Cryptanalysis of GlobalPlatform Secure Channel Protocols

Sabt, Mohamed; Traoré, Jacques

doi:10.1007/978-3-319-49100-4_3

Cited by 2 publications

(4 citation statements)

References 24 publications

(43 reference statements)

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Despite their importance, the SCP protocols have been overlooked in the literature for a long time. To the best of our knowledge, Sabt et al in [ST16] provided the first cryptanalysis for both SCP02 and SCP03. In their work, they showed a theoretical attack against SCP02 due to misuse of Initialization Vector (IV) in CBC mode.…”

Section: Related Workmentioning

confidence: 99%

“…GP defines a family of protocols called secure channel protocol (SCPs) to provide secure communication. Here, we are solely interested in SCP10, as the security analysis of SCP02 and SCP03 has been done in [ST16,AF18].…”

Section: Scp10 (Secure Channel Protocol 10)mentioning

confidence: 99%

“…We underline that the specifications instruct to always set the encryption IV (Initialization Vector) to zero for encryption. This raises a known vulnerability described in [ST16]. Since we do not focus on this part, we skip the details that can be found in [Tec18].…”

Section: Secure Transmissionmentioning

confidence: 99%

See 2 more Smart Citations

The Long and Winding Path to Secure Implementation of GlobalPlatform SCP10

Braga

Fouque

Sabt

2020

TCHES

Self Cite

View full text Add to dashboard Cite

GlobalPlatform (GP) card specifications are defined for smart cards regarding rigorous security requirements. The increasingly more powerful cards within an open ecosystem of multiple players stipulate that asymmetric-key protocols become necessary. In this paper, we analyze SCP10, which is the Secure Channel Protocol (SCP) that relies on RSA for key exchange and authentication. Our findings are twofold. First, we demonstrate several flaws in the design of SCP10. We discuss the scope of the identified flaws by presenting several attack scenarios in which a malicious attacker can recover all the messages protected by SCP10. We provide a full implementation of these attacks. For instance, an attacker can get the freshly generated session keys in less than three hours. Second, we propose a secure implementation of SCP10 and discuss how it can mitigate the discovered flaws. Finally, we measure the overhead incurred by the implemented countermeasures.

show abstract

Section: Related Workmentioning

confidence: 99%

Section: Scp10 (Secure Channel Protocol 10)mentioning

confidence: 99%

See 1 more Smart Citation

The Long and Winding Path to Secure Implementation of GlobalPlatform SCP10

Braga

Fouque

Sabt

2020

TCHES

Self Cite

View full text Add to dashboard Cite

show abstract

“…To the best of our knowledge, there is no security analysis of SCP02 besides a theoretical attack by Sabt and Traoré [ST16]. They describe a chosen plaintext attack based on the fact that the encryption scheme is deterministic (data is encrypted in CBC mode with a static IV).…”

Section: Alfardan and Patersonmentioning

confidence: 99%

Attacking GlobalPlatform SCP02-compliant Smart Cards Using a Padding Oracle Attack

Avoine

Ferreira

2018

TCHES

View full text Add to dashboard Cite

We describe in this paper how to perform a padding oracle attack against the GlobalPlatform SCP02 protocol. SCP02 is implemented in smart cards and used by transport companies, in the banking world and by mobile network operators (UICC/SIM cards). The attack allows an adversary to efficiently retrieve plaintext bytes from an encrypted data field. We provide results of our experiments done with 10 smart cards from six different card manufacturers, and show that, in our experimental setting, the attack is fully practical. Given that billions SIM cards are produced every year, the number of affected cards, although difficult to estimate, is potentially high. To the best of our knowledge, this is the first successful attack against SCP02.

show abstract

Cryptanalysis of GlobalPlatform Secure Channel Protocols

Cited by 2 publications

References 24 publications

The Long and Winding Path to Secure Implementation of GlobalPlatform SCP10

The Long and Winding Path to Secure Implementation of GlobalPlatform SCP10

Attacking GlobalPlatform SCP02-compliant Smart Cards Using a Padding Oracle Attack

Contact Info

Product

Resources

About