automatic generation of hcca resistant scalar
play

Automatic Generation of HCCA Resistant Scalar Multiplication - PowerPoint PPT Presentation

Oct 16, 2022 •244 likes •1k views

Automatic Generation of HCCA Resistant Scalar Multiplication Algorithm by Proper Sequencing of Field Multiplier Operands Poulami Das, Debapriya Basu Roy and, Debdeep Mukhopadhyay Indian Institute of Technology Kharagpur 29 / 09 / 2017 Debapriya

  1. Automatic Generation of HCCA Resistant Scalar Multiplication Algorithm by Proper Sequencing of Field Multiplier Operands Poulami Das, Debapriya Basu Roy and, Debdeep Mukhopadhyay Indian Institute of Technology Kharagpur 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 1/22

  2. Outline Introduction 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  3. Outline Introduction Motivation 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  4. Outline Introduction Motivation Horizontal Collision Correlation Analysis (HCCA) 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  5. Outline Introduction Motivation Horizontal Collision Correlation Analysis (HCCA) Asymmetric Leakage of Long Integer Field Multiplication 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  6. Outline Introduction Motivation Horizontal Collision Correlation Analysis (HCCA) Asymmetric Leakage of Long Integer Field Multiplication Countermeasure Design 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  7. Outline Introduction Motivation Horizontal Collision Correlation Analysis (HCCA) Asymmetric Leakage of Long Integer Field Multiplication Countermeasure Design Conclusion 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 2/22

  8. Introduction Cryptography has emerged as the practice or study of securing communications against third parties called adversaries. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 3/22

  9. Introduction Cryptography has emