A Correlation Fault Attack on Rotating S-Box Masking AES

Wang, Xingxin; Zheng, Jian; Wu, Lingjuan; Zhu, Juanxiu; Hu, Wei

doi:10.1109/asianhost53231.2021.9699812

Cited by 5 publications

(3 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In addition, it has been shown that cryptographic designs with mask protection can also be vulnerable to fault attack. Although Bae et al [25] have proved that the AES design using Akkar and Giraud's mask can be secure against fault attack, it is generally accepted that masking does not provide sufficient protection against fault attack [3,26] . FRA has been proposed to break masked AES by Wang et al [10] They inject clock glitches into the critical path of S-Box so that the mask fails to protect the byte substitution, which would make it easier to attack the protected design.…”

Section: Related Workmentioning

confidence: 99%

Fault Analysis on AES: A Property-Based Verification Perspective

Dai,

Wang,

et al. 2024

Tsinghua Sci. Technol.

View full text Add to dashboard Cite

Fault analysis is a frequently used side-channel attack for cryptanalysis. However, existing fault attack methods usually involve complex fault fusion analysis or computation-intensive statistical analysis of massive fault traces. In this work, we take a property-based formal verification approach to fault analysis. We derive fine-grained formal models for automatic fault propagation and fusion, which establish a mathematical foundation for precise measurement and formal reasoning of fault effects. We extract the correlations in fault effects in order to create properties for fault verification. We further propose a method for key recovery, by formally checking when the extracted properties can be satisfied with partial keys as the search variables. Experimental results using both unprotected and masked advanced encryption standard (AES) implementations show that our method has a key search complexity of 2 16 , which only requires two correct and faulty ciphertext pairs to determine the secret key, and does not assume knowledge about fault location or pattern.

show abstract

Section: Related Workmentioning

confidence: 99%

Fault Analysis on AES: A Property-Based Verification Perspective

Dai,

Wang,

et al. 2024

Tsinghua Sci. Technol.

View full text Add to dashboard Cite

show abstract

“…At present, the commonly used symmetric encryption algorithms include SM4, AES, 3DES, RC4, and other algorithms. The AES algorithm uses a complex key scheduling algorithm, and the decryption algorithm also requires additional code, which is more complicated to implement [19]. The SM4 algorithm is relatively simple to implement, the key scheduling and encryption algorithms are basically the same, and the same procedure can be used for decryption, as long as the order of the keys is reversed.…”

Section: Sm4 Algorithm and Performancementioning

confidence: 99%

Implementation and Performance of Face Recognition Payment System Securely Encrypted by SM4 Algorithm

Zhou¹,

Wu²,

Hu³

et al. 2022

Information

View full text Add to dashboard Cite

Face recognition payment is a new type of payment method, with AI face recognition technology as the core, and its speed and convenience are more in line with the users’ payment habits. However, the face is a biological feature with weak privacy, and the protection of user information security is particularly important. At present, face payment technology still has security risks, and the data transmitted during the transaction process are vulnerable to attacks. Aiming at the security problems in the payment process, a payment system that is jointly encrypted by the SM4 algorithm and the face liveness detection algorithm was proposed in this paper, which supports a variety of communication methods. The hardware platform adopts an octa-core 64-bit ARM processor with a main frequency of 1.8 GHz, which has powerful computing and processing capabilities. Based on the Android intelligent operating system, the development environment is more secure and convenient. It is also equipped with a liveness detection 3D structured light camera, which dynamically collects face information and accurately analyzes the characteristics of living bodies. Through the data encryption and decryption test and face performance index detection, the expected effect of the system was achieved, which greatly improved the performance of the face payment system currently studied. The SM4 encryption algorithm improved the running rate of encrypted data and the security of face transaction data transmission, the face detection algorithm improved the accuracy of living body feature recognition, and the payment system effectively improved the accuracy and security of face payment.

show abstract

“…In the twenty-four years since the first presentation by Kocher et al [1], SCA has experienced a renaissance of development. Novel strategies for power-based cryptanalysis have continued to develop over the years, with targets focusing on both symmetric encryption [1][2][3] and asymmetric encryption [4] algorithms. Through power usage, it has readily been demonstrated that valid attack vectors may be leveraged against properly instrumented low-power embedded systems running cryptographic algorithms.…”

Section: Introductionmentioning

confidence: 99%

Challenging Assumptions of Normality in AES s-Box Configurations under Side-Channel Analysis

Carper,

Olguin,

Brown

et al. 2023

JCP

View full text Add to dashboard Cite

Power-based Side-Channel Analysis (SCA) began with visual-based examinations and has progressed to utilize data-driven statistical analysis. Two distinct classifications of these methods have emerged over the years; those focused on leakage exploitation and those dedicated to leakage detection. This work primarily focuses on a leakage detection-based schema that utilizes Welch’s t-test, known as Test Vector Leakage Assessment (TVLA). Both classes of methods process collected data using statistical frameworks that result in the successful exfiltration of information via SCA. Often, statistical testing used during analysis requires the assumption that collected power consumption data originates from a normal distribution. To date, this assumption has remained largely uncontested. This work seeks to demonstrate that while past studies have assumed the normality of collected power traces, this assumption should be properly evaluated. In order to evaluate this assumption, an implementation of Tiny-AES-c with nine unique substitution-box (s-box) configurations is conducted using TVLA to guide experimental design. By leveraging the complexity of the AES algorithm, a sufficiently diverse and complex dataset was developed. Under this dataset, statistical tests for normality such as the Shapiro-Wilk test and the Kolmogorov-Smirnov test provide significant evidence to reject the null hypothesis that the power consumption data is normally distributed. To address this observation, existing non-parametric equivalents such as the Wilcoxon Signed-Rank Test and the Kruskal-Wallis Test are discussed in relation to currently used parametric tests such as Welch’s t-test.

show abstract

A Correlation Fault Attack on Rotating S-Box Masking AES

Cited by 5 publications

References 8 publications

Fault Analysis on AES: A Property-Based Verification Perspective

Fault Analysis on AES: A Property-Based Verification Perspective

Implementation and Performance of Face Recognition Payment System Securely Encrypted by SM4 Algorithm

Challenging Assumptions of Normality in AES s-Box Configurations under Side-Channel Analysis

Contact Info

Product

Resources

About