Hongying Liu,Yukiyasu Tsuoo,Yibo Fan,Bin Hu,Satoshi Goto

DOI: https://doi.org/10.2299/jsp.16.241

2012-01-01

Journal of Signal Processing

Abstract:Electromagnetic emissions leak confidential data of cryptographic devices. By exploiting such emissions, electromagnetic analysis (EMA) is performed with EM probes to extract secret information from these devices. Owing to the locality of EM emissions, namely, secret information may leak from multiple locations around cryptographic devices, it is difficult to determine the exact location before conducting an EMA. In this paper, signal variance of EM emissions during encryption is proposed to identify the information leakage of unprotected and protected cryptographic modules. We prove that signal variance is an equivalent metric to Difference of Means (DoM). Thus, by computing the higher signal variances based on near-field scan, the data-dependent EM emissions are disclosed, namely, the leakage locations are found. In addition, a small and low-cost probe is made to verify the proposed EMA on application-specific integrated circuit (ASIC) implementations. The experiment on AES PPRM1 implementation indicates that misjudgments of leakage are reduced, and the accuracy is improved 48.6% compared with existing methods. Moreover, the experiment of EMA against AES WDDL implementation shows that signal variance is also effective in exposing the leakage locations in the presence of countermeasures. The performance of EMA is enhanced.

Chenguang Wang,Qiang Zhou,Yici Cai,Haoyi Wang

DOI: https://doi.org/10.1145/3240765.3240804

2018-11-05

Abstract:Electromagnetic (EM) analysis is to reveal the secret information by analyzing the EM emission from a cryptographic device. EM analysis (EMA) attack is emerging as a serious threat to hardware security. It has been noted that the on-chip power grid (PG) has a security implication on EMA attack by affecting the fluctuations of supply current. However, there is little study on exploiting this intrinsic property as an active countermeasure against EMA. In this paper, we investigate the effect of PG on EM emission and propose an active countermeasure against EMA, i.e. EM Equalizer (EME). By adjusting the PG impedance, the current waveform can be flattened, equalizing the EM profile. Therefore, the correlation between secret data and EM emission is significantly reduced. As a first attempt to the co-optimization for power and EM security, we extend the EME method by fixing the vulnerability of power analysis. To verify the EME method, several cryptographic designs are implemented. The measurement to disclose (MTD) is improved by 1138x with area and power overheads of 0.62% and 1.36%, respectively.

Engineering,Computer Science

Hongying Liu,Xin Jin,Yukiyasu Tsunoo,Satoshi Goto

DOI: https://doi.org/10.1587/transfun.e96.a.185

2013-01-01

Abstract:Electromagnetic emissions leak confidential data of cryptographic devices. Electromagnetic Analysis (EMA) exploits such emission for cryptanalysis. The performance of EMA dramatically decreases when correlated noise, which is caused by the interference of clock network and exhibits strong correlation with encryption signal, is present in the acquired EM signal. In this paper, three techniques are proposed to reduce the correlated noise. Based on the observation that the clock signal has a high variance at the signal edges, the first technique: single-sample Singular Value Decomposition (SVD), extracts the clock signal with only one EM sample. The second technique: multi-sample SVD is capable of suppressing the clock signal with short sampling length. The third one: averaged subtraction is suitable for estimation of correlated noise when background samplings are included. Experiments on the EM signal during AES encryption on the FPGA and ASIC implementation demonstrate that the proposed techniques increase SNR as much as 22.94 dB, and the success rates of EMA show that the data-independent information is retained and the performance of EMA is improved.

