2nd cryptacus workshop 16 18 november 2017 radboud
play

2nd CRYPTACUS Workshop 16-18 November 2017 Radboud University, - PDF document

Feb 05, 2023 •120 likes •485 views

Cryptanalysis of Ubiquitous Computing Systems (CRYPTACUS) COST ACTION IC1403 2nd CRYPTACUS Workshop 16-18 November 2017 Radboud University, Nijmegen The Netherlands ( https://cryptacus.cs.ru.nl) Booklet compiled by Veelasha Moonsamy

  1. Cryptanalysis of Ubiquitous Computing Systems (CRYPTACUS) COST ACTION IC1403 2nd CRYPTACUS Workshop 16-18 November 2017 Radboud University, Nijmegen The Netherlands ( https://cryptacus.cs.ru.nl) Booklet compiled by Veelasha Moonsamy (email@veelasha.org)

  2. Contents Page Invited Talks 3 “Current state of high-precision EM side-channels and implications on FPGA-based cryp- tography” , Johann Heyszl . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 “Cache attacks: From side channels to fault attacks” , Cl´ ementine Maurice . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3 “State of the Art in Lightweight Symmetric Cryptography” , L´ eo Perrin . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4 “Towards Low Energy Block Ciphers” , Francesco Regazzoni . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 4 Session I: Distance-bounding and RFID security protocols 5 “An optimal distance bounding protocol based on pre-computation” , Sjouke Mauw, Jorge Toro-Pozo and Rolando Trujillo-Rasua . . . . . . . . . . . . . . . . 5 “Performance Evaluation of an Advanced Man-in-the-Middle Attack Against Certain HB Authentication Protocols” , Miodrag J. Mihaljevi´ c, Siniˇ sa Tomovi´ c and Milica Kneevi´ c . . . . . . . . . . . . . . . . . 5 “IoT HoneyBot: a novel approach to detection and handling of IoT-based DDoS attacks” , Haris ˇ Semi´ c and Sasa Mrdovic . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 6 “On symbolic verification of distance-bounding protocols” , Sjouke Mauw, Zach Smith, Jorge Toro-Pozo and Rolando Trujillo-Rasua . . . . . . . . . 7 “Confusion and Diffusion in Recent Ultralightweight RFID Authentication Protocols” , Paolo D’Arco and Roberto De Prisco . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 8 Session II: Other lightweight protocols 11 “Rescuing LoRaWAN 1.0” , Gildas Avoine and Loic Ferreira . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 11 Session III: Hardware and software security engineering 13 “Cryptographic Hardware from Untrusted Components” , Vasilios Mavroudis, Andrea Cerulli, Petr Svenda, Dan Cvrcek, Dusan Klinec and George Danezis . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 13 “Scalable Key Rank Estimation and Key Enumeration Algorithm for Large Keys” , Vincent Grosso . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 14 “A Leakage Trace Collection Approach for Arbitrary Cryptographic IP Cores” , Athanassios Moschos, Apostolos Fournaris and Nicolas Sklavos . . . . . . . . . . . . . . 15 “FPGA Performance Optimization for CAESAR Authentication Ciphers” , Maria Katsaiti, Nicolas Sklavos and Apostolos Fournaris . . . . . . . . . . . . . . . . . . 18 Session IV: Security and privacy of real-world systems 19 “DECAP-Distributed Extensible Cloud Authentication Protocol” , Andrea Huszti and Norbert Ol´ ah . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 19 “How private is your mobile health advisor? Free popular m-Health apps under review” , Achilleas Papageorgiou, Michael Strigkos, Eugenia Politou, Efthimios Alepis, Agusti Solanas and Constantinos Patsaki . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 20 “Privacy-Preserving Process Mining: Towards the new European General Data Protection Regulation” , Edgar Batista de Frutos and Agusti Solanas Gomez . . . . . . . . . . . . . . . . . . . . 22 “Statistical Disclosure Control meets Recommender Systems: A practical approach” , Fran Casino and Augusti Solanas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 25 Session V: Cryptanalysis of primitives 27 “Distinguishing iterated encryption” , Eran Lambooij . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27

