M. Karthikeyan,V. Ponniyin Selvan

DOI: https://doi.org/10.1166/jno.2022.3283

2022-07-01

Journal of Nanoelectronics and Optoelectronics

Abstract:The Internet of Things (IoT) has pushed everyone‘s normal life zone to their comfort zone by making them use embedded IoT devices for controlling and monitoring their daily gadgets. IoT devices find their applications in health care, agriculture, industrial automation, and even vehicles. Since IoT involves numerous devices’ data sharing, which causes network traffic and makes them vulnerable to security breaches, especially Side-Channel Attacks (SCA), it creates demand for an intelligent framework. As of now, many secured cryptoengines are integrated into embedded chips, but still, SCAs play a very vital role in IoT networks. As a result, the paper proposes a novel reconfigurable architecture as Field Programmable Gate Arrays (FPGA) that integrates deep learning models for effective SCA prediction as well as a countermeasure mechanism based on chaotic maps. Finally, the experimentation results prove the excellence of the proposed framework in terms of prediction accuracy (99%), sensitivity (98.9%), and specificity (98.9%) in comparison with LSTM, ELM SVM, RF, NB, and ANN. The results also demonstrated that the proposed framework requires only 50% of the total energy for network operation.

engineering, electrical & electronic,nanoscience & nanotechnology,physics, applied

Zixin Liu,Zhibo Wang,Mingxing Ling

DOI: https://doi.org/10.13052/jwe1540-9589.2127

2022-01-01

Abstract:Side-channel attack (SCA) based on machine learning has proved to be a valid technique in cybersecurity, especially subjecting to the symmetric-key crypto implementations in serial operation. At the same time, parallel-encryption computing based on Field Programmable Gate Arrays (FPGAs) grows into a new influencer, but the attack results using machine learning are exiguous. Research on the traditional SCA has been mostly restricted to pre-processing: Signal Noisy Ratio (SNR) and Principal Component Analysis (PCA), etc. In this work, firstly, we propose to replace Points of Interests (POIs) and dimensionality reduction by utilizing word embedding, which converts power traces into sensitive vectors. Secondly, we combined sensitive vectors with Long Short Term Memories (LSTM) to execute SCA based on FPGA crypto-implementations. In addition, compared with traditional Template Attack (TA), Multiple Multilayer Perceptron (MLP) and Convolutional Neural Network (CNN). The result shows that the proposed model can not only reduce the manual operation, such as parametric assumptions and dimensionality setting, which limits their range of application, but improve the effectiveness of side-channel attacks as well.

Naila Mukhtar,Ali Mehrabi,Yinan Kong,Ashiq Anjum

DOI: https://doi.org/10.1002/cpe.6764

2021-12-07

Concurrency and Computation: Practice and Experience

Abstract:The processing of locally harvested data at the physically accessible edge devices opens a new avenue of security threats for edge enhanced analytics. Cryptographic algorithms are used to secure the data being processed on the edge device. However, the implementation weakness of the algorithms on the edge devices can lead to side‐channel attack vulnerability, which is exacerbated with the application of machine‐learning techniques. This research proposes a deep learning‐based system integrated at the edge device to identify the side‐channel leakages. To design such a deep learning‐based system, one of the challenges is formulating the suitable attack model for the underlying target algorithm. Based on the previous findings, three machine learning‐based side‐channel attack models are curated and investigated for the edge device security evaluations. As a test case, the standard elliptic‐curve cryptographic algorithm is selected. Moreover, quantitative analysis is provided for the best attack model selection using standard machine‐learning evaluation metrics. A comparative analysis is performed on the raw unaligned data samples and reduced feature‐engineered samples using edge enhanced security analytics. The investigation concludes that the vulnerable algorithm implementation can lead to the secret key recovery from the edge device, with 96% accuracy, using a neural‐network‐based algorithm to analyse side‐channel attacks.

