An Efficient Countermeasure against Fault Sensitivity Analysis Using Configurable Delay Blocks

Endo, S.; Li, Yang; Homma, Naofumi; Sakiyama, Kazuo; Ohta, Kazuo; Aoki, Takafumi

doi:10.1109/fdtc.2012.12

Cited by 20 publications

(17 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Therefore, in the case that the electromagnetic waves injected from outside act as glitches, disturb the normal clock timing, and form faults as the abovementioned mechanism, it is possible to implementing circuit‐level countermeasures to ensure performing processing only at the normal clock timing and suppress the faulty output as well as reduce the risk of the secret key being analyzed.…”

Section: Discussion Of the Fault Occurrence Mechanismmentioning

confidence: 99%

Fundamental Study on a Mechanism of Faulty Outputs from Cryptographic Modules Due to IEMI

Hayashi

Homma

Mizuki

et al. 2016

Elect Comm in Japan

Self Cite

View full text Add to dashboard Cite

This paper investigates the mechanism underlying faulty outputs from cryptographic modules due to intentional electromagnetic interference (IEMI), which causes information leakage in electronic devices without disrupting their functions or damaging their components. We show this fault mechanism through experiments using the faulty ciphertexts and pulse injection to a specific round in the encryption process. The experimental results indicate that faulty outputs from cryptographic modules are caused by setup time violation in the cryptographic module. C⃝ 2016 Wiley Periodicals, Inc. Electron Comm Jpn, 99(9): 72-78, 2016; Published online in Wiley Online Library (wileyonlinelibrary.com).

show abstract

Section: Discussion Of the Fault Occurrence Mechanismmentioning

confidence: 99%

Fundamental Study on a Mechanism of Faulty Outputs from Cryptographic Modules Due to IEMI

Hayashi

Homma

Mizuki

et al. 2016

Elect Comm in Japan

Self Cite

View full text Add to dashboard Cite

show abstract

“…By only allowing the results of the combinational logic to the inputs of the capturing register after its outputs have been stabilized using an enable signal, the fault sensitivity is made constant and equal to the arrival of the enable signal. This method was shown possible by Endo et al by choosing the enable signal to be greater than the largest critical path delay of the circuit during postmanufacturing reconfiguration [30], [31].…”

Section: Related Workmentioning

confidence: 99%

Glitch-Resistant Masking Schemes as Countermeasure Against Fault Sensitivity Analysis

Arribas

Cnudde

Šijačić

2018

2018 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC)

View full text Add to dashboard Cite

Fault Sensitivity Analysis is an attack on cryptographic implementations that exploits dependencies between the sensitive data and the intensity of an injected fault. Masking, an established Side-Channel Analysis countermeasure, was originally believed to resist Fault Sensitivity Analysis, until Moradi et al. presented a successful attack on several masked AES ASIC cores by leveraging Fault Sensitivity Analysis. However, the attacked masked implementations are known to be vulnerable to power analysis through glitches occurring from non-ideal gates in CMOS. This means that glitch-resistant masking schemes specifically have not been assessed against Fault Sensitivity Analysis. In this work we give a response to this matter and show that implementations protected with these glitch-resistant masking schemes provide Fault Sensitivity Analysis resistance by design. We argue our claims through a theoretical elaboration and provide further evidence through simulations for both ASIC and FPGA platforms. In our setup we give the attackers numerous, often unrealistic, advantages, only to see the attacks fail against glitch-resistant masking schemes.

show abstract

“…The authors of [7], [3] discussed several ways to remove the dependency between the secret information and the FS information as an countermeasure against the FSA attack.…”

Section: Fault Sensitivity Analysis (Fsa)mentioning

confidence: 99%

Advanced fault analysis techniques on AES

Sakiyama

Machida

Matsubara

2015

2015 IEEE International Symposium on Electromagnetic Compatibility (EMC)

Self Cite

View full text Add to dashboard Cite

Fault analysis research on symmetric-key cipher has been intensively discussed since differential fault analysis (DFA) was proposed in 1997. Output masking for wrong ciphertexts was believed to be the most effective countermeasure of the DFA attacks. However, fault sensitive analysis (FSA), proposed in 2010, can bypass the output-masking countermeasure. Both DFA and FSA require a strict fault injection control with the same plaintext, which is often difficul to realize under a circumstance where faults are randomly injected, e.g., in the case of electromagnetic (EM) fault injections. Although it requires the distribution of faulty ciphertexts, an extended fault analysis technique called NU-FVA, proposed in 2013, can avoid the hardness of the fault injection control. This article reviews the previous fault attacks and discusses their merits and demerits especially focusing on the power of the NU-FVA attack.978-1-4799-6616-5/15/$31.00 ©2015 IEEE

show abstract

An Efficient Countermeasure against Fault Sensitivity Analysis Using Configurable Delay Blocks

Cited by 20 publications

References 12 publications

Fundamental Study on a Mechanism of Faulty Outputs from Cryptographic Modules Due to IEMI

Fundamental Study on a Mechanism of Faulty Outputs from Cryptographic Modules Due to IEMI

Glitch-Resistant Masking Schemes as Countermeasure Against Fault Sensitivity Analysis

Advanced fault analysis techniques on AES

Contact Info

Product

Resources

About