Yan Ting Ren,Li Ji Wu

DOI: https://doi.org/10.4028/www.scientific.net/amr.718-720.2376

2013-01-01

Advanced Materials Research

Abstract:In order to test the security of cryptographic devices against Side Channel Attacks (SCA), an automatic general-purpose power analysis system (TH-PAS-01) is designed and implemented. TH-PAS-01 is scalable and can be applied to many cryptographic devices when specific modules are installed. Using the system TH-PAS-01, correlation power analysis (CPA) are carried out on an AES chip under two working models: normal and shuffling mode. The security level of the countermeasure provided by the target chip is verified by TH-PAS-01. The experimental results show that the correct key of the AES chip is obtained with around 50,000 power traces when the chip was working under normal mode, while the whole key bits are not obtained with 960,000 power traces when the chip works under shuffling mode. The automatic general-purpose system TH-PAS-01 is feasible for security analysis on power analysis for cryptographic devices.

Cong Chen,Xiangyu Li,Liji Wu,Xiangmin Zhang

DOI: https://doi.org/10.1109/ICSICT.2010.5667831

2010-01-01

Abstract:In this paper, an automatic general-purpose Differential Power Analysis (DPA) System for cryptographic devices is designed and implemented. This system aims at testing the security of cryptographic devices, e.g., Smart Card, FPGA and ASIC circuit against DPA attacks. To verify the effectiveness of the system, a DPA attack was successfully carried out by it on an AES cryptographic ASIC chip which had countermeasures implemented in it. The experimental results showed that the correct cipher key of this AES chip could be obtained during less than 3 hours of data processing time with at least 5000 power traces.

Yuanman Tong,Zhiying Wang,Kui Dai,Hongyi Lu

2008-01-01

Abstract:To validate the resistibility to power analysis attacks for different countermeasures, this paper presented the method which can find the feasible power analysis attacks in various implementations of cryptographic algorithms. The presented method includes three parts, the basic theory for identifying the feasible attacks, the enhanced data dependence graph which used to describe the implementation of a cryptographic algorithm, and the algorithm for identifying different kinds of power analysis attacks. A typical countermeasure of AES based on random masking is used to illustrate how to identify the feasible attacks. By Combining with the quantitative analysis of the resistibility to power analysis attacks for a cryptographic device, the design flow of power analysis attacks resistant cryptographic device can be established.

LIU Zheng-lin,HAN Yu,ZOU Xue-cheng,CHEN Yi-cheng

DOI: https://doi.org/10.3969/j.issn.1007-130x.2008.03.006

2008-01-01

Abstract:The power consumption of a digital circuit implemented in the CMOS technology depends on the data that the circuit is processing. Power analysis attacks based on the fact pose a serious threat to cryptographic devices for extracting secret data. In this paper, we discuss the vulnerability of AES hardware implementations, and present the hypothetical circuit model. We also assess the susceptibility to differential power analysis (DPA) and correlation power analysis (CPA) attacks using different statistical methods in theoretical estimation. Furthermore, we give some possible hardware countermeasures against PA attacks.

Hasindu Gamaarachchi,Harsha Ganegoda

DOI: https://doi.org/10.48550/arXiv.1801.00932

2018-01-03

Abstract:Power analysis is a branch of side channel attacks where power consumption data is used as the side channel to attack the system. First using a device like an oscilloscope power traces are collected when the cryptographic device is doing the cryptographic operation. Then those traces are statistically analysed using methods such as Correlation Power Analysis (CPA) to derive the secret key of the system. Being possible to break Advanced Encryption Standard (AES) in few minutes, power analysis attacks have become a serious security issue for cryptographic devices such as smart card. As the first phase of our project, we build a testbed for doing research on power analysis attacks. As power analysis is a practical type of attack in order to do any research, a testbed is the first requirement. Since building a test bed is a complicated process, having a pre-built testbed would save the time of future researchers. The second phase of our project is to attack the latest cryptographic algorithm called Speck which has been released by National Security Agency (NSA) for use in embedded systems. In spite it has lot of differences to AES making impossible to directly use the power analysis approach used for AES, we introduce novel approaches to break Speck in less than an hour. In the third phase of the project, we select few already introduced countermeasures and practically attack them on our testbed to do a comparative analysis. We show that software countermeasures such as random instruction injection and randomly shuffling S-boxes are good enough for their simplicity and cost. But we identify the possible threat due to the problem of generating a good seed for the pseudo-random algorithm running on the microcontroller. We attempt to address this issue by using a hardware-based true random generator that amplifies a random electrical signal and samples to generate a proper seed.

