Weijia Wang,Yu Yu,François-Xavier Standaert,Dawu Gu,Sen Xu,Chi Zhang

DOI: https://doi.org/10.1007/978-3-319-52153-4_20

2017-01-01

Abstract:Profiled DPA is an important and powerful type of side-channel attacks (SCAs). Thanks to its profiling phase that learns the leakage features from a controlled device, profiled DPA outperforms many other types of SCA and are widely used in the security evaluation of cryptographic devices. Typical profiling methods (such as linear regression based ones) suffer from the overfitting issue which is often neglected in previous works, i.e., the model characterizes details that are specific to the dataset used to build it (and not the distribution we want to capture). In this paper, we propose a novel profiling method based on ridge regression and investigate its generalization ability (to mitigate the overfitting issue) theoretically and by experiments. Further, based on cross-validation, we present a parameter optimization method that finds out the most suitable parameter for our ridge-based profiling. Finally, the simulation-based and practical experiments show that ridge-based profiling not only outperforms 'classical' and linear regression-based ones (especially for nonlinear leakage functions), but also is a good candidate for the robust profiling.

谢满德,沈海斌,竺红卫

DOI: https://doi.org/10.3969/j.issn.1004-3365.2004.06.003

2004-01-01

Abstract:The fundamental principle of differential power analysis (DPA) attacks against universal cryptosystems and a particular theory of DPA attacks against data encryption standard (DES) algorithm are described in detail. An improved algorithm is proposed for DPA. Based on the analysis of noise characteristics of the power signals, an approach to modeling the signal-to-noise ratio (SNR) is proposed and corresponding theory is demonstrated. Finally, experimental results of the algorithm are presented.

Xiaonian Wu,Nian Tong,Ruanlian Zhang,Yongzhuang Wei

DOI: https://doi.org/10.1109/dsc55868.2022.00043

2022-01-01

Abstract:Comparing the common methods in side channel analysis such as correlation power analysis (CPA), the non-profiled power analysis based on machine learning achieves better attack effect, which increases the analysis accuracy rates by constructing and training a power leakage model. In order to construct an assumption of power leakage model which fits better with the measured power traces, a non-profiled power analysis method - based on mean-ridge regression - was proposed. It constructed the initial dynamic power leakage model by using the measured power consumption for the purpose of calculating the optimal ridge parameters and optimal weight coefficients of ridge regression. Then, the initial dynamic power leakage model was averaged to construct a power leakage model according to mean-ridge regression, which reduced the model overhead and the noise impaction. Finally, the key recovery process for the PRSENT algorithm was achieved by calculating the relationship between the model and the measured power consumption. The experimental results show that: compared with correlation power analysis and the existing method based on ridge regression, the power analysis based on mean-ridge regression expands the correlation coefficients between the model and the measured power traces, increases the attack accuracy, and reduces the number of power traces used for key recovery.

Cong Chen,Xiangyu Li,Liji Wu,Xiangmin Zhang

DOI: https://doi.org/10.1109/ICSICT.2010.5667831

2010-01-01

Abstract:In this paper, an automatic general-purpose Differential Power Analysis (DPA) System for cryptographic devices is designed and implemented. This system aims at testing the security of cryptographic devices, e.g., Smart Card, FPGA and ASIC circuit against DPA attacks. To verify the effectiveness of the system, a DPA attack was successfully carried out by it on an AES cryptographic ASIC chip which had countermeasures implemented in it. The experimental results showed that the correct cipher key of this AES chip could be obtained during less than 3 hours of data processing time with at least 5000 power traces.