Takaya Kubota,Kota Yoshida,Mitsuru Shiozaki,Takeshi Fujino

DOI: https://doi.org/10.1016/j.micpro.2020.103383

IF: 3.503

2021-11-01

Microprocessors and Microsystems

Abstract:<p>In the field of image recognition, machine learning technologies, especially deep learning, have been rapidly advancing alongside the advances of hardware such as GPUs. In image recognition, in general, large numbers of labeled images to be identified are input to a neural network, and repeatedly learning the images enables the neural network to identify objects with high accuracy. A new profiling side-channel attack method, the deep learning side-channel attack (DL-SCA), utilizes the neural network's high identifying ability to unveil a cryptographic module's secret key from side-channel information. In DL-SCAs, the neural network is trained with power waveforms captured from a target cryptographic module, and the trained network extracts the leaky part that depends on the secret. However, at this stage, the main target of investigation has been software implementation, and studies regarding hardware implementation, such as ASIC, are somewhat lacking. In this paper, we first depict deep learning techniques, profiling side-channel attacks, and leak models to clarify the relation between secret and side channels. Next, we investigate the use of DL-SCA against hardware implementations of AES and discuss the problem derived from the Hamming distance model and ShiftRow operation of AES. To solve the problem, we propose a new network training method called "mixed model dataset based on round-round XORed value." We prove that our proposal solves the problem and gives the attack capability to neural networks. We also compare the attack performance and characteristics of DL-SCA to conventional analysis methods such as correlation power analysis and conventional template attack. In our experiment, a dedicated ASIC chip for side-channel analysis is utilized and the chip is also equipped with a side-channel countermeasure AES. We show how DL-SCA can recover secret keys against the side-channel countermeasure circuit. Our results demonstrate that DL-SCA can be a more powerful option against side-channel countermeasure implementations than conventional SCAs.</p>

computer science, theory & methods,engineering, electrical & electronic, hardware & architecture

Hongzhe Wang,Kunsong Liu,Yi'an Liu,Junjie Wang,Mingyuan Sun,Kai Tang,Guohui Ren,Xindi Zhao,Yang Liu

DOI: https://doi.org/10.1145/3637494.3638747

2023-01-01

Abstract:In response to the escalating demand for edge encryption in the big data era, we introduce the implementation of the Memristor-based Transient Chaotic Neural Network (MTCNN) on FPGA. This innovative approach aims to elevate the security of key generation for the Advanced Encryption Standard (AES) algorithm. Through meticulous mapping and optimization of MTCNN-AES encryption algorithm on FPGA, we achieve efficient edge encryption. Notably, the FPGA-implemented MTCNN-AES features a key space 22 orders of magnitude larger than traditional AES, underscoring its substantial resilience against brute-force attacks. The proposed approach aligns with federal information processing standards, emphasizing its reliability, robustness and randomness.

Xiaozhong Pan,Shuiyu He,Yuechuan Wei,Lipeng Chang

DOI: https://doi.org/10.3390/app12168246

2022-08-18

Applied Sciences

Abstract:With the in-depth integration of deep learning and side-channel analysis (SCA) technology, the security threats faced by embedded devices based on the Internet of Things (IoT) have become increasingly prominent. By building a neural network model as a discriminator, the correlation between the side information leaked by the cryptographic device, the key of the cryptographic algorithm, and other sensitive data can be explored. Then, the security of cryptographic products can be evaluated and analyzed. For the AES-128 cryptographic algorithm, combined with the CW308T-STM32F3 demo board on the ChipWhisperer experimental platform, a Correlation Power Analysis (CPA) is performed using the four most common deep learning methods: the multilayer perceptron (MLP), the convolutional neural network (CNN), the recurrent neural network (RNN), and the long short-term memory network (LSTM) model. The performance of each model is analyzed in turn when the samples are small data sets, sufficient data sets, and data sets of different scales. Finally, each model is comprehensively evaluated by indicators such as classifier accuracy, network loss, training time, and rank of side-channel attacks. The experimental results show that the convolutional neural network CNN classifier has higher accuracy, lower loss, better robustness, stronger generalization ability, and shorter training time. The rank value is 2, that is, only two traces can recover the correct key byte information. The comprehensive performance effect is better.