Cryptography and Security

HAN Yu,ZOU Xue-cheng,LIU Zheng-lin,CHEN Yi-cheng

DOI: https://doi.org/10.3969/j.issn.1000-7180.2007.12.013

2007-01-01

Abstract:Firstly a Hamming power model is used for modeling the power consumption of the hardware implementation of AES in this paper.Then we perform a power analysis attack based on bit transitions of registers against the behavior of the algorithm.Furthermore,a sound attack is executed with the power traces recorded by simulating the power consumption of the hardware implementation at gate level.

Wei Sun,Jun-Rong Liu,Da-Wu Gu,Zheng Guo,Jun Xie,Bo Ma

2015-01-01

Abstract:Nowadays, cryptographic circuits have been widely used in many fields such as finance, transportation and government business. Such devices have software and hardware implementations, as they both have certain weakness and constraints. In this paper, we research on both software and hardware cryptographic circuits based on the side channel technology. By using different power leakage models, we can point out the weakness operations of a cryptographic circuit that leaks secret information. Furthermore, we research on the differences between software and hardware implementations of SM3-HMAC, and propose power analysis methods respectively.

Xiaowei Han,Beibei Wang,An Wang,Liji Wu,Woogeun Rhee

DOI: https://doi.org/10.1109/CIS.2014.116

2014-01-01

Abstract:SM2 is a public-key cryptography algorithm which is based on elliptic curves. Since the side channel leakage of devices can be used to deduce the information of secret keys, algorithms to implement SM2 need to be improved. In this paper, we propose an initialized masking scalar multiplication algorithm (IMSM), a modified atomic point doubling and point addition algorithm (MADA), and a transformed formula countermeasure (TFCS). Analysis shows they can resist Simple Power Analysis (SPA), Differential Power Analysis and Template Attacks. IMSM and MADA have been verified to resist SPA on FPGA board successfully. Compared to Binary Expansion with RIP algorithm, 28.6% calculations can be saved when the scalar is divided into four parts, which is rather fast.

ZHANG Jing-jing,LI Ren-fa,LI Lang,ZENG Qing-guang

DOI: https://doi.org/10.3778/j.issn.1002-8331.2010.33.022

2010-01-01

Computer Engineering and Applications Journal

Abstract:Based on the principle of power leakage of CMOS chips,a simple and efficient power consumption model is presented,and a power analysis attack scheme for DES encryption algorithm is devised,and then the 48-subkey of DES encryption algorithm is cracked on this self-developed power analysis simulator.The result shows that DES encrypted systems without any extra protective measures have potential security problems.The simulator provides a simple,intuitionistic,fast and effective evaluation platform for the research of power analysis methods and anti-power analysis.Finally,the possible anti-power methods are analyzed.

YAO Jian-bo,ZHANG Tao

DOI: https://doi.org/10.3969/j.issn.1000-7024.2012.06.021

2012-01-01

Abstract:In view to the characteristic of side channel attacks needs corresponding side channel simulation tools support,a side channel attacks simulation environment design is presented and implementation technology about the simulation platform is analyzed in detail.The platform will separate the simulation realization and analysis realization of side channel leak,using the component technology on the package,with strong flexibility.The different side channel information leakage and attack strategy in the form of components is added to the platform,make the testers can according to the test needs to choose flexible test data and analysis strategy.In case analysis,by group length of 64 bit DES cryptographic algorithm for test object,are given respectively under the environment of the real measure of the power consumption of the curve and using simulation platform are power curve.

李浪,李静,李仁发,吴克寿

DOI: https://doi.org/10.3969/j.issn.1002-137x.2010.06.017

2010-01-01

Computer Science

Abstract:Power analysis attack has become a great threat to encryption chips.Attacks and defense of power analysis have become the research hotspot.However,experimental platform of power analysis is more difficult to build for researchers.AES encryption algorithm was used to build a high-performance FPGA-based physical experiment platform for power analysis as an example.The process of establishing the physical experimental platform was described in detail.The platform is relatively simple,fast test speed,flexibility.It will be convenient to verified for the encryption algorithm of the power.The efficient power analysis model was proposed.It can improve the exprimental speed in the differen-tial statistics.

