Examining smart-card security under the threat of power analysis attacks

Messerges, Thomas S.; Dabbish, Ezzat A.; Sloan, Robert H.

doi:10.1109/tc.2002.1004593

Cited by 1,427 publications

(861 citation statements)

References 17 publications

Supporting

Mentioning

852

Contrasting

Unclassified

Order By: Relevance

Section: Proposition 2 We Havesupporting

confidence: 54%

“…Firstly, SNR is independent of ; this corresponds to the results found in, e.g., [13], where SNR is also independent of if there is no (non-algorithmic) noise. Secondly, SNR drops off to 0 quickly as n gets larger, which was also observed in [13]. Finally, however, by evaluating SNR for fixed values of n, n ≥ 3, searching for the optimal value of α we have found that SNR is maximized consistently at α = 3, where SNR at α = 3 is about 1.55 times higher than at α = 1.…”

Section: Proposition 2 We Havesupporting

confidence: 54%

“…More surprisingly, for α = 2, the height of the DPA peaks does not depend on n, and for larger values of α (two last columns in Table 1) the height increases with the value of n. The results listed in Table 1 are useful for practical purposes assuming that sufficiently many acquisitions are available. To see how fast D 2 (α) actually converges to its expected value as a function of α, we determine the relevant signalto-noise ratio (SNR), following, e.g., [13]. In the present paper, we are concerned with so-called algorithmic noise only, so the value of SNR tells us how many traces we need (for different values of input data x) to get a successful DPA attack.…”

Section: Proposition 2 We Havementioning

confidence: 99%

See 2 more Smart Citations

On Second-Order Differential Power Analysis

Joye

Paillier

Schoenmakers

2005

Cryptographic Hardware and Embedded Systems – CHES 2005

View full text Add to dashboard Cite

Abstract. Differential Power Analysis (DPA) is a powerful cryptanalytic technique aiming at extracting secret data from a cryptographic device by collecting power consumption traces and averaging over a series of acquisitions. In order to prevent the leakage, hardware designers and software programmers make use of masking techniques (a.k.a. data whitening methods). However, the resulting implementations may still succumb to second-order DPA. Several recent papers studied secondorder DPA but, although the conclusions that are drawn are correct, the analysis is not. This paper fills the gap by providing an exact analysis of secondorder DPA as introduced by Messerges. It also considers several generalizations, including an extended analysis in the more general Hammingdistance model.

show abstract

Section: Proposition 2 We Havesupporting

confidence: 54%

Section: Proposition 2 We Havesupporting

confidence: 54%

Section: Proposition 2 We Havementioning

confidence: 99%

See 1 more Smart Citation

On Second-Order Differential Power Analysis

Joye

Paillier

Schoenmakers

2005

Cryptographic Hardware and Embedded Systems – CHES 2005

View full text Add to dashboard Cite

show abstract

“…In addition, Wang et al's scheme is not easily repairable and is unable to provide perfect forward secrecy of the generated session key. Other instances of vulnerabilities in published smartcard-based password authentication schemes include off-line password guessing attack [6][7][8]22], impersonation attack [9][10][11], forgery attack [4,[12][13][14], DoS attack [4,7,18,23], parallel session attack [4,9,10,18], replay attack [23], stolen/lost smartcard attack [9,22,24], observing power consumption [25] and reverse engineering techniques [26,27].…”

Section: Introductionmentioning

confidence: 99%

Cryptanalysis of an Improved Smartcard-based Remote Password Authentication Scheme

Islam¹,

Biswas²,

Choo³

2014

Inf. Sci. Lett.

View full text Add to dashboard Cite

Abstract:In recent years, several dynamic identity-based two-factor user authentication using password and smartcard have been proposed to provide mutual authentication between the user and server over unreliable networks. However, the design of secure cryptographic schemes is still notoriously hard, and there have been several instances of detected flaws in published schemes. For example in 2010, Hao and Yu demonstrated that Wang et al.'s user authentication scheme is insecure against off-line password guessing and server masquerade attacks, and proposed an improved scheme. Subsequently in 2012, Chao pointed out that the improved scheme of Hao and Yu is, unfortunately, susceptible to off-line password guessing and server masquerade attacks, and prone to password backward security problem; and proposed an enhanced scheme. In this paper, we demonstrated that Chao's enhanced scheme is not secure against user masquerade attack, server masquerade attack, insider attack and off-line password guessing attack in violation of its security claim as well as it fails to achieve users' anonymity.

show abstract

“…Although less general than classical cryptanalysis, because they usually target one specific implementation, they have been particularly efficient to break a wide variety of devices, including smart cards, ASICs and FPGAs [12,16,20]. As a straightforward consequence, countermeasures against these attacks are of great practical interest.…”

Section: Introductionmentioning

confidence: 99%

Improved Higher-Order Side-Channel Attacks with FPGA Experiments

Peeters

Standaert

Donckers

et al. 2005

Cryptographic Hardware and Embedded Systems – CHES 2005

View full text Add to dashboard Cite

Abstract. We demonstrate that masking a block cipher implementation does not sufficiently improve its security against side-channel attacks. Under exactly the same hypotheses as in a Differential Power Analysis (DPA), we describe an improvement of the previously introduced higherorder techniques allowing us to defeat masked implementations in a low (i.e. practically tractable) number of measurements. The proposed technique is based on the efficient use of the statistical distributions of the power consumption in an actual design. It is confirmed both by theoretical predictions and practical experiments against FPGA devices.

show abstract

Examining smart-card security under the threat of power analysis attacks

Cited by 1,427 publications

References 17 publications

On Second-Order Differential Power Analysis

On Second-Order Differential Power Analysis

Cryptanalysis of an Improved Smartcard-based Remote Password Authentication Scheme

Improved Higher-Order Side-Channel Attacks with FPGA Experiments

Contact Info

Product

Resources

About