An Implementation of DES and AES, Secure against Some Attacks

Akkar, Mehdi-Laurent; Giraud, Christophe

doi:10.1007/3-540-44709-1_26

Cited by 392 publications

(265 citation statements)

References 7 publications

Supporting

Mentioning

251

Contrasting

Order By: Relevance

“…Another big advantage with our approach is that robust software countermeasures (like those described in [2]) can be implemented to compensate for any side-channel information leakage.…”

Section: Functional Simulation Of Vectorised Aesmentioning

confidence: 99%

See 1 more Smart Citation

A Vector Approach to Cryptography Implementation

Fournier

Moore

2006

Digital Rights Management. Technologies, Issues, Challenges and Systems

View full text Add to dashboard Cite

Abstract. The current deployment of Digital Right Management (DRM) schemes to distribute protected contents and rights is leading the way to massive use of sophisticated embedded cryptographic applications. Embedded microprocessors have been equipped with bulky and powerconsuming co-processors designed to suit particular data sizes. However, flexible cryptographic platforms are more desirable than devices dedicated to a particular cryptographic algorithm as the increasing cost of fabrication chips favors large volume production. This paper proposes a novel approach to embedded cryptography whereby we propose a vectorbased general purpose machine capable of implementing a range of cryptographic algorithms. We show that vector processing ideas can be used to perform cryptography in an efficient manner which we believe is appropriate for high performance, flexible and power efficient embedded systems.

show abstract

“…Another big advantage with our approach is that robust software countermeasures (like those described in [2]) can be implemented to compensate for any side-channel information leakage.…”

Section: Functional Simulation Of Vectorised Aesmentioning

confidence: 99%

“…For security, counter-measures have been proposed, most of which are software-based leading to bulkier codes and slower programs. A hardware-software co-design approach is being undertaken by other researchers [2,3,4] in order to have a hardware that would reduce the cost of those software counter-measures.…”

Section: Introductionmentioning

confidence: 99%

A Vector Approach to Cryptography Implementation

Fournier

Moore

2006

Digital Rights Management. Technologies, Issues, Challenges and Systems

View full text Add to dashboard Cite

show abstract

“…The first attack consists in directly interpreting power consumption measurements and the second attack also involves statistical tests. From then on, many papers describing either countermeasures or attack improvements have been published (see [1,4,6,21] for example).…”

Section: Introductionmentioning

confidence: 99%

“…the calls to the S-Boxes). Indeed, all the other operations are more or less linear and can be protected in a straightforward manner (see [1] for instance). To protect the calculus of the output of an S-Box against DPA, three main kinds of methods have been proposed in the literature.…”

Section: Introductionmentioning

confidence: 99%

“…Then, the computation can be securely carried out by performing calculations with these random blocks. The second method, called the re-computation method [1,2,29], involves a recomputation of the lookup tables corresponding to the S-Box with one or several random value(s) which must be changed each time the algorithm is executed. The third generic method, that we call here S-Box secure calculation, has been essentially applied to protect AES implementations [5,15,28,32] due to the strong algebraic structure of the AES S-Box.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Provably Secure S-Box Implementation Based on Fourier Transform

Prouff

Giraud

Aumônier

2006

Lecture Notes in Computer Science

Self Cite

View full text Add to dashboard Cite

Abstract. Cryptographic algorithms implemented in embedded devices must withstand Side Channel Attacks such as the Differential Power Analysis (DPA). A common method of protecting symmetric cryptographic implementations against DPA is to use masking techniques. However, clever masking of non-linear parts such as S-Boxes is difficult and has been the flaw of many countermeasures. In this article, we take advantage of some remarkable properties of the Fourier Transform to propose a new method to thwart DPA on the implementation of every S-Box. After introducing criteria so that an implementation is qualified as DPA-resistant, we prove the security of our scheme. Finally, we apply the method to FOX and AES S-Boxes and we show in the latter case that the resulting implementation is one of the most efficient.

show abstract