Jianwei Yang,Fan Dai,Jielin Wang,Jianmin Zeng,Zhang,Jun Han,Xiaoyang Zeng

DOI: https://doi.org/10.1587/elex.15.20180084

2018-01-01

IEICE Electronics Express

Abstract:Power analysis attacks are major concerns among all kinds of side channel attacks. This paper proposes three kinds of countermeasures for Differential Power Analysis (DPA) attacks by fully exploiting characteristics of a many-core processor: (1) Data-level parallelism, (2) Random Dynamic Task Scheduling (RDTS), and (3) Random Dynamic Adjustment (RDA), which combines RDTS, Random Dynamic Frequency Scaling (RDFS) and Random Dynamic Phase Adjustment (RDPA). For the first time these techniques are applied to a multicore processor from the perspective of secure system design. AES algorithm with mentioned countermeasures is implemented on an 8-core processor. Simulation results show that these countermeasures considerably improve the system security with little performance overhead.

Shenghua Chen,Wei Ge,Jinjiang Yang,Bo Liu,Jun Yang

DOI: https://doi.org/10.1109/trustcom/bigdatase.2018.00206

2018-01-01

Abstract:Side-channel Attack, such as simple power analysis and differential power analysis (DPA), is an efficient method to gather the key, which challenges the security of crypto chips. Side-channel Attack logs the power trace of the crypto chip and speculate the key by statistical analysis. To reduce the threat of power analysis attack, an innovative method based on random execution is proposed in this paper. In order to enhance ability against DPA, the method disorders the correspondence between power trace and operands by scrambling the data execution sequence randomly and dynamically. Experiments and verification are done on the Sakura-G FPGA platform. The results show that the key is not reveal after even 1 million power traces by adopting proposed method and only 1.12% slices overhead is introduced. Compared to unprotected chip, it increases more than 140× measure to disclosure.

Han Gan,Hongxin Zhang,Muhammad Saad Khan,Xueli Wang,Fan Zhang,Pengfei He

DOI: https://doi.org/10.1109/cc.2017.8068768

2017-01-01

China Communications

Abstract:Correlation power analysis (CPA) has become a successful attack method about crypto-graphic hardware to recover the secret keys. However, the noise influence caused by the random process interrupts (RPIs) becomes an important factor of the power analysis attack efficiency, which will cost more traces or attack time. To address the issue, an improved method about empirical mode decomposition (EMD) was proposed. Instead of restructuring the decomposed signals of intrinsic mode functions (IMFs), we extract a certain intrinsic mode function (IMF) as new feature signal for CPA attack. Meantime, a new attack assessment is proposed to compare the attack effectiveness of different methods. The experiment shows that our method has more excellent performance on CPA than others. The first and the second IMF can be chosen as two optimal feature signals in CPA. In the new method, the signals of the first IMF increase peak visibility by 64% than those of the tradition EMD method in the situation of non-noise. On the condition of different noise interference, the orders of attack efficiencies are also same. With external noise interference, the attack effect of the first IMF based on noise with 15dB is the best.

王晨旭,张凯峰,喻明艳,王进祥

DOI: https://doi.org/10.3778/j.issn.1002-8331.1207-0302

2013-01-01

Abstract:Differential Power Analysis(DPA), a technology of non-invasive side-channel attack, has posed a serious threat for the safety of cipher integrated circuits. In order to evaluate the effectiveness of power analysis attack countermeasure conveniently, following the gate-level power analysis method, a Correlation Power Analysis(CPA)research platform based on PrimeTime PX and MATLAB is built. The auxiliary platform has a strong universality, and only by reworking cipher-specific power model, the algorithm level countermeasures for different ciphers can be evaluated easily. As an application, standard AES algorithm and the improved AES algorithm with threshold countermeasure method is attacked, showing the platform effectiveness.

Qingsheng Hu,Xiangning Fan,Qiaowei Zhang

DOI: https://doi.org/10.1109/cyberc.2019.00019

2019-01-01

Abstract:In order to improve the efficiency of side-channel attack and reduce attack costs, an effective differential power analysis (DPA) method for advanced encryption standard (AES) is presented. By building the power acquisition platform based on current main stream EDA tools, a lot of power consumption traces can be achieved with ease. In addition, a critical distinguishing function is investigated so as to the key recovering can be more efficient and practical. Finally, two attacking experiments using our analytical method for AES are performed based on the developed DPA platform. Simulation results show that the key of the AES can be cracked correctly illustrating our analytical method has high effectiveness.