  3. “On Security Enhancement of Lightweight Encryption Employing Error Correction Coding and Simulators of Channels with Synchronization Errors” , Miodrag J. Mihajevi´ c . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 27 “An Improved Cryptanalsis of Lightweight Stream Cipher Grain-v1” , Miodrag J. Mihaljevi´ c, Nishant Sinha, Sugata Gangopadhyay, Subhamoy Maitra, Goutam Paul and Kanta Matsuura . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 29 Session VI: Cryptanalysis of protocols 31 “Loophole: Timing Attacks on SharedEvent Loops in Chrome” , Pepe Vila and Boris K¨ opf . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 “How (not) to use TLS between 3 parties” , Karthikeyan Bhargavan, Ioana Boureanu, Pierre-Alain Fouque, Cristina Onete and Ben- jamin Richard . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 31 “Quam Bene Non Quantum: Analysing the Randomness of a Quantum Random Number Generator and the Costs of Postprocessing” , Darren Hurley-Smith and Julio Hernandez-Castro . . . . . . . . . . . . . . . . . . . . . 32 Special session: Tools 34 “Open-source tooling for differential power analysis” , Cees-Bart Breunesse and Ilya Kizhvatov . . . . . . . . . . . . . . . . . . . . . . . . . . . 34 “Backdoor Detection Tools for the Working Analyst” , Sam Thomas . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34 “Avatar 2 - Enhancing Binary Firmware Security Analysis with Dynamic Multi-Target Orchestration” , Marius Muench . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 34

  4. Invited Talks “Current state of high-precision EM side-channels and implications on FPGA-based cryptography” , Johann Heyszl High-precision measurement setups for the near-field magnetic field of integrated circuits at close distance allow for very precise evaluations, and attacks, on cryptographic implementations. In a sequence of publications based on FPGA implementations, we have shown the significant impact on different directions. For example, such measurements allow for dedicated attacks on asymmetric cryptographic algorithm implementations by exploiting location-properties or storage cells. Also, such measurements significantly increase the efficiency of attacks against symmetric cryptographic algorithms. While countermeasures such as dual-rail implementations seem invalidated by such side-channel analyses, leakage-resilient constructions retain a (small) protection level. Future work will show whether new such constructions will provide sufficient protection, even against such high- precision measurements “Cache attacks: From side channels to fault attacks” , Cl´ ementine Maurice Hardware is usually represented as an abstract layer, executing instructions and producing a result. However, hardware can pave the way to vulnerabilities at the software layer, by creating side effects on computations. Microarchitectural side-channel attacks exploit microarchitectural properties of IT systems in order to reveal secret values that are processed by the systems, without any physical access to the device. The CPU cache is a component of choice for an attacker to launch side-channel attacks, as the last-level cache is shared across cores of the same CPU in modern processors. In this presentation, we start by detailing state-of-the-art cache attacks such as Flush+Reload and Prime+Probe. Some of these attacks are rendered difficult by the fact that the last-level cache addressing function and the replacement policy is undocumented in modern Intel processors. We detail these challenges and how we solve them, as well as how we use this knowledge to perform a fault attack on the DRAM, known as Rowhammer, from JavaScript 3

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

November 16, 2017 Gildas Avoine Loc Ferreira Rescuing LoRaWAN 1.0 Workshop CRYPTACUS 1

November 16, 2017 Gildas Avoine Loc Ferreira Rescuing LoRaWAN 1.0 Workshop CRYPTACUS 1

November 16, 2017 Gildas Avoine Loc Ferreira Rescuing LoRaWAN 1.0 Workshop CRYPTACUS 1 Internet of Things 20 billion internet-connected things by 2020 [Gartner] Main domains smart home (Zigbee, Z-Wave, BLE, DECT ULE,

563 views • 23 slides
Io IoT Ho T Hone neyBot yBot Haris emi and Saa Mrdovi Cryptacus: Workshop and MC

Io IoT Ho T Hone neyBot yBot Haris emi and Saa Mrdovi Cryptacus: Workshop and MC

Io IoT Ho T Hone neyBot yBot Haris emi and Saa Mrdovi Cryptacus: Workshop and MC meeting Nijmegen, Netherlands, 2017 Honeypots Honeypots Emulation of a network resource Built to be discovered, attacked and compromised

497 views • 18 slides
Distinguishing iterated encryption E. Lambooij eran@hideinplainsight.io This is joint work with:

Distinguishing iterated encryption E. Lambooij eran@hideinplainsight.io This is joint work with:

Distinguishing iterated encryption E. Lambooij eran@hideinplainsight.io This is joint work with: Orr Dunkelman, Nathan Keller and Tanja Lange CRYPTACUS Workshop, 16-18 November 2017 1 / 15 Question: Does security increase if we encrypt twice

567 views • 22 slides
The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work

The State of the Art in Symmetric Lightweight Cryptography Lo Perrin Based on a joint work with Alex Biryukov November 18, 2017 Cryptacus Workshop Taken from a document writen originally in English. The programming of billions of processors

903 views • 75 slides
Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France November 16, 2017 Cryptacus Workshop, Nijmegen, Netherlands the attacker only needs unprivileged execution on the victims machine

1.99k views • 164 slides
Loophole: Timing Attacks on Shared Event Loops in Chrome Pepe Vila and Boris Kpf vwzq.net

