Cryptographic Processors-A Survey

Anderson, Ross; Bond, Mike; Clulow, Jolyon; Skorobogatov, Sergei

doi:10.1109/jproc.2005.862423

Cited by 150 publications

(81 citation statements)

References 30 publications

Supporting

Mentioning

Contrasting

Unclassified

Order By: Relevance

“…A number of documented attacks exhibit major flaws in the PIN processing API of HSMs [2,8,10,18]. For example, the so-called PIN format attack recovers the PIN by inducing errors in the integrity check of the reformatting step.…”

Section: The Pin Integrity Check Protocolmentioning

confidence: 99%

Automatically deriving information-theoretic bounds for adaptive side-channel attacks

Köpf

Basin

2011

JCS

View full text Add to dashboard Cite

We present a model of adaptive attacks which we combine with information-theoretic metrics to quantify the information revealed to an adaptive adversary. This enables us to express an adversary's remaining uncertainty about a secret as a function of the number of interactions with the system under attack. We present algorithms and approximation methods for computing this function. The main application area for our approach is the analysis of side-channels in cryptographic algorithms and we give examples of how it can be used to characterize the vulnerability of hardware implementations to timing and power attacks. We also show the generality of our approach by using it to quantify the information leaked by a security protocol.

show abstract

Section: The Pin Integrity Check Protocolmentioning

confidence: 99%

Automatically deriving information-theoretic bounds for adaptive side-channel attacks

Köpf

Basin

2011

JCS

View full text Add to dashboard Cite

show abstract

“…A wide variety of hardware devices have been designed to provide a physical environment in which sensitive code can be executed without being observed or modified [6]. These kinds of devices are frequently used to implement digital rights management systems in consumer electronics devices, such as mobile phones and DVD players, and may have their security properties specified by the standards body responsible for the digital rights management system.…”

Section: Tamper-resistant Hardwarementioning

confidence: 99%

Digital Rights Management

Sheppard¹

2010

Chapman &Amp; Hall/CRC Cryptography and Network Security Series

View full text Add to dashboard Cite

Digital rights management allows information owners to control the use and dissemination of electronic documents via a machine-readable licence. Documents are distributed in a protected form such that they may only be used with trusted environments, and only in accordance with terms and conditions stated in the licence. Digital rights management has found uses in protecting copyrighted audio-visual productions, private personal information, and companies' trade secrets and intellectual property. This chapter describes a general model of digital rights management together with the technologies used to implement each component of a digital rights management system, and desribes how digital rights management can be applied to secure the distribution of electronic information in a variety of contexts.

show abstract

“…Note that the nonce does not provide additional security since replay attacks are not an issue. 4 The client invokes the TPM CreateWrapKey command (3) to have the TPM create a non-migratable asymmetric encryption key (4) that is sealed to the PCRs specified in step 2 (5). The client loads the key into the TPM by invoking TPM LoadKey2 (6), receives the key handle from the TPM (7), and has the TPM certify the loaded key with the AIK (8).…”

Section: −1mentioning

confidence: 99%

“…It represents the views of the authors. 1 There seems to be consensus in the information-security community that TCBs for trusted computing must be hardware-based, but tamper-proof hardware remains an open challenge [4,5]. 2 http://www.emscb.de/ and http://www.opentc.net/.…”

Section: Introductionmentioning

confidence: 99%