Shuaiwei Zhang,Xiaoyuan Yang,Weidong Zhong,Yujuan Sun

DOI: https://doi.org/10.3970/cmc.2018.??

2018-01-01

Abstract:As one of the typical method for side channel attack, DPA has become a serious trouble for the security of encryption algorithm implementation. The potential capability of DPA attack induces researchers making a lot of efforts in this area, which significantly improved the attack efficiency of DPA. However, most of these efforts were made based on the hypothesis that the gathered power consumption data from the target device were stable and low noise. If large deviation happens in part of the power consumption data sample, the efficiency of DPA attack will be reduced rapidly. In this work, a highly efficient method for DPA attack is proposed with the inspiration of genetic algorithm. Based on the designed fitness function, power consumption data that is stable and less noisy will be selected and the noisy ones will be eliminated. In this way, not only improves the robustness and efficiency of DPA attack, but also reduces the number of samples needed. With experiments on block cipher algorithms of DES and SM4, 10% and 12.5% of the number of power consumption curves have been reduced in average with the proposed DPAG algorithm compared to original DPA attack respectively. The high efficiency and correctness of the proposed algorithm and novel model are proved by experiments.

Wei Liu,Liji Wu,Xiangmin Zhang,An Wang

DOI: https://doi.org/10.1109/CIS.2014.103

2014-01-01

Abstract:Side-channel power analysis attacks have been proven to be the most powerful attacks on implementations of cryptographic primitives. DPA and CPA are probably the most wide-spread practical attacks on numerous embedded cryptographic systems. Additive noise is a kind of typical power analysis resistant implementing technique. The success rate of the DPA and CPA attacks is significantly affected by the Signal-to-Noise Ratio (SNR) of the power traces. Hence, it is important to eliminate noise effectively and improve the SNR for power attacks to extract the secret key. In this paper, a new method is proposed with wavelet analysis to reduce noise effects, which aims to improve the performance of side-channel power attacks named as WPA (Wavelet-based Power Attack). The key is successfully recovered on commercially available contact-less smart card based on 3DES, which is widely used for security-sensitive applications. Experimental results show that WPA significantly improves the success rate for encryption key detection. Compared to the fourth-order cumulant noise reduction method for power attack, the required number of the power traces is 50% less.

Weijia Wang,Yu Yu,Junrong Liu,Zheng Guo,Francois- Xavier Standaert,Dawu Gu,Sen Xu,Rong Fu

DOI: https://doi.org/10.1007/978-3-662-48324-4_21

2015-01-01

Abstract:At CT-RSA 2014, Whitnall, Oswald and Standaert gave the impossibility result that no generic DPA strategies (i.e., without any a priori knowledge about the leakage characteristics) can recover secret information from a physical device by considering an injective target function (e.g., AES and PRESENT S-boxes), and as a remedy, they proposed a slightly relaxed strategy "generic-emulating DPAs" free from the non-injectivity constraint. However, as we show in this paper, the only generic-emulating DPA proposed in their work, namely the SLR-based DPA, suffers from two drawbacks: unstable outcomes in the high-noise regime (i.e., for a small number of traces) and poor performance especially on real smart cards (compared with traditional DPAs with a specific power model). In order to solve these problems, we introduce two new generic-emulating distinguishers, based on lasso and ridge regression strategies respectively, with more stable and better performances than the SLR-based one. Further, we introduce the cross-validation technique that improves the generic-emulating DPAs in general and might be of independent interest. Finally, we compare the performances of all aforementioned generic-emulating distinguishers (both with and without cross-validation) in simulated leakages functions of different degrees, and on an AES ASIC implementation. Our experimental results show that our generic-emulating distinguishers are stable and some of them behave even better than (resp., almost the same as) the best Difference-of-Means distinguishers in simulated leakages (resp., on a real implementation), and thus make themselves good alternatives to traditional DPAs.