Engineering,Computer Science

Ngoc‐Tuan Do,Van‐Phuc Hoang,Van Sang Doan,Cong‐Kha Pham

DOI: https://doi.org/10.1049/ise2.12102

2022-12-22

IET Information Security

Abstract:This paper proposes and evaluates the applications of different DL techniques including the Convolutional Neural Network (CNN) and the multilayer perceptron (MLP) models for non‐profiled attacks on the AES‐128 encryption implementation. Along with the designed models, a dataset reconstruction and labelling technique for the proposed model has also been performed for solving the high dimension data and imbalanced dataset problem. As a result, the DL‐based SCA with our reconstructed dataset for different targets of ASCAD, RISC‐V microcontroller, and ChipWhisperer boards has achieved a higher performance of non‐profiled attacks. The experimental results have clarified that the exponential linear unit (ELU) function is better than the rectified linear unit (ReLU) in taking the correct key with the presence of the Gaussian noise. In modern embedded systems, security issues including side‐channel attacks (SCAs) are becoming of paramount importance since the embedded devices are ubiquitous in many categories of consumer electronics. Recently, deep learning (DL) has been introduced as a new promising approach for profiled and non‐profiled SCAs. This paper proposes and evaluates the applications of different DL techniques including the Convolutional Neural Network and the multilayer perceptron models for non‐profiled attacks on the AES‐128 encryption implementation. Especially, the proposed network is fine‐tuned with different number of hidden layers, labelling techniques and activation functions. Along with the designed models, a dataset reconstruction and labelling technique for the proposed model has also been performed for solving the high dimension data and imbalanced dataset problem. As a result, the DL based SCA with our reconstructed dataset for different targets of ASCAD, RISC‐V microcontroller, and ChipWhisperer boards has achieved a higher performance of non‐profiled attacks. Specifically, necessary investigations to evaluate the efficiency of the proposed techniques against different SCA countermeasures, such as masking and hiding, have been performed. In addition, the effect of the activation function on the proposed DL models was investigated. The experimental results have clarified that the exponential linear unit function is better than the rectified linear unit in fighting against noise generation‐based hiding countermeasure.

computer science, information systems, theory & methods

Shayan Moini,Shanquan Tian,Jakub Szefer,Daniel Holcomb,Russell Tessier

DOI: https://doi.org/10.48550/arXiv.2011.07603

2021-04-18

Abstract:To lower cost and increase the utilization of Cloud Field-Programmable Gate Arrays (FPGAs), researchers have recently been exploring the concept of multi-tenant FPGAs, where multiple independent users simultaneously share the same remote FPGA. Despite its benefits, multi-tenancy opens up the possibility of malicious users co-locating on the same FPGA as a victim user, and extracting sensitive information. This issue becomes especially serious when the user is running a machine learning algorithm that is processing sensitive or private information. To demonstrate the dangers, this paper presents a remote, power-based side-channel attack on a deep neural network accelerator running in a variety of Xilinx FPGAs and also on Cloud FPGAs using Amazon Web Services (AWS) F1 instances. This work in particular shows how to remotely obtain voltage estimates as a deep neural network inference circuit executes, and how the information can be used to recover the inputs to the neural network. The attack is demonstrated with a binarized convolutional neural network used to recognize handwriting images from the MNIST handwritten digit database. With the use of precise time-to-digital converters for remote voltage estimation, the MNIST inputs can be successfully recovered with a maximum normalized cross-correlation of 79% between the input image and the recovered image on local FPGA boards and 72% on AWS F1 instances. The attack requires no physical access nor modifications to the FPGA hardware.

Cryptography and Security

Mahdi Madani,Safwan El Assad,Fethi Dridi,René Lozi

DOI: https://doi.org/10.1080/10236198.2022.2069496

2022-04-30

Abstract:Nowadays chaos-based cryptography systems are widely used to protect sensitive data. A variety of chaos-based cryptosystems with software implementation has been published in the literature. However, due to the rapid growth of connected devices, the development of hardware secure and low-resource cryptographic systems is necessary. In this paper, we enhance the design of one of our software cryptosystems and then we address its FPGA-based implementation. The improvement in the design consists essentially to introduce an Initial Vector (IV) entry to the Chaotic Pseudo Random Number Generator (CPRNG) thus allowing to generate a new dynamic keys for the confusion layer (using a modified 2-D cat map) and diffusion layer (using a logistic map) with each new execution of the system. The CPRNG is formed by XORred a discrete Skew Tent Map (STM) with a discrete Piecewise Linear Chaotic Map (PWLCM). The proposed cryptosystem, which operates in Cipher Block Chaining (CBC) mode, is controlled by a Finite State Machine (FSM) to ensure that both the encryption and decryption are performed by the same reconfigurable architecture. The system is implemented on a Xilinx XC7Z020 ZYNQ FPGA platform. The results obtained in terms of hardware implementation costs (logic resources, throughput, and efficiency) and in terms of security against cryptographic attacks demonstrate the effectiveness of the proposed chaos-based cryptosystem.