Yan Long,Qinhong Jiang,Chen Yan,Tobias Alam,Xiaoyu Ji,Wenyuan Xu,Kevin Fu

DOI: https://doi.org/10.14722/ndss.2024.24552

2024-01-01

Abstract:IoT devices and other embedded systems are increasingly equipped with cameras that can sense critical information in private spaces.The data security of these cameras, however, has hardly been scrutinized from the hardware design perspective.Our paper presents the first attempt to analyze the attack surface of physical-channel eavesdropping on embedded cameras.We characterize EM Eye-a vulnerability in the digital image data transmission interface that allows adversaries to reconstruct high-quality image streams from the cameras' unintentional electromagnetic emissions, even from over 2 meters away in many cases.Our evaluations of 4 popular IoT camera development platforms and 12 commercial off-the-shelf devices with cameras show that EM Eye poses threats to a wide range of devices, from smartphones to dash cams and home security cameras.By exploiting this vulnerability, adversaries may be able to visually spy on private activities in an enclosed room from the other side of a wall.We provide root cause analysis and modeling that enable system defenders to identify and simulate mitigation against this vulnerability, such as improving embedded cameras' data transmission protocols with minimum costs.We further discuss EM Eye's relationship with known computer display eavesdropping attacks to reveal the gaps that need to be addressed to protect the data confidentiality of sensing systems.

Wenhai Zhou,Fan-tong Kong

DOI: https://doi.org/10.1109/ICCT46805.2019.8947185

2019-10-01

Abstract:Correlative electromagnetic side channel attack (CEMA) is a common and effective method in side channel attacks. However, a large amount of data acquisition and processing restricts the time of key cracking. This paper proposes a fast side channel attack method, which encrypts the selected plaintexts and filters the collected electromagnetic data on frequency domain, and then performs CEMA analysis. Finally, only 150 pieces of electromagnetic data are used to successfully crack all the keys of the advanced encryption standard (AES) cryptographic algorithm, and the cracking time is reduced to 1/50 of the traditional method.

Engineering,Computer Science

LIU Jie,LIU Ji-lin,YU Chun-he

DOI: https://doi.org/10.3321/j.issn:1008-9497.2005.06.014

2005-01-01

Abstract:As environmental noise employs great influence on the information reconstruction,the recovered images become illegible.In order to obtain fair images,software process is necessary.But extra synchronous generator which provides horizontal and vertical synchronous signal causes biased frequency so that the software process is unable to accomplish.The theory of horizontal synchronous information leakage is especially discussed and the methods of horizontal and vertical synchronous signal extraction are proposed.In addition,some software's approaches are introduced for eavesdropping compromising emanation signals.

Ruochen Zhou,Xiaoyu Ji,Chen Yan,Yi-Chao Chen,Wenyuan Xu,Chaohao Li

DOI: https://doi.org/10.1109/sp46215.2023.10179480

2024-01-01

ACM Transactions on Sensor Networks

Abstract:Unauthorized covert voice recording brings a remarkable threat to privacy-sensitive scenarios, such as confidential meetings and private conversations. Due to the miniaturization and disguise characteristics, hidden voice recorders are difficult to be noticed in their surroundings. In this paper, we present DeHiREC, the first proof-of-concept system that can detect offline hidden voice recorders from their electromagnetic radiations (EMR). We first characterize the unique patterns of the emanated EMR signals and then locate the EMR source, i.e., the analog-to-digital converter (ADC) module embedded in the mixed signal system-on-chips (MSoCs). Since these unintentional EMR signals can be extremely noisy and weak, accurately detecting them can be challenging. To address this challenge, we first design an EMR Catalyzing method to stimulate the EMR signals actively and then employ an adaptive-folding algorithm to improve the signal-to-noise ratio (SNR) of the sensed EMRs. Once the sensed EMR variation corresponds to our active stimulation, we can determine that there exists a hidden voice recorder. We evaluate the performance of DeHiREC on 13 commercial voice recorders under various impacts, including interference from other devices. Experimental results reveal that DeHiREC is effective in detecting all 13 voice recorders and achieves an overall success rate of 92.17% and a recall rate of 86.14% at a distance of 0.2 m.