李元,刘政林,邹雪城,韩煜,陈毅成

IF: 1.992

2008-01-01

Microelectronics Journal

Abstract:An Atmel AT89C55 microcontroller was used to construct a real attack platform of cipher circuits.Power analyses against opcode and operand were conducted on this low-cost platform.Measured results showed that there existed a linear relationship between hamming weight of changing operand and difference of measuring power.Unit hamming weight would cause approximately 5 mV of power deviation under experimental conditions.Using differential power analysis (DPA)and correlation power analysis (CPA), the encrypted operation of advanced encryption standard (AES)was attacked.Experimental results showed that the CPA method had a higher success rate, and the1 number of plaintext samples and average filtering could significantly affect SNR of correlation coefficients.

Jianwei Yang,Fan Dai,Jielin Wang,Jianmin Zeng,Zhang,Jun Han,Xiaoyang Zeng

DOI: https://doi.org/10.1587/elex.15.20180084

2018-01-01

IEICE Electronics Express

Abstract:Power analysis attacks are major concerns among all kinds of side channel attacks. This paper proposes three kinds of countermeasures for Differential Power Analysis (DPA) attacks by fully exploiting characteristics of a many-core processor: (1) Data-level parallelism, (2) Random Dynamic Task Scheduling (RDTS), and (3) Random Dynamic Adjustment (RDA), which combines RDTS, Random Dynamic Frequency Scaling (RDFS) and Random Dynamic Phase Adjustment (RDPA). For the first time these techniques are applied to a multicore processor from the perspective of secure system design. AES algorithm with mentioned countermeasures is implemented on an 8-core processor. Simulation results show that these countermeasures considerably improve the system security with little performance overhead.

Shengqi Yang,Pallav Gupta,Marilyn Wolf,Dimitrios Serpanos,Vijaykrishnan Narayanan,Yuan Xie

DOI: https://doi.org/10.1145/2345770.2345774

2012-01-01

ACM Transactions on Embedded Computing Systems

Abstract:This article proposes a novel approach to cryptosystem design to prevent power analysis attacks. Such attacks infer program behavior by continuously monitoring the power supply current going into the processor core. They form an important class of security attacks. Our approach is based on dynamic voltage and frequency scaling (DVFS), which hides processor state to make it harder for an attacker to gain access to a secure system. Three designs are studied to test the efficacy of the DVFS method against power analysis attacks. The advanced realization of our cryptosystem is presented which achieves enough high power and time trace entropies to block various kinds of power analysis attacks in the DES algorithm. We observed 27% energy reduction and 16% time overhead in these algorithms. Finally, DVFS hardness analysis is presented.

Xiaomin Cai,Renfa Li,Shijie Kuang,Jinhui Tan

DOI: https://doi.org/10.1109/access.2020.2993701

IF: 3.9

2020-01-01

IEEE Access

Abstract:Differential power analysis attacks are the most commonly used means to break cryptographic devices within the side-channel attack technology. Since there is a lot of noise in the energy trace of cryptographic devices, a large number of energy traces are needed to carry out the attack, resulting in a high computational cost. To solve this problem, this study starts with an analysis of the characteristics of power waveform formation from the inherent properties of the complementary metal oxide semiconductor circuit. Then, based on the Hamming distance classification method and the results of power waveform analysis, the useful information interval in the energy trace is located, that is, the interval with a strong correlation with the key. Thus, we achieve energy trace compression. Finally, a system on chip with a 128-bit AES algorithm is used to conduct various attack experiments in the effective interval. The results show that the calculation is cut off by 96%, which greatly reduces the computational cost for differential power analysis attacks.

