AES power attack based on induced cache miss and countermeasure

Bertoni, Guido; Zaccaria, Vittorio; Breveglieri, Luca; Monchiero, Matteo; Palermo, Gianluca

doi:10.1109/itcc.2005.62

Cited by 76 publications

(72 citation statements)

References 4 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Subsequent research verified the correctness of the findings [11,10,9,15], improved the attack technically [14,3,8] or algorithmically [5], and devised and analysed countermeasures [6,4,16].…”

Section: Introductionmentioning

confidence: 95%

See 1 more Smart Citation

A Cache Timing Analysis of HC-256

Zenner

2009

Selected Areas in Cryptography

View full text Add to dashboard Cite

show abstract

Section: Introductionmentioning

confidence: 95%

“…Obviously, these requirements are not always met. However, they are relevant in shared server and in sandbox scenarios, and Bertoni et al [3] show how to use cache timings if the adversary has physical access to a device, making the attack much more realistic.…”

Section: A Simple Attackmentioning

confidence: 99%

A Cache Timing Analysis of HC-256

Zenner

2009

Selected Areas in Cryptography

View full text Add to dashboard Cite

show abstract

“…In order for the cache to reveal information as described above, enough time needs to have passed between the execution of Algorithm 3 and the ciphering algorithm so that the cache no longer contains the randomised look-up table. In theory, it may be possible to apply the attack in [3] but it is necessary to know the cache lines that no longer contain the randomised look-up table.…”

Section: Implementing the Attackmentioning

confidence: 99%

“…Several attacks have been published on using cache access events as a sidechannel [2,3,11,16] on DES and AES. These are predominately timing attacks taking into account the total number of cache misses in the algorithm to determine information on the secret key being used.…”

Section: Introductionmentioning

confidence: 99%

Cache Based Power Analysis Attacks on AES

Fournier

Tunstall

2006

Information Security and Privacy

View full text Add to dashboard Cite

Abstract. This paper describes possible attacks against software implementations of AES running on processors with cache mechanisms, particularly in the case of smart cards. These attacks are based on sidechannel information gained by observing cache hits and misses in the current drawn by the smart card. Two different attacks are described. The first is a combination of ideas proposed in [2] and [11] to produce an attack that only requires the manipulation of the plain text and the observation of the current. The second is an attack based on specific implementations of the xtime function [10]. These attacks are shown to also work against algorithms using Boolean data masking techniques as a DPA countermeasure.

show abstract

“…Cache attacks demonstrated fall into three categories, depending on the channels used to collect the leakages. These channels are spy processes [1], timing information [2,3] and power/electromagnetic (EM) traces [4,5,6,7,8,9,10,11]. The focus of this paper is trace driven cache attack (TDCA), which exploits the power or electromagnetic traces.…”

Section: Introductionmentioning

confidence: 99%

A comprehensive study of multiple deductions-based algebraic trace driven cache attacks on AES

Zhao

Guo

Zhang

et al. 2013

Computers & Security

View full text Add to dashboard Cite

First, the key recovery in TDCA is depicted by an abstract model regardless of the specific attack techniques.Then, the previous work of TDCAs on AES is classified into three types and its limitations are analyzed.How to utilize the cache events with MDATDCA is presented and the overhead is also calculated. To evaluate MDATDCA on AES, this paper constructs a mathematical model to estimate the maximal number of leakage rounds that can be utilized and the minimal number of cache traces required for a successful MDATDCA.

show abstract

AES power attack based on induced cache miss and countermeasure

Abstract: Abstract

Cited by 76 publications

References 4 publications

A Cache Timing Analysis of HC-256

A Cache Timing Analysis of HC-256

Cache Based Power Analysis Attacks on AES

A comprehensive study of multiple deductions-based algebraic trace driven cache attacks on AES

Contact Info

Product

Resources

About