Zhang Hong-xin,Liu Jia,Xu Jun,Zhang Fan,Cui Xiao-tong,Sun Shao-fei

DOI: https://doi.org/10.1186/s13638-020-01808-z

2020-01-01

EURASIP Journal on Wireless Communications and Networking

Abstract:The electromagnetic radiation of electronic equipment carries information and can cause information leakage, which poses a serious threat to the security system; especially the information leakage caused by encryption or other important equipment will have more serious consequences. In the past decade or so, the attack technology and means for the physical layer have developed rapidly. And system designers have no effective method for this situation to eliminate or defend against threats with an absolute level of security. In recent years, device identification has been developed and improved as a physical-level technology to improve the security of integrated circuit (IC)-based multifactor authentication systems. Device identification tasks (including device identification and verification) are accomplished by monitoring and exploiting the characteristics of the IC's unintentional electromagnetic radiation, without requiring any modification and process to hardware devices, thereby providing versatility and adapting existing hardware devices. Device identification based on deep residual networks and radio frequency is a technology applicable to the physical layer, which can improve the security of integrated circuit (IC)-based multifactor authentication systems. Device identification tasks (identification and verification) are accomplished by passively monitoring and utilizing the inherent properties of IC unintended RF transmissions without requiring any modifications to the analysis equipment. After the device performs a series of operations, the device is classified and identified using a deep residual neural network. The gradient descent method is used to adjust the network parameters, the batch training method is used to speed up the parameter tuning speed, the parameter regularization is used to improve the generalization, and finally, the Softmax classifier is used for classification. In the end, 28 chips of 4 models can be accurately identified into 4 categories, then the individual chips in each category can be identified, and finally 28 chips can be accurately identified, and the verification accuracy reached 100%. Therefore, the identification of radio frequency equipment based on deep residual network is very suitable as a countermeasure for implementing the device cloning technology and is expected to be related to various security issues.

Josef Danial,Debayan Das,Santosh Ghosh,Arijit Raychowdhury,Shreyas Sen

DOI: https://doi.org/10.1109/access.2020.3025022

IF: 3.9

2020-01-01

IEEE Access

Abstract:Electromagnetic (EM) side-channel analysis (SCA) is a prominent tool to break mathematically-secure cryptographic engines, especially on resource-constrained devices. Presently, to perform EM SCA on an embedded device, the entire chip is manually scanned and the MTD (Minimum Traces to Disclosure) analysis is performed at each point on the chip to reveal the secret key of the encryption algorithm. However, an automated end-to-end framework for EM leakage localization, trace acquisition, and attack has been missing. This work proposes SCNIFFER: a low-cost, automated EM Side Channel leakage SNIFFing platform to perform efficient end-to-end Side-Channel attacks. Using a leakage measure such as Test Vector Leakage Assessment (TVLA), or the signal to noise ratio (SNR), we propose a greedy gradient-search heuristic that converges to one of the points of highest EM leakage on the chip (dimension: $N times N$ ) within $O(N)$ iterations, and then perform Correlational EM Analysis (CEMA) at that point. This reduces the CEMA attack time by $sim N$ times compared to an exhaustive MTD analysis, and by $> 20times $ compared to choosing an attack location at random. We demonstrate SCNIFFER using a low-cost custom-built 3-D scanner with an H-field probe (<$500) compared to >$50, 000 commercial EM scanners, and a variety of microcontrollers as the devices under attack. The SCNIFFER framework is evaluated for several cryptographic algorithms (AES-128, DES, RSA) running on both an 8-bit Atmega microcontroller and a 32-bit ARM microcontroll-r to find a point of high leakage and then perform a CEMA at that point.

computer science, information systems,telecommunications,engineering, electrical & electronic

Han Gan,Hongxin Zhang,Muhammad Saad Khan,Xueli Wang,Fan Zhang,Pengfei He

DOI: https://doi.org/10.1109/cc.2017.8068768

2017-01-01

China Communications

Abstract:Correlation power analysis (CPA) has become a successful attack method about crypto-graphic hardware to recover the secret keys. However, the noise influence caused by the random process interrupts (RPIs) becomes an important factor of the power analysis attack efficiency, which will cost more traces or attack time. To address the issue, an improved method about empirical mode decomposition (EMD) was proposed. Instead of restructuring the decomposed signals of intrinsic mode functions (IMFs), we extract a certain intrinsic mode function (IMF) as new feature signal for CPA attack. Meantime, a new attack assessment is proposed to compare the attack effectiveness of different methods. The experiment shows that our method has more excellent performance on CPA than others. The first and the second IMF can be chosen as two optimal feature signals in CPA. In the new method, the signals of the first IMF increase peak visibility by 64% than those of the tradition EMD method in the situation of non-noise. On the condition of different noise interference, the orders of attack efficiencies are also same. With external noise interference, the attack effect of the first IMF based on noise with 15dB is the best.

