A Fault Attack on the LED Block Cipher

Jovanovic, Philipp; Kreuzer, Martin; Polian, Ilia

doi:10.1007/978-3-642-29912-4_10

Cited by 52 publications

(57 citation statements)

References 9 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The fault-affected output values are collected, and differential cryptanalysis is used to derive the secret key. Recently, a number of highly efficient attacks on state-of-the-art ciphers including AES [5], LED [6], [7], PRESENT [8] and PRINCE [7], [9] have been reported. These attacks need a small number of fault injections (1 for AES and LED64, around 3-4 for LED128 and PRINCE) for successful key recovery.…”

Section: Introductionmentioning

confidence: 99%

Parametric Trojans for Fault-Injection Attacks on Cryptographic Hardware

Kumar

Jovanovic

Burleson

et al. 2014

2014 Workshop on Fault Diagnosis and Tolerance in Cryptography

Self Cite

View full text Add to dashboard Cite

Abstract-We propose two extremely stealthy hardware Trojans that facilitate fault-injection attacks in cryptographic blocks. The Trojans are carefully inserted to modify the electrical characteristics of predetermined transistors in a circuit by altering parameters such as doping concentration and dopant area. These Trojans are activated with very low probability under the presence of a slightly reduced supply voltage (0.001 for 20% V dd reduction). We demonstrate the effectiveness of the Trojans by utilizing them to inject faults into an ASIC implementation of the recently introduced lightweight cipher PRINCE. Full circuit-level simulation followed by differential cryptanalysis demonstrate that the secret key can be reconstructed after around 5 fault-injections.

show abstract

Section: Introductionmentioning

confidence: 99%

Parametric Trojans for Fault-Injection Attacks on Cryptographic Hardware

Kumar

Jovanovic

Burleson

et al. 2014

2014 Workshop on Fault Diagnosis and Tolerance in Cryptography

Self Cite

View full text Add to dashboard Cite

show abstract

“…is derived by differential cryptanalysis of and . For example, one can supplement the equation ( , ) = by the findings from the differential cryptanalysis that quickly guide the solution procedure towards the key [18]. Therefore, fault-based attacks target the implementation of the cryptographic algorithm rather than the algorithm itself and thus overcome its cryptographic strength.…”

Section: Fault-based Attacksmentioning

confidence: 99%

“…Therefore, fault-based attacks target the implementation of the cryptographic algorithm rather than the algorithm itself and thus overcome its cryptographic strength. A number of techniques are known for introducing physical faults; these include manipulation of the clock signal, voltage supply, and pinpointed irradiation by a laser [18].…”

Section: Fault-based Attacksmentioning

confidence: 99%

Hardware security and test: Friends or enemies?

Polian

2014

It - Information Technology

Self Cite

View full text Add to dashboard Cite

Abstract:Hardware security is a relatively new scientific discipline which focuses on adversarial threats to hardware components of complex systems and infrastructures, including manipulation, unauthorized access to confidential data, and intellectual property theft. State-of-the-art test methods can contribute to detection and elimination of security threats but also may introduce new vulnerabilities. This article will explain this dichotomy and outline current research challenges.

show abstract

“…Then Biham and Shamir proposed the DFA attack in 1997, which processes the right and faulty outputs with differential cryptanalysis [8]. After that, DFA has been successfully applied to many block ciphers and stream ciphers, such as AES [12,33,34], SHACAL1 [11], LED [35,36], Piccolo [37], PRINCE [24], Trivium [9,23], RC4 [13,14]. Besides attacks against block and stream ciphers, the DFA attack on the compression function of a hash function has also been studied.…”

Section: Introductionmentioning

confidence: 99%

“…An important advantage of AFA over DFA is that AFA does not rely on the manual analysis of differential propagations. By applying AFA, the previous DFA attacks on block and stream ciphers have been improved, such as AES [30], LED [26,31], Piccolo [4], Trivium [29].…”

Section: Introductionmentioning

confidence: 99%

Algebraic Fault Attack on the SHA-256 Compression Function

Hao¹,

Li²,

Ma³

et al. 2014

International Journal of Research in Computer Science

View full text Add to dashboard Cite

A Fault Attack on the LED Block Cipher

Cited by 52 publications

References 9 publications

Parametric Trojans for Fault-Injection Attacks on Cryptographic Hardware

Parametric Trojans for Fault-Injection Attacks on Cryptographic Hardware

Hardware security and test: Friends or enemies?

Algebraic Fault Attack on the SHA-256 Compression Function

Contact Info

Product

Resources

About