Optical Fault Attacks on AES: A Threat in Violet

Schmidt, Jörn-Marc; Hutter, Michael; Plos, Thomas

doi:10.1109/fdtc.2009.37

Cited by 49 publications

(30 citation statements)

References 11 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…While Flash technology is considered secured, emerging NVM integrity has not been investigated neither under UV nor laser attacks such as in [1] or [2]. This is the reason why this work is leaning on one of this technologies security issues, which is oxide-based RRAM (OxRAM).…”

Section: A Non-volatile Memories Issuesmentioning

confidence: 99%

Thermal laser attack and high temperature heating on HfO<inf>2</inf>-based OxRAM cells

Krakovinsky

Bocquet

Wacquez³

et al. 2017

2017 IEEE 23rd International Symposium on on-Line Testing and Robust System Design (IOLTS)

View full text Add to dashboard Cite

Abstract-The last 10 years have seen the rise of new NVM technologies as alternative solutions to Flash technology, which is facing downsizing issues. Apart from offering higher performance than the state of the art of Flash, one of their key features is lower power consumption, which makes them even more suitable for the IoT era. But one of the other main concerns regarding IoT is data security, which is yet to be evaluated for emerging NVM. Our previous work aimed at putting under test the integrity of HfO 2 based resistive RAM (OxRAM cells). Bit-set occurrences were found after thermal laser attacks. This present work investigates the difference in behaviour when a selector is added to the resistive element, thanks to attack on different stacks. The results obtained give interesting tracks for the design of secure OxRAM-based ICs. It also studies the kinetic role of temperature through heating experiments.

show abstract

Section: A Non-volatile Memories Issuesmentioning

confidence: 99%

Thermal laser attack and high temperature heating on HfO<inf>2</inf>-based OxRAM cells

Krakovinsky

Bocquet

Wacquez³

et al. 2017

2017 IEEE 23rd International Symposium on on-Line Testing and Robust System Design (IOLTS)

View full text Add to dashboard Cite

show abstract

“…For example, in [10] the authors were able to mount a successful attack by causing temporary brown outs and glitches on the supply line of an 8-bit microcontroller. In [19], Schmidt et al attacked an implementation of AES by blanking selectively the memory where the SBoxes are held. In [16], Peacham et al describe a successful attack mounted, using laser induced fault injection, on an AES implementation in a commercial grade smart card, that did not include any countermeasures against fault attacks.…”

Section: Related Workmentioning

confidence: 99%

Exploring the Feasibility of Low Cost Fault Injection Attacks on Sub-threshold Devices through an Example of a 65nm AES Implementation

Barenghi

Hocquet

Bol

et al. 2012

RFID. Security and Privacy

View full text Add to dashboard Cite

Abstract. The continuous scaling of VLSI technology and the aggressive use of low power strategies (such as subthreshold voltage) make it possible to implement standard cryptographic primitives within the very limited circuit and power budget of RFID devices. On the other hand, such cryptographic implementations raise concerns regarding their vulnerability to both active and passive side channel attacks. In particular, when focusing on RFID targeted designs, it is important to evaluate their resistance to low cost physical attacks.A common low cost fault injection attack is the one which is induced by insufficient supply voltage of the chip with the goal of causing setup time violations. This kind of fault attack relies on the possibility of gracefully degrading the performance of the chip. It is however, unclear whether this kind of low cost attack is feasible in the case of low voltage design since a reduction of the voltage may result in a catastrophic failure of the device rather than an isolated setup violation. Furthermore, the effect that process variations may have on the fault model used by the attacker and consequently the success probability of the attack, are unknown.In this paper, we investigate these issues by evaluating the resistance to low cost fault injection attacks of chips implementing the AES cipher that were manufactured using a 65nm low power library and operate at subthreshold voltage. We show that it is possible to successfully breach the security of a custom implementation of the AES cipher. Our experiments have taken into account the expected process variations through testing of multiple samples of the chip. To the best of our knowledge, this work is the first attempt to explore the resistance against low cost fault injection attacks on devices that operate at subthreshold voltage and are very susceptible to process variations.

show abstract

“…The strong radiation directed at the silicon surface can cause the blanking of erasable EPROM and FLASH memory cells where constants needed for an algorithm execution are kept (e.g., the AES S-Boxes). Depending on the duration of the radiation process, the authors of [34] report a progressive blanking of all the memory cells as well as resetting the internal protection fuses of the microcontroller that was targeted. The authors also show that it is possible to selectively wipe out a part of the stored data in the memory by exposing only a part of the die to UV radiation.…”

Section: A Low Cost Fault Injection Techniquesmentioning

confidence: 99%

Fault Injection Attacks on Cryptographic Devices: Theory, Practice, and Countermeasures

et al. 2012

View full text Add to dashboard Cite

Abstract-Implementations of cryptographic algorithms continue to proliferate in consumer products due to the increasing demand for secure transmission of confidential information. Although the current standard cryptographic algorithms proved to withstand exhaustive attacks, their hardware and software implementations have exhibited vulnerabilities to side channel attacks, e.g., power analysis and fault injection attacks. This paper focuses on fault injection attacks that have been shown to require inexpensive equipment and a short amount of time. The paper provides a comprehensive description of these attacks on cryptographic devices and the countermeasures that have been developed against them.After a brief review of the widely used cryptographic algorithms, we classify the currently known fault injection attacks into low cost ones (which a single attacker with a modest budget can mount) and high cost ones (requiring highly skilled attackers with a large budget). We then list the attacks that have been developed for the important and commonly used ciphers and indicate which ones have been successfully used in practice. The known countermeasures against the previously described fault injection attacks are then presented, including intrusion detection and fault detection. We conclude the survey with a discussion on the interaction between fault injection attacks (and the corresponding countermeasures) and power analysis attacks.

show abstract

Optical Fault Attacks on AES: A Threat in Violet

Cited by 49 publications

References 11 publications

Thermal laser attack and high temperature heating on HfO<inf>2</inf>-based OxRAM cells

Thermal laser attack and high temperature heating on HfO<inf>2</inf>-based OxRAM cells

Exploring the Feasibility of Low Cost Fault Injection Attacks on Sub-threshold Devices through an Example of a 65nm AES Implementation

Fault Injection Attacks on Cryptographic Devices: Theory, Practice, and Countermeasures

Contact Info

Product

Resources

About