Kun Gu,Liji Wu,Xiangyu Li,Xiangxin Zhang

DOI: https://doi.org/10.1109/cis.2011.149

2011-01-01

Abstract:Information security is very important for the smart cards. Electromagnetic analysis (EMA) attack is a common method of side channel attacks which is a serious threat for the security of smart cards. So it is necessary to build a system to estimate the ability of the smart card to resist EMA attack. In this paper, an automatic EMA system for smart cards is designed and implemented. This system can measuring the electromagnetic field of smart card and can also carry out EMA attack. To verify the effectiveness of this system, an EMA attack was successfully carried out by it on a FPGA which 3DES cryptographic algorithm was loaded and implemented. 3DES is widely used in bank IC card and USB key. It is important to make sure of the safety of these financial IC cards. The experimental results showed that the applicable electromagnetic field signal can be traced to estimate the ability of the security device to resist EMA attack.

Zhihui Zhu,Wei Liu,Xiangyu Li,Liji Wu,Xiangming Zhang

DOI: https://doi.org/10.1109/ICSICT.2012.6467633

2012-01-01

Abstract:An electromagnetic (EM) analysis and attacks system has been designed for cryptographic Radio Frequency Identification Devices (RFID). The system has the function of carrier removing in analog front-end with adaptive carrier obtain and EM shielding, finding the best acquisition position base on multiple feedback judgment, preprocessing and analysis with drift elimination and noise reduction. Analysis is performed on a practical 13.56M RFID, the Triple-DES (3DES) operation time is located with 1400 curves, and the key of 3DES is recovered with 14000 curves using preprocessing with drift elimination and noise reduction.

Xiang Gao,Yiqiang Zhao,Haocheng Ma

DOI: https://doi.org/10.3390/s18093034

IF: 3.9

2018-01-01

Sensors

Abstract:Information system security has been in the spotlight of individuals and governments in recent years. Integrated Circuits (ICs) function as the basic element of communication and information spreading, therefore they have become an important target for attackers. From this perspective, system-level protection to keep chips from being attacked is of vital importance. This paper proposes a novel method based on a fringing electric field (FEF) sensor to detect whether chips are dismantled from a printed circuit board (PCB) as system-level protection. The proposed method overcomes the shortcomings of existing techniques that can be only used in specific fields. After detecting a chip being dismantled from PCB, some protective measures like deleting key data can be implemented to be against attacking. Fringing electric field sensors are analyzed through simulation. By optimizing sensor’s patterns, areas and geometrical parameters, the methods that maximize sensitivity of fringing electric field sensors are put forward and illustrated. The simulation is also reproduced by an experiment to ensure that the method is feasible and reliable. The results of experiments are inspiring in that they prove that the sensor can work well for protection of chips and has the advantage of universal applicability, low cost and high reliability.

Baicheng Chen,Zhengxiong Li,Zhuolin Yang,Changzhi Li,Feng Lin,Wenyao Xu

DOI: https://doi.org/10.1145/3356250.3361932

2019-01-01

Abstract:Hidden electronics possess the risk of both security threat and privacy intrusion. We present a wireless hidden electronic recognition system, through electronic components unique mmWave nonlinear responses to identify the threats. We then evaluate E-Eye's performance and robustness with a controlled experiment and a field study using iconic devices and score the system with metrics. Results prove that E-Eye is an accurate and robust hidden electronic recognition system.

Wl Yuan,Ep Li

DOI: https://doi.org/10.1109/ISEMC.2004.1350005

2004-01-01

Abstract:With the advance in high-speed electronics and the presence of new standard on electromagnetic susceptibility, EMS analysis and evaluation is becoming increasingly important. This paper investigates EMS of shielded electronic equipments in a device level by using full-wave numerical technique combined with the circuit-based method. The method of moment in terms of the mixed-potential electric field integral equation for the geometries of arbitrary combined wire/surface is developed for susceptibility evaluation. With numerical analysis, the effect of external EM noise on electronic equipment is characterized and an equivalent secondary source model is extracted for further EMS analysis of internal high-speed susceptible circuit in a lower board level.