guoyu qian,ying zhou,yueying xing,yibo fan,yukiyasu tsunoo,satoshi goto

DOI: https://doi.org/10.1109/ASICON.2009.5351546

2009-01-01

Abstract:Research on Differential Power Analysis (DPA) is becoming more and more popular nowadays. Against different hardware, DPA attack will lead to different results, e.g. attack on FPGA is easy but on ASIC is relatively difficult. However, how could we draw the conclusion that we finish a successful attack? How to build the connection between result data and successful rate is a meaningful topic. Same data with different statistical processing method will lead to different results. In this paper, we focus on DPA attack against an ASIC implementation. We analyzed two current statistical methods, pointed out the limitations. Then, we proposed a weighted statistical analysis method. According to number of traces and repetitions, we adjust the weight value. Finally, we improved the accuracy and efficiency of DPA attack on ASIC by reducing the number of traces used in attack.

Wei Ge,Shenghua Chen,Benyu Liu,Min Zhu,Bo Liu

DOI: https://doi.org/10.1587/transinf.2019edp7308

2020-01-01

IEICE Transactions on Information and Systems

Abstract:Side-channel Attack, such as simple power analysis and differential power analysis (DPA), is an efficient method to gather the key, which challenges the security of crypto chips. Side-channel Attack logs the power trace of the crypto chip and speculates the key by statistical analysis. To reduce the threat of power analysis attack, an innovative method based on random execution and register randomization is proposed in this paper. In order to enhance ability against DPA, the method disorders the correspondence between power trace and operands by scrambling the data execution sequence randomly and dynamically and randomize the data operation path to randomize the registers that store intermediate data. Experiments and verification are done on the Sakura-G FPGA platform. The results show that the key is not revealed after even 2 million power traces by adopting the proposed method and only 7.23% slices overhead and 3.4% throughput rate cost is introduced. Compared to unprotected chip, it increases more than 4000x measure to disclosure.

Shaofei Sun,Shijun Ding,An Wang,Yaoling Ding,Congming Wei,Liehuang Zhu,Yongjuan Wang

DOI: https://doi.org/10.1016/j.ins.2024.120226

IF: 8.1

2024-02-01

Information Sciences

Abstract:Traditional nonprofiling side-channel analysis frequently adopts divide-and-conquer strategy to recover the secret key of a cryptographic algorithm . Only a single key byte is used, whereas the remaining bytes are considered extraneous noise. If the cryptographic algorithm is implemented in hardware with parallel processing, the strategy will lead to the inefficient use of information. The combination of intelligent algorithms and side-channel analysis offers a different idea for nonprofiling methods for parallel hardware implementations. It transforms the problem of key recovery into key optimization. In this paper, we adopt this idea and propose an efficient heuristic framework to assist correlation power analysis. The multipoint hill-climbing algorithm will be used to find the optimal key candidates with higher scores, and the correct key will be found in the optimal key candidates by key enumeration. Multiple bytes of the secret key are used to take full advantage of the helpful information. Besides, two search strategies are introduced to overcome the efficiency problem, and two key enumeration strategies are introduced to solve the key recovery problem when the traces are insufficient. Experimental results on the public DPA Contest V1 dataset show that the heuristic framework performs better than other classical methods, verifying its effectiveness.

computer science, information systems

SHI Wei,DAI Kui,TONG Yuan-man,GONG Rui,WANG Zhi-ying

DOI: https://doi.org/10.3969/j.issn.1007-130x.2007.05.006

2007-01-01

Abstract:Differential-power-analysis attacks are currently the most effective on cryptographic devices.In such attacks,the power consumption of a cryptographic device is analyzed to reveal the secret key that is used inside the device.In order to counteract these attacks,DPA-resistant standard cells,instead of the static complementary CMOS standard cells,can be used to implement cryptographic devices.This paper analyzes the resistance of two different logic styles(DDCVSL and SABL)against DPA attacks in the design rules of two different process technologies.The experimental results demonstrate that DDCVSL and SABL all have a high DPA-resistance with the shrinking channel-length of the transistors.Meanwhile,the power consumption,delay and area of DDCVSL are less than those of SABL.