mathematics, applied

Weiwei Shan,Shuai Zhang,Yukun He

DOI: https://doi.org/10.1049/el.2017.1460

2017-01-01

Electronics Letters

Abstract:Side channel analysis (SCA) is effective to reveal the key of crypto devices by applying statistical analysis to a number of power traces, thus hardware countermeasure is necessary to protect the crypto circuits. A SCA-resistance methodology by machine learning trained power compensation module is proposed to compensate the probability of hamming distance (HD) of the intermediate data directly, to make it unable to be distinguished from correct and incorrect sub-key, thus providing resistance to SCA. The machine learning algorithm is used to find out the best HD redistribution mapping by using neural dynamic programming. Implemented on an AES-128 encryption algorithm circuit on a Xilinx Spartan-6 FPGA mounted on a SAKURA-G board, experimental SCA results show that it can provide more than 200 x measures to disclosure and still has no sign to reveal the advanced encryption standard (AES) sub-key. In addition, it has low power and area overhead and zero frequency overhead, thus is appropriate for hardware implementation of SCA countermeasure.

Yohaï-Eliel Berreby,Laurent Sauvage

2023-09-23

Abstract:Over the past few years, deep learning has been getting progressively more popular for the exploitation of side-channel vulnerabilities in embedded cryptographic applications, as it offers advantages in terms of the amount of attack traces required for effective key recovery. A number of effective attacks using neural networks have already been published, but reducing their cost in terms of the amount of computing resources and data required is an ever-present goal, which we pursue in this work. We focus on the ANSSI Side-Channel Attack Database (ASCAD), and produce a JAX-based framework for deep-learning-based SCA, with which we reproduce a selection of previous results and build upon them in an attempt to improve their performance. We also investigate the effectiveness of various Transformer-based models.

Cryptography and Security,Artificial Intelligence

Rahul Vishwakarma,Ravi Monani,Amin Rezaei,Hossein Sayadi,Mehrdad Aliasgari,Ava Hedayatipour

DOI: https://doi.org/10.1109/ISQED57927.2023

2023-05-26

Abstract:The Global Wearable market is anticipated to rise at a considerable rate in the next coming years and communication is a fundamental block in any wearable device. In communication, encryption methods are being used with the aid of microcontrollers or software implementations, which are power-consuming and incorporate complex hardware implementation. Internet of Things (IoT) devices are considered as resource-constrained devices that are expected to operate with low computational power and resource utilization criteria. At the same time, recent research has shown that IoT devices are highly vulnerable to emerging security threats, which elevates the need for low-power and small-size hardware-based security countermeasures. Chaotic encryption is a method of data encryption that utilizes chaotic systems and non-linear dynamics to generate secure encryption keys. It aims to provide high-level security by creating encryption keys that are sensitive to initial conditions and difficult to predict, making it challenging for unauthorized parties to intercept and decode encrypted data. Since the discovery of chaotic equations, there have been various encryption applications associated with them. In this paper, we comprehensively analyze the physical and encryption attacks on continuous chaotic systems in resource-constrained devices and their potential remedies. To this aim, we introduce different categories of attacks of chaotic encryption. Our experiments focus on chaotic equations implemented using Chua's equation and leverages circuit architectures and provide simulations proof of remedies for different attacks. These remedies are provided to block the attackers from stealing users' information (e.g., a pulse message) with negligible cost to the power and area of the design.