Loophole: Timing Attacks on Shared Event Loops in Chrome Pepe Vila and Boris Kpf vwzq.net

Loophole: Timing Attacks on Shared Event Loops in Chrome Pepe Vila and Boris Kpf vwzq.net @cgvwzq github.com/cgvwzq DISCLAIMER: CRYPTACUS DISCLAIMER: CRYPTACUS DISCLAIMER: CRYPTACUS (its funny because its very ubiquitous)

1.05k views • 62 slides
LTP 2018-2028 Prioritisation Workshop PRESENTATION TO COUNCILLORS 16 th NOVEMBER 2017 1 Strategic

LTP 2018-2028 Prioritisation Workshop PRESENTATION TO COUNCILLORS 16 th NOVEMBER 2017 1 Strategic

LTP 2018-2028 Prioritisation Workshop PRESENTATION TO COUNCILLORS 16 th NOVEMBER 2017 1 Strategic Priorities 1. Prioritisation Workshop on 9 November key points from Workshop 2. Chief Executives Recap 3. Directors Revised Activity

472 views • 22 slides
Changing of the Guards . Joan Daemen CHES 2017 Taipei, September 26, 2017 Radboud University

Changing of the Guards . Joan Daemen CHES 2017 Taipei, September 26, 2017 Radboud University

Changing of the Guards . Joan Daemen CHES 2017 Taipei, September 26, 2017 Radboud University STMicroelectronics 1 / 18 Disclaimer . This is not a talk about higher-order countermeasures 2 / 18 Iterative cryptographic permutation . 3 /

1.17k views • 71 slides
Innovations in permutation-based crypto based on joint work with Van Keer 1 Cryptacus Training

Innovations in permutation-based crypto based on joint work with Van Keer 1 Cryptacus Training

Innovations in permutation-based crypto based on joint work with Van Keer 1 Cryptacus Training School, Azores, April 17, 2018 1 Joan Daemen 1 , 2 Guido Bertoni 3 , Seth Hoffert, Michal Peeters 1 , Gilles Van Assche 1 and Ronny 1

843 views • 35 slides
1-means clustering and conductance Twan van Laarhoven Radboud University Nijmegen Open

1-means clustering and conductance Twan van Laarhoven Radboud University Nijmegen Open

1-means clustering and conductance Twan van Laarhoven Radboud University Nijmegen Open Universiteit Nederland November 27th, 2017 1 / 30 Outline Network community detection with conductance The relation to k -means clustering Algorithms

706 views • 52 slides
project development in The Netherlands Presentation: Der Geothermie Kongress 3 November 2015

project development in The Netherlands Presentation: Der Geothermie Kongress 3 November 2015

Geothermal heat for greenhouses and project development in The Netherlands Presentation: Der Geothermie Kongress 3 November 2015 Essen, Germany Radboud Vorage GreenhouseGeoPower Introduction Ir. Radboud Vorage Engineer, MSc (WUR)

394 views • 15 slides
Avatar - Enhancing Binary Firmware Security Analysis with Dynamic Multi-Target Orchestration

Avatar - Enhancing Binary Firmware Security Analysis with Dynamic Multi-Target Orchestration

CRYPTACUS Workshop Nijmegen, 16 - 18 November 2017 Avatar - Enhancing Binary Firmware Security Analysis with Dynamic Multi-Target Orchestration Marius Muench <marius.muench@eurecom.fr> PART I Avatar - Enhancing Binary Firmware

1.04k views • 26 slides
Introduction to Magma Wieb Bosma and John Cannon Radboud University Nijmegen and University of

Introduction to Magma Wieb Bosma and John Cannon Radboud University Nijmegen and University of

Introduction to Magma Wieb Bosma and John Cannon Radboud University Nijmegen and University of Sydney School ECC2017, Nijmegen, November 2017 PART 1 Foundations Foundations Magma is designed to support computation in branches of mathematics

731 views • 39 slides
E A A E E d u c a t i o n A c a d e m y Workshop FAUP Porto Workshop Academy Amsterdam

E A A E E d u c a t i o n A c a d e m y Workshop FAUP Porto Workshop Academy Amsterdam

General Assembly FAUP Porto 31 August 2018 - Johan De Walsche E A A E E d u c a t i o n A c a d e m y Workshop FAUP Porto Workshop Academy Amsterdam Workshop NTUA Athens 25-26 November 2016 3 4 March 2017 12-13 October 2017 33

411 views • 17 slides
Research Workshop Series Session 2: Surveys Jill Walston 10/24/2017 Workshop Series 2017

Research Workshop Series Session 2: Surveys Jill Walston 10/24/2017 Workshop Series 2017