Cheng Shen,Tian Liu,Jun Huang,Rui Tan

DOI: https://doi.org/10.1109/SP40001.2021.00031

2021-01-01

Abstract:Due to the low power of electromagnetic radiation (EMR), EM convert channel has been widely considered as a short-range attack that can be easily mitigated by shielding. This paper overturns this common belief by demonstrating how covert EM signals leaked from typical laptops, desktops and servers are decoded from hundreds of meters away, or penetrate aggressive shield previously considered as suf...

Fangfang Yang,Mohammad A. Islam,Fan Wu,Shaolei Ren

DOI: https://doi.org/10.1109/CNS53000.2021.9705032

2021-01-01

Abstract:Secure communication between wireless devices has become an important issue for mobile devices. To achieve this, many efforts have been devoted to leveraging random ambient signals to generate a shared secret key between participating devices. However, the existing methods often suffer from limited authentication distance (e.g., less than 4cm for WiFi-based secret key generation). In this paper, we propose a novel secret key generation method, called CompKey, which allows wireless devices in the proximity of a computer to securely associate with each another by exploiting electromagnetic radiation (EMR) emitted from the computer. Unlike the existing approaches that often rely on ambient signals' amplitudes, CompKey extracts the EMR's frequency information, which fluctuates randomly with time, as a secret source. We design a difference-based encoding method, which preserves randomness of the frequency and avoids many consecutive zeros and ones in the generated key. We show via experiment evaluation that participating devices can reliably achieve around 10 bits/s bit generation rate and 100% key matching rate when they are located within 50cm away from the source computer. Moreover, the experiment results with the presence of attackers demonstrate that our method is robust against eavesdroppers and strong copy attackers who can imitate the key generation process.

丁国良,李志祥,尹文龙,赵强

DOI: https://doi.org/10.3724/sp.j.1087.2009.02200

2009-01-01

Abstract:To study the vulnerability of Advanced Encryption Standard (AES) against electromagnetic side channel attacks, the article analyzed the electromagnetic information leakage model of microcomputer and the choice of D function. Then, concerning the AES-128 bits cryptographic system realized by the 89C51 microchip, Differential Electromagnetic Analysis (DEMA) algorithm, which was used into an attack experiment and succeeded in obtaining 128 bits secret key of AES-128, was described. After analyzing the experimental results, the leakage of secret information produced by ByteSub transformation was detected. This method can be regarded as a new protective measure in cryptographic systems.

Saleh Khalaj Monfared,Tahoura Mosavirik,Shahin Tajik

DOI: https://doi.org/10.48550/arXiv.2310.07014

2023-05-08

Cryptography and Security

Abstract:The threat of physical side-channel attacks and their countermeasures is a widely researched field. Most physical side-channel attacks rely on the unavoidable influence of computation or storage on voltage or current fluctuations. Such data-dependent influence can be exploited by, for instance, power or electromagnetic analysis. In this work, we introduce a novel non-invasive physical side-channel attack, which exploits the data-dependent changes in the impedance of the chip. Our attack relies on the fact that the temporarily stored contents in registers alter the physical characteristics of the circuit, which results in changes in the die's impedance. To sense such impedance variations, we deploy a well-known RF/microwave method called scattering parameter analysis, in which we inject sine wave signals with high frequencies into the system's power distribution network (PDN) and measure the echo of the signals. We demonstrate that according to the content bits and physical location of a register, the reflected signal is modulated differently at various frequency points enabling the simultaneous and independent probing of individual registers. Such side-channel leakage violates the $t$-probing security model assumption used in masking, which is a prominent side-channel countermeasure. To validate our claims, we mount non-profiled and profiled impedance analysis attacks on hardware implementations of unprotected and high-order masked AES. We show that in the case of profiled attack, only a single trace is required to recover the secret key. Finally, we discuss how a specific class of hiding countermeasures might be effective against impedance leakage.

Martin Hell,Oskar Westman

DOI: https://doi.org/10.37936/ecti-cit.2020142.239925

2020-06-03

Abstract:Side-channel attacks on cryptographic algorithms targets the implementation of the algorithm. Information can leak from the implementation in several different ways and, in this paper, electromagnetic radiation from an FPGA is considered. We examine to which extent key information from an AES implementation can be deduced using a low-end oscilloscope. Moreover, we examine how the antenna's distance from the FPGA affects the results in this setting. Our experiments show that some key bits indeed can be inferred from the measurements, despite having a far from optimal setting.