Cryptography and Security

M. Thalaimalaichamy,S. Radhakrishnan,S. Baskaran,S. Saravanan,V. G. Rajendran

DOI: https://doi.org/10.1007/s11042-024-19217-5

IF: 2.577

2024-05-08

Multimedia Tools and Applications

Abstract:The advent of high-speed networks and the Internet of Things (IoT) has significantly enhanced image communication. In hospital environments, edge devices have been seamlessly integrated with medical scanning equipment to capture and transfer human body images for e-diagnosis, thereby revolutionizing telemedicine and facilitating swift medical services. However, the imperative to safeguard these medical images from potential adversaries and intruders is crucial. This research introduces an innovative image encryption scheme leveraging the physical structure of square tree fractals implemented on the Intel Cyclone IV E Field Programmable Gate Array (FPGA). The design incorporates four layers of operations, with two dedicated to confusion and the remaining two to diffusion, ensuring robust encryption. Circular left/right shifts and Linear Feedback Shift Register (LFSR)-generated pseudo-random sequences govern Confusion I and II, while Diffusion I and II are supported by the logistic map. The physical fractal structure, combined with the logistic map and LFSR, constitutes the key, resulting in an exceptionally high keyspace compared to prior works. The proposed scheme achieves a noteworthy entropy of 7.9968 and 7.9969 for Digital Imaging in Communications and Medicine (DICOM) and grayscale images, respectively. Additionally, it exhibits a near-zero correlation. Importantly, the design utilizes only 1% of Cyclone IV E FPGA's logic elements. The throughput of the encryption and decryption processes is measured at 1 Mbps, operating at a frequency of 50 MHz. This comprehensive approach not only ensures heightened security for medical images but also optimizes the utilization of FPGA resources.

computer science, information systems, theory & methods,engineering, electrical & electronic, software engineering

H. Krishnamurthy,Josef Danial,Baibhab Chatterjee,Muya Chang,Anupam Golder,Debayan Das,S. Mathew,Nirmoy Modak,Shovan Maity,Santosh K. Ghosh,Avinash L. Varna,Dong-Hyun Seo,Shreyas Sen,A. Raychowdhury

DOI: https://doi.org/10.1109/JSSC.2020.3032975

IF: 5.4

2021-01-01

IEEE Journal of Solid-State Circuits

Abstract:Mathematically secure cryptographic algorithms, when implemented on a physical substrate, leak critical “side-channel” information, leading to power and electromagnetic (EM) analysis attacks. Circuit-level protections involve switched capacitor, buck converter, or series low-dropout (LDO) regulator-based implementations, each of which suffers from significant power, area, or performance tradeoffs and has only achieved a minimum traces to disclosure (MTD) of <inline-formula> <tex-math notation="LaTeX">$10M$ </tex-math></inline-formula> till date. Utilizing an in-depth white-box model, this work, for the first time, focuses on signature suppression in the current domain, which provides an <inline-formula> <tex-math notation="LaTeX">$Attenuation^{2}$ </tex-math></inline-formula> enhancement in MTD, leading to orders of magnitude improvement in both power and EM side-channel analysis (SCA) immunities. Using a combination of current-domain “signature attenuation” (CDSA) along with local lower level metal routing, the critical correlated information in the crypto current is significantly suppressed before it reaches the supply pin. Especially, to prevent the EM leakage from its source (metal layers carrying the correlated crypto current acting as antennas), this work embraces lower level metal routing of the CDSA embedding the crypto-IP so that the signature becomes highly suppressed before it passes through the higher metal layers (which radiates significantly) to connect to the external pin. The 65-nm CMOS test chip contains both protected and unprotected parallel AES-256 implementations, running at a clock frequency of 50 MHz. Test vector leakage assessment (TVLA) on the protected CDSA-AES, demonstrated with on-chip measurements for the first time, shows that the higher level metal layers leak significantly more compared with the lower level metal routing. Correlational power and EM analysis (CPA/CEMA) attacks on the unprotected implementation were able to extract the secret key within <inline-formula> <tex-math notation="LaTeX">$8k$ </tex-math></inline-formula> and <inline-formula> <tex-math notation="LaTeX">$12k$ </tex-math></inline-formula> traces, respectively, while the protected CDSA-AES could not be broken even after <inline-formula> <tex-math notation="LaTeX">$1B$ </tex-math></inline-formula> encryptions for both power and EM SCA, evaluated both in the time and frequency domains, showing an improvement of <inline-formula> <tex-math notation="LaTeX">$100\times $ </tex-math></inline-formula> over the prior state-of-the-art countermeasures with comparable power and area overheads.

