Correlation-Enhanced Power Analysis Collision Attack

Moradi, Amir; Mischke, Oliver; Eisenbarth, Thomas

doi:10.1007/978-3-642-15031-9_9

Cited by 157 publications

(176 citation statements)

References 27 publications

(45 reference statements)

Supporting

Mentioning

174

Contrasting

Order By: Relevance

“…Examining the First-Order Leakage Back to the original correlation-collision attack [29], which is shortly restated later, the authors proposed a variance test approach which can identify the time instances when a first-order leakage is exhibited by the traces. It is worth to mention that relatively-similar approaches were previously introduced in [1,42] as inter cluster separation and variance test.…”

Section: Discussionmentioning

confidence: 99%

“…According to [29] a variance trace over the mean traces, e.g., v j∈{0,...,15} = Var(m i j ; ∀ i) should indicate the time samples in which the mean traces depend on the plaintext byte, i.e., j. For example, Fig.…”

Section: Discussionmentioning

confidence: 99%

“…Realization of masking in hardware platforms faces many challenges due to the uncontrolled glitches happening inside the masked circuits. Since these issues are out of scope of this article, the interested reader is referred to [26,29,32,38]. Although there exist a couple of different masking techniques, the focus of this work is on Boolean masking for software-based platforms, where the challenges are mainly due to their significant overhead.…”

Section: Introductionmentioning

confidence: 99%

See 2 more Smart Citations

Detecting Hidden Leakages

Moradi

Guilley

Heuser

2014

Applied Cryptography and Network Security

Self Cite

View full text Add to dashboard Cite

Abstract. Reducing the entropy of the mask is a technique which has been proposed to mitigate the high performance overhead of masked software implementations of symmetric block ciphers. Rotating S-box Masking (RSM) is an example of such schemes applied to AES with the purpose of maintaining the security at least against univariate first-order side-channel attacks. This article examines the vulnerability of a realization of such technique using the side-channel measurements publicly available through DPA contest V4. Our analyses which focus on exploiting the first-order leakage of the implementation discover a couple of potential attacks which can recover the secret key. Indeed the leakage we exploit is due to a design mistake as well as the characteristics of the implementation platform, none of which has been considered during the design of the countermeasure (implemented in naive C code).

show abstract

Section: Discussionmentioning

confidence: 99%

Section: Discussionmentioning

confidence: 99%

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

Detecting Hidden Leakages

Moradi

Guilley

Heuser

2014

Applied Cryptography and Network Security

Self Cite

View full text Add to dashboard Cite

show abstract

“…Such attacks require the use of a statistical tool, also known as a distinguisher, together with a leakage model to compare hypotheses with real traces (each one related to known or chosen inputs). The latter constraint may however be relaxed thanks to the so-called collision attacks [32] which aim at detecting the occurrences of colliding values during a computation, that can be linked to the secret [8,14,30,31]. In order to counteract all those attacks, randomization techniques can be implemented (e.g.…”

Section: Introductionmentioning

confidence: 99%

Horizontal Collision Correlation Attack on Elliptic Curves

Bauer

Jaulmes

Prouff

et al. 2014

Selected Areas in Cryptography -- SAC 2013

View full text Add to dashboard Cite

Abstract. Elliptic curves based algorithms are nowadays widely spread among embedded systems. They indeed have the double advantage of providing efficient implementations with short certificates and of being relatively easy to secure against side-channel attacks. As a matter of fact, when an algorithm with constant execution flow is implemented together with randomization techniques, the obtained design usually thwarts classical side-channel attacks while keeping good performances. Recently, a new technique that makes some randomizations ineffective, has been successfully applied in the context of RSA implementations. This method, related to a so-called horizontal modus operandi, introduced by Walter in 2001, turns out to be very powerful since it only requires leakages on a single algorithm execution. In this paper, we combine such kind of techniques together with the collision correlation analysis, introduced at CHES 2010 by Moradi et al., to propose a new attack on elliptic curves atomic implementations (or unified formulas) with input randomization. We show how it may be applied against several state-of-the art implementations, including those of Chevallier-Mames et al., of Longa and of Giraud-Verneuil and also Bernstein and Lange for unified Edward's formulas. Finally, we provide simulation results for several sizes of elliptic curves on different hardware architectures. These results, which turn out to be the very first horizontal attacks on elliptic curves, open new perspectives in securing such implementations. Indeed, this paper shows that two of the main existing countermeasures for elliptic curve implementations become irrelevant when going from vertical to horizontal analysis.

show abstract

“…Another contribution to CHES 2010 was a collision attack enhanced by correlation [15]. Compared to classical power analysis attacks, its main feature is that it does not rely on the knowledge of an underlying (hypothetical) power model.…”

Section: Introductionmentioning

confidence: 99%

On the Power of Fault Sensitivity Analysis and Collision Side-Channel Attacks in a Combined Setting

Moradi

Mischke

Paar

et al. 2011

Cryptographic Hardware and Embedded Systems – CHES 2011

Self Cite

View full text Add to dashboard Cite

Abstract. At CHES 2010 two powerful new attacks were presented, namely the Fault Sensitivity Analysis and the Correlation Collision Attack. This paper shows how these ideas can be combined to create even stronger attacks. Two solutions are presented; both extract leakage information by the fault sensitivity analysis method while each one applies a slightly different collision attack to deduce the secret information without the need of any hypothetical leakage model. Having a similar fault injection method, one attack utilizes the non-uniform distribution of faulty ciphertext bytes while the other one exploits the data-dependent timing characteristics of the target combination circuit. The results when attacking several AES ASIC cores of the SASEBO LSI chips in different process technologies are presented. Successfully breaking the cores protected against DPA attacks using either gate-level countermeasures or logic styles indicates the strength of the attacks.

show abstract

Correlation-Enhanced Power Analysis Collision Attack

Cited by 157 publications

References 27 publications

Detecting Hidden Leakages

Detecting Hidden Leakages

Horizontal Collision Correlation Attack on Elliptic Curves

On the Power of Fault Sensitivity Analysis and Collision Side-Channel Attacks in a Combined Setting

Contact Info

Product

Resources

About