Power analysis of the t-private logic style for FPGAs

Goddard, Zachary N.; LaJeunesse, Nicholas; Eisenbarth, Thomas

doi:10.1109/hst.2015.7140239

Cited by 9 publications

(6 citation statements)

References 8 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…They stated that glitches contributed significant power consumption and showed how such glitches weaken the security of private circuits. Later, in [ 10 ], Zachary et al. showed a practical power analysis attack using correlation enhanced collision attack.…”

Section: Introductionmentioning

confidence: 99%

An Evaluation of Power Side-Channel Resistance for RNS Secure Logic

Selvam

Tyagi

2022

Sensors

View full text Add to dashboard Cite

In this paper, residue number system (RNS) based logic is proposed as a protection against power side-channel attacks. Every input to RNS logic is encrypted as a share of the original input in the residue domain through modulus values. Most existing countermeasures enhance side-channel privacy by making the power trace statistically indistinguishable. The proposed RNS logic provides cryptographic privacy that also offers side-channel resistance. It also offers side-channel privacy by mapping different input bit values into similar bit encodings for the shares. This property is also captured as a symmetry measure in the paper. This side-channel resistance of the RNS secure logic is evaluated analytically and empirically. An analytical metric is developed to capture the conditional probability of the input bit state given the residue state visible to the adversary, but derived from hidden cryptographic secrets. The transition probability, normalized variance, and Kullback–Leibler (KL) divergence serve as side-channel metrics. The results show that our RNS secure logic provides better resistance against high-order side-channel attacks both in terms of power distribution uniformity and success rates of machine learning (ML)-based power side-channel attacks. We performed SPICE simulations on Montgomery modular multiplication and Arithmetic-style modular multiplication using the FreePDK 45 nm Technology library. The simulation results show that the side-channel security metrics using KL divergence are 0.0204 for Montgomery and 0.0020 for the Arithmetic-style implementation. This means that Arithmetic-style implementation has better side-channel resistance than the Montgomery implementation. In addition, we evaluated the security of the AES encryption with RNS secure logic on a Spartan-6 FPGA Board. Experimental results show that the protected AES circuit offers 79% higher resistance compared to the unprotected AES circuit.

show abstract

Section: Introductionmentioning

confidence: 99%

An Evaluation of Power Side-Channel Resistance for RNS Secure Logic

Selvam

Tyagi

2022

Sensors

View full text Add to dashboard Cite

show abstract

“…The resulting implementations were later shown to have security flaws [28]. At ICCD 2015, Roy et al [29], pointed out the reasons for the existent side-channel leakage.…”

Section: Introductionmentioning

confidence: 99%

More Efficient Private Circuits II through Threshold Implementations

Cnudde

Nikova

2016

2016 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC)

View full text Add to dashboard Cite

Abstract-Since the introduction of Private Circuits at CRYPTO 2003, several works have attempted its implementation in hardware. Only very recently was an implementation of this masking scheme shown to survive state-of-the-art leakage detection tests. The overhead introduced to achieve the provable security was significant. Similarly, the implementational aspect of Private Circuits II, the tamper-resistant extension of Private Circuits presented at EUROCRYPT 2006, was only recently presented at RECONFIG 2015. It however relied on a combinational PC-I implementation, which is susceptible to both glitches and early evaluation.In this work, we evaluate a recently proposed Private Circuits implementation and its corresponding Threshold Implementation side by side and give a full comparison in an equal and fair setting. In succession, we take the smallest resulting masking scheme as basis for a new approach towards a secure PC-II implementation. In addition to quantifying the resource overhead of PC-II, our work provides detailed instructions on how to achieve PC-II in FPGAs.

show abstract

“…By practical evaluation, we mean any standard cipher, implemented by private circuit and tested against SCA, which is the focal point of the present paper. In a recent work [13], t-private implementation of PRESENT with t = 1 was tested. Authors analyze a straightforward implementation of t-private PRESENT to fail against against CPA and correlation-enhanced collison attacks.…”

Section: Introductionmentioning

confidence: 99%

“…Authors analyze a straightforward implementation of t-private PRESENT to fail against against CPA and correlation-enhanced collison attacks. Although the practical analysis presented in [13] is detailled, authors fail to explain the phenomena which causes side-channel leakage. The countermeasure, proposed in [1] is based on sound theoretical proof but with some inherent assumptions which may not be valid in practical scenario.…”

Section: Introductionmentioning

confidence: 99%

From theory to practice of private circuit: A cautionary note

Roy¹,

Bhasin²,

Guilley³

et al. 2015

2015 33rd IEEE International Conference on Computer Design (ICCD)

View full text Add to dashboard Cite

Private circuits, from their publication, have been really popular among the researchers. They also form the basis for provable masking schemes. There are several works which try to improve the results of bit-level private circuits based on 2-input gates for the combinational logic. However, strangely, no practical side-channel analysis of private circuits has been presented so far, which is the focus of the present paper. In this paper, we have tried to identify the 'ambush' or hidden dangers in the implementation of private circuits, which can compromise its security in practical scenarios. We have implemented block cipher SIMON with private circuit and have performed sidechannel analysis on it. The result shows that, in practice, there is significant amount of information leakage which can be exploited by adversaries. Some leakage comes from practical optimization applied by standard CAD tools, if they restructure the netlists. But even with immutable netlists, we identify leakage caused by a kind of glitch known as early evaluation. Lastly, we demonstrate how to translate theoretically secure private circuit to practically secure private circuit with added overhead, by clocking every combinational gate. Leakage detection tests are applied to attest the security of considered variants of private circuits.

show abstract

Power analysis of the t-private logic style for FPGAs

Cited by 9 publications

References 8 publications

An Evaluation of Power Side-Channel Resistance for RNS Secure Logic

An Evaluation of Power Side-Channel Resistance for RNS Secure Logic

More Efficient Private Circuits II through Threshold Implementations

From theory to practice of private circuit: A cautionary note

Contact Info

Product

Resources

About