Computer Science,Engineering,Materials Science,Physics

S. Madhavapandian,P. MaruthuPandi

DOI: https://doi.org/10.1007/s11277-019-06930-w

IF: 2.017

2019-11-19

Wireless Personal Communications

Abstract:The proposed system portrays the application space examination of a diverse cryptosystem processor with dynamic reconfiguration abilities. It is appropriate to a variety of signal processing application domains namely telecommunications, image processing, video coding and cryptographic processing. To differentiate between application spaces of the processor, the performance is correlated with cutting edge devices, taking ability to program, energy efficiency and computational potential as the important factors. In general the conventional method of computation is processed by means of Virtual Secure Circuit (VSC) on Advanced Encryption Standard (AES) and performance of the device Field Programmable Gate Array (FPGA) after implementation is analyzed in terms of delay and throughput. In the conventional method area overhead and power consumption are less where as the architecture lags in performance and throughput. It has been overcome through the fully parallel pipelined Architecture of the VSC on AES which outperforms the existing method in terms of performance and throughput. The energy efficiency and performance are considerably more important than processor that are used for general purpose, while still preserving a Convenient approach of programming that mainly bank on software oriented languages. The exploit of VSC based AES is to formulate the cryptographic processor held against Side Channel Attacks like attacks based on power supply and electromagnetic signals. Then the experimental result shows the promising outcomes when compared to previous methods.

telecommunications

Mohamed Ali Hajjaji,Adnen Albouchi

DOI: https://doi.org/10.1117/1.jei.33.1.011004

IF: 0.829

2024-01-24

Journal of Electronic Imaging

Abstract:We live in an interconnected world, and digital data transmissions have reached significant importance as they are the most used means of communication. Connected objects are widely used in our digital life, yet they may pose vulnerabilities and risks such as hacking or personal data theft due to their often inadequate security. In response to the size and capability restrictions of many existing embedded devices, lightweight cryptography has been considered. This article describes a hardware implementation of the lightweight cryptographic method [very high speed integrated circuit hardware description language (VHDL) and field-programmable gate arrays (FPGAs)]. This work presents a hardware solution for securing digital information, more specifically images, and to ensure a high level of security and favorable performance, a robust algorithm with respect to Shannon’s theory, Chaos, and its hardware implementation. The algorithm is a block cipher scheme that treats a block of 128-bit length. The paper discusses the method’s two main parts: the key generator-based chaos and the block cipher algorithm that consists of a whitening operation, random permutation, and key-dependent S-box. Both the key generator and the encryption algorithm are implemented using VHDL language on a Xilinx ZedBoard Zynq Development Kit platform. The generated key sequences are tested using the NIST SP 800-22 test suite. The hardware implementation of the proposed algorithm is capable of securing different gray-scale images while maintaining low power usage, a good frequency of 129.9038 MHz, and a high throughput of 1651.201 Mbps. Both statistical and differential attacks demonstrate that the cryptosystem is capable of effective security against the next generation of cryptographic attacks.

engineering, electrical & electronic,optics,imaging science & photographic technology

Amjed Abbas Ahmed,Mohammad Kamrul Hasan,Shayla Islam,Azana Hafizah Mohd Aman,Nurhizam Safie

DOI: https://doi.org/10.5755/j02.eie.33995

2023-09-07

Elektronika ir Elektrotechnika

Abstract:Deep learning (DL) is a new option that has just been made available for side-channel analysis. DL approaches for profiled side-channel attacks (SCA) have dominated research till now. In this attack, the attacker has complete control over the profiling device and can collect many traces for a range of critical parameters to characterise device leakage before the attack. In this study, we apply DL algorithms to non-profiled data. An attacker can only retrieve a limited number of side-channel traces from a closed device with an unknown key value in non-profiled mode. The authors conducted this research. Key estimations and deep learning measurements can reveal the secret key. We prove that this is doable. This technology is excellent for non-profits. DL and neural networks can benefit these organisations. Neural networks can provide a new technique to verify the safety of hardware cryptographic algorithms. It was recently suggested. This study creates a non-profiled SCA utilising convolutional neural networks (CNNs) on an AVR microcontroller with 8 bits of memory and the AES-128 cryptographic algorithm. We used aligned power traces with several samples to demonstrate how challenging CNN-based SCA is in practise. This will help us reach our goals. Here is another technique to create a solid CNN data set. In particular, CNN-based SCA experiment data and noise effects are examined. These experiments employ power traces with Gaussian noise. The CNN-based SCA works well with our data set for non-profiled attacks. Gaussian noise on power traces causes many more issues. These results show that our method can recover more bytes successfully from SCA compared to other methods in correlation power analysis (CPA) and DL-SCA without regularisation.