Lu Xiang-Jun,Zhang Chi,Gu Da-Wu,ZhiXun Crypto Testing and Evaluation Technology Co. Ltd.,Peng Qian,Beijing Smartchip Microelectronics Technology Co., Ltd.

DOI: https://doi.org/10.1007/s11390-020-9669-0

2020-01-01

Abstract:Side-channel attacks (SCAs) play an important role in the security evaluation of cryptographic devices. As a form of SCAs, profiled differential power analysis (DPA) is among the most powerful and efficient by taking advantage of a profiling phase that learns features from a controlled device. Linear regression (LR) based profiling, a special profiling method proposed by Schindler et al ., could be extended to generic-emulating DPA (differential power analysis) by on-the-fly profiling. The formal extension was proposed by Whitnall et al . named SLR-based method. Later, to improve SLR-based method, Wang et al . introduced a method based on ridge regression. However, the constant format of L-2 penalty still limits the performance of profiling. In this paper, we generalize the ridge-based method and propose a new strategy of using variable regularization. We then analyze from a theoretical point of view why we should not use constant penalty format for all cases. Roughly speaking, our work reveals the underlying mechanism of how different formats affect the profiling process in the context of side channel. Therefore, by selecting a proper regularization, we could push the limits of LR-based profiling. Finally, we conduct simulation-based and practical experiments to confirm our analysis. Specifically, the results of our practical experiments show that the proper formats of regularization are different among real devices.

Yu Han,Xuecheng Zou,Zhenglin Liu,Yicheng Chen

DOI: https://doi.org/10.1109/wicom.2007.556

2007-01-01

Abstract:This paper presents an alternative way to enhance power analysis attacks on AES hardware implementations for wireless sensor network (WSN) nodes. The proposed attack method adopts hamming differences of intermediate results as the power model and arranges plaintext inputs to maximize the differences of power traces, A simulation-based experimental environment is built, and various power attacks are conducted on our AES hardware implementation. Unlike on software implementations, conventional power attacks on hardware implementations may not succeed or require more computations. However, our proposed method improves the success rate effectively using acceptable number of power traces and fewer computations. Furthermore, experimental results also demonstrate that the linear operations of AES hardware implementations extremely leak the data-dependent power information vulnerable to power attacks.

Miao Yuan,Guoqiang Bai

DOI: https://doi.org/10.1109/cis.2015.101

2015-01-01

Abstract:Higher Order Differential Power Analysis (HODPA) has been introduced for more than ten years. Various combining functions are applied to attack the masked AES implementation, but finding an appropriate combining function is still a big issue. We study the weakness of absolute difference method when using multi-bit variables to mount an attack. In this paper, an optimized method is proposed to improve its efficiency. Simulation results based on different combining functions show that the success rate of our method is twice as high as that of normal absolute difference and sum combining function. Our idea is also confirmed by physical traces measured on a FPGA platform.

Wu Di,Cui Xiaoxin,Wei Wei,Li Rui,Yu Dunshan,Cui Xiaole

DOI: https://doi.org/10.1109/icsict.2012.6467785

2012-01-01

Abstract:Differential Power Analysis (DPA) is a powerful side channel attack method. Dual Rail Pre-charge Logic (DRP) is an effective circuit level DPA resistant countermeasure, however consumes more energy. Several adiabatic logic can resist differential power analysis attack while energy efficient. In this paper the comparison of DPA resistant ability for DRP logic and adiabatic logic will be presented and to make the comparison, a new criterion was introduced which could be used both for the DRP logic and adiabatic logic. Furthermore, the design issues for adiabatic logic will be discussed. Based on several standard cells and a full adder, the analysis results show that the ECRL logic has a good performance in DPA resistant ability (64%) as well as energy saving (83%).