Research Workshop Series Session 2: Surveys Jill Walston 10/24/2017 Workshop Series 2017 September 28 Data, Research, and Evidence October 24 Survey Development and Administration November 15 Interviews and Focus Groups 2018 January

840 views • 49 slides
23-25, August, 2017 @ Taipei.TW 2017 Belle II TRG/DAQ workshop An Announcement 0. workshop

23-25, August, 2017 @ Taipei.TW 2017 Belle II TRG/DAQ workshop An Announcement 0. workshop

23-25, August, 2017 @ Taipei.TW 2017 Belle II TRG/DAQ workshop An Announcement 0. workshop place 1. workshop major targets 2. schedule, lunch boxes, banquet 3. your badge 4. weather forecast 5. workshop photo 6. scenery after workshop

256 views • 11 slides
Some vanishing and niteness results on complete manifolds: a generalization of the Bochner

Some vanishing and niteness results on complete manifolds: a generalization of the Bochner

Some vanishing and niteness results on complete manifolds: a generalization of the Bochner technique Stefano Pigola Convegno Nazionale di Analisi Armonica, 22-25 maggio 2007 In this talk we present some results, recently obtained in

888 views • 47 slides
CHAPTER X MEMORY SYSTEMS READ MEMORY NOTES ON COURSE WEBPAGE (BELOW) REA D pp 399-426 ( 285-310 ),

CHAPTER X MEMORY SYSTEMS READ MEMORY NOTES ON COURSE WEBPAGE (BELOW) REA D pp 399-426 ( 285-310 ),

INTRO. TO COMP. ENG. CHAPTER X CHAPTER X-1 MEMORY SYSTEMS CHAPTER X MEMORY SYSTEMS READ MEMORY NOTES ON COURSE WEBPAGE (BELOW) REA D pp 399-426 ( 285-310 ), MANO AND KIME & www.ece.gatech.edu/

616 views • 34 slides
Safe Staffing Guidance Explained WebEx 16 th May 2014 Aim and Objectives Aim Provide an

Safe Staffing Guidance Explained WebEx 16 th May 2014 Aim and Objectives Aim Provide an

Safe Staffing Guidance Explained WebEx 16 th May 2014 Aim and Objectives Aim Provide an overview of the requirement and how to achieve this Objectives Be very clear about the requirements Discuss the core points of the NQB

264 views • 11 slides
Tetrads of Lines Spanning PG ( 7 , 2 ) Hans Havlicek Research Group Differential Geometry and

Tetrads of Lines Spanning PG ( 7 , 2 ) Hans Havlicek Research Group Differential Geometry and

Background results Tetrads of Lines References Tetrads of Lines Spanning PG ( 7 , 2 ) Hans Havlicek Research Group Differential Geometry and Geometric Structures Institute of Discrete Mathematics and Geometry Finite Geometries, Fourth Irsee

1.02k views • 42 slides
Game Design - The Reality-Virtuality Continuum - Prof. Dr. Andreas Schrader ISNM International

Game Design - The Reality-Virtuality Continuum - Prof. Dr. Andreas Schrader ISNM International

Game Design - The Reality-Virtuality Continuum - Prof. Dr. Andreas Schrader ISNM International School of New Media University of Lbeck Willy-Brandt-Allee 31a 23554 Lbeck Germany schrader@isnm.de 6/14/2004 Game Design 1 Mixed Reality

520 views • 51 slides
Trade Reform and Local Labour Markets in Post-Apartheid South Africa Refilwe Lepelle University

Trade Reform and Local Labour Markets in Post-Apartheid South Africa Refilwe Lepelle University

Trade Reform and Local Labour Markets in Post-Apartheid South Africa Refilwe Lepelle University of Cape Town International Inequalities Institute Annual Conference, LSE 14 June 2017 Refilwe Lepelle Trade and Local Labour Markets in SA III

240 views • 11 slides
Group Roles Each table will designate a role for each participant. We will maintain these roles

Group Roles Each table will designate a role for each participant. We will maintain these roles

Group Roles Each table will designate a role for each participant. We will maintain these roles for the duration of our time together. Small Group Role Reporter Recorder Caretaker Timekeeper Facilitator I have a keen I represent my I

177 views • 4 slides
SPIRAL, FFTX, and the Path to SpectralPACK Franz Franchetti Carnegie Mellon University

SPIRAL, FFTX, and the Path to SpectralPACK Franz Franchetti Carnegie Mellon University

Carnegie Mellon Carnegie Mellon SPIRAL, FFTX, and the Path to SpectralPACK Franz Franchetti Carnegie Mellon University www.spiral.net In collaboration with the SPIRAL and FFTX team @ CMU and LBL This work was supported by DOE ECP and DARPA

319 views • 13 slides

More recommend