engineering, electrical & electronic

Ruizhe Gu,Ping Wang,Mengce Zheng,Honggang Hu,Nenghai Yu

DOI: https://doi.org/10.48550/arXiv.2009.10568

2020-09-22

Cryptography and Security

Abstract:Numerous previous works have studied deep learning algorithms applied in the context of side-channel attacks, which demonstrated the ability to perform successful key recoveries. These studies show that modern cryptographic devices are increasingly threatened by side-channel attacks with the help of deep learning. However, the existing countermeasures are designed to resist classical side-channel attacks, and cannot protect cryptographic devices from deep learning based side-channel attacks. Thus, there arises a strong need for countermeasures against deep learning based side-channel attacks. Although deep learning has the high potential in solving complex problems, it is vulnerable to adversarial attacks in the form of subtle perturbations to inputs that lead a model to predict incorrectly. In this paper, we propose a kind of novel countermeasures based on adversarial attacks that is specifically designed against deep learning based side-channel attacks. We estimate several models commonly used in deep learning based side-channel attacks to evaluate the proposed countermeasures. It shows that our approach can effectively protect cryptographic devices from deep learning based side-channel attacks in practice. In addition, our experiments show that the new countermeasures can also resist classical side-channel attacks.

Haocheng Ma,Jiaji He,Max Panoff,Yier Jin,Yiqiang Zhao

DOI: https://doi.org/10.1109/jetcas.2021.3077842

IF: 5.877

2021-01-01

IEEE Journal on Emerging and Selected Topics in Circuits and Systems

Abstract:Commercial electronic design automation (EDA) tools typically focus on optimizing the power, area, and speed of integrated circuits (ICs). They rarely consider hardware security requirements. As such, existing EDA tools often directly or indirectly introduce security vulnerabilities. These security vulnerabilities can later be exploited by attackers to leak information or compromise the hardware root-of-trust. In this paper, we show how traditional EDA tools optimize power, area and speed (PAS) metrics in cryptographic circuits at the cost of introducing vulnerabilities to side-channel analysis (SCA) attacks. To balance hardware security with traditional performance metrics, we propose an automatic tool, called CAD4EM-CLK, to secure ICs against power and electromagnetic (EM) SCA attacks. The tool optimizes clock networks for both traditional design requirements and security constraints. To achieve this goal, we first theoretically analyze and model the relationship between on-chip clock networks and side-channel security. The developed model will then guide the CAD4EM-CLK tool to adjust clock network structures to spread the leakage out temporally, also lower its amplitude proportion, so as to help reduce the leaked information. The proposed automatic tool is then validated on various cryptographic circuits. We use layout-level simulation to assess side-channel leakage and the experimental results prove the effectiveness of our proposed tool for power and EM side-channel protection.

Nithyashankari Gummidipoondi Jayasankaran,Hao Guo,Satwik Patnaik,Jeyavijayan,Rajendran,Jiang Hu

2023-07-06

Abstract:The various benefits of multi-tenanting, such as higher device utilization and increased profit margin, intrigue the cloud field-programmable gate array (FPGA) servers to include multi-tenanting in their infrastructure. However, this property makes these servers vulnerable to power side-channel (PSC) attacks. Logic designs such as ring oscillator (RO) and time-to-digital converter (TDC) are used to measure the power consumed by security critical circuits, such as advanced encryption standard (AES). Firstly, the existing works require higher minimum traces for disclosure (MTD). Hence, in this work, we improve the sensitivity of the TDC-based sensors by manually placing the FPGA primitives inferring these sensors. This enhancement helps to determine the 128-bit AES key using 3.8K traces. Secondly, the existing defenses use ROs to defend against PSC attacks. However, cloud servers such as Amazon Web Services (AWS) block design with combinatorial loops. Hence, we propose a placement-based defense. We study the impact of (i) primitive-level placement on the AES design and (ii) additional logic that resides along with the AES on the correlation power analysis (CPA) attack results. Our results showcase that the AES along with filters and/or processors are sufficient to provide the same level or better security than the existing defenses.

Cryptography and Security