers from around the world and is funded in part by the National Science Foundation and the National Institute on Drug Abuse of the National Institutes of Health.

Contact Info

hi@scite.ai

10624 S. Eastern Ave., Ste. A-614

Henderson, NV 89052, USA

Blog Terms and Conditions API Terms Privacy Policy Contact Cookie Preferences Do Not Sell or Share My Personal Information

Made with 💙 for researchers

Part of the Research Solutions Family.

Sk Subidh Ali

Differential Fault Analysis of AES-128 Key Schedule Using a Single Multi-byte Fault

Differential fault analysis of AES: towards reaching its limits

A Differential Fault Analysis on AES Key Schedule Using Single Fault

Novel Test-Mode-Only Scan Attack and Countermeasure for Compression-Based Scan Architectures

New scan-based attack using only the test mode

Multi-level attacks: An emerging security concern for cryptographic hardware

Test-mode-only scan attack and countermeasure for contemporary scan architectures

Test-mode-only scan attack using the boundary scan chain

Contact Info

Product

Resources

About