LI Lang,LI Ken-li,JIAO Ge,WANG Yu-qi,ZOU Yi

DOI: https://doi.org/10.3969/j.issn.1001-3695.2012.07.076

2012-01-01

Abstract:Power analysis attack has become a great threat to encryption chips.Attacks and defense of power analysis have become the research hotspot.However,experimental platform of power analysis is more difficult to build for researchers.This paper used DES encryption algorithm to build a high-performance AT89C51-based physical experiment platform for power analysis as an example,and described the process of establishing the physical experimental platform in detail.The platform is relatively simple,fast test speed,flexibility.It will be convenient to verified for the encryption algorithm of the power analysis attacks.

Liu Lifei,Cui Xiaole,Ran Yalin,Cui Xiaoxin

DOI: https://doi.org/10.1109/ASICON.2015.7517206

2015-01-01

Abstract:Elliptic Curve Cryptosystem (ECC) is one of the most advantageous cryptosystems because of the shortened number of key bits when compared with RSA at the same security level. However, just as the other cryptosystems, ECC hardware is vulnerable to the side-channel analysis attacks which have been proposed. Power Analysis Attack (PA), as one of the most popular side-channel analysis attacks, is implemented easily, so more and more works concentrate on it. This work proposes a countermeasure to resist against Power Analysis. Then we design a unified hardware architecture which is multi-purpose and implementation to verify the effectiveness of the proposed method. The experiment results of FPGA verification platform show that the protected hardware can defend DPA with up to 105 measured power traces.

Yidong Yuan,Qi Chen,Xuesong Yan,Lei Li,Liang Liu,Yiqiang Zhao

DOI: https://doi.org/10.1117/12.2642112

2022-01-01

Abstract:Side-channel attacks (SCAs) have become one of the main threats to encryption devices due to their low cost, short time, and strong attack capability. CPU is the core of encryption devices. Thus the resistance to SCAs of the CPU is essential for protecting encrypted information. Based on the register-transfer level (RTL) net-list simulation and CPA method, this paper carries out SCAs on the CPU running the AES-128 algorithm. A protection scheme based on random power consumption disturbance strategy is proposed. It uses register configuration to send random pseudo operation insertion requests to some idle modules inside the CPU at a certain frequency, thereby reducing the correlation between the power consumption and encrypted data. This paper innovatively analyses the effects of the number of randomly flipped modules and the insertion frequency of random pseudo operation on the CPU's resistance to SCAs. According to experimental results, when the CPU is not protected, only 30 power traces are able to reveal the correct key. The required trace number increases when the random power consumption disturbance strategy is applied. The anti-attack performance of the CPU is proportional to the number of randomly flipped idle modules, and approximately inversely proportional to the power consumption signal-to-noise ratio (SNR). Particularly, when all idle modules randomly flip at a frequency of 25%, the CPU’s anti-attack performance has been improved by 3700 times. The proposed protection scheme is simple, easy to implement and highly flexible, by taking the safety performance, power consumption, area and other factors into consideration.

Lihui Wang,Qing Li,Zhimin Zhang,Weijun Shan,David Wei Zhang

DOI: https://doi.org/10.2991/iset-15.2015.29

2015-01-01

Abstract:Elliptic Curve Cryptography (ECC) is becoming widely deployed in embedded cryptographic devices. However, simple power analysis (SPA) attacks may retrieve secret keys by exploiting the power consumption of ECC devices. To resist the SPA attack there appear a number of countermeasures and the most widely used methods are Montgomery ladder and double-and-add-always algorithm. This paper proposes a refined simple power analysis attack to these countermeasures. Experimental results on smart cards demonstrate that this attack method can retrieve secret keys by distinguishing the power consumption of different jump instructions if the implementation of ECC's countermeasure is not carefully designed. The experiments also demonstrate that the proposed countermeasure in this paper can resist this kind of SPA attack

Qingsheng Hu,Xiangning Fan,Qiaowei Zhang

DOI: https://doi.org/10.1109/cyberc.2019.00019

2019-01-01

Abstract:In order to improve the efficiency of side-channel attack and reduce attack costs, an effective differential power analysis (DPA) method for advanced encryption standard (AES) is presented. By building the power acquisition platform based on current main stream EDA tools, a lot of power consumption traces can be achieved with ease. In addition, a critical distinguishing function is investigated so as to the key recovering can be more efficient and practical. Finally, two attacking experiments using our analytical method for AES are performed based on the developed DPA platform. Simulation results show that the key of the AES can be cracked correctly illustrating our analytical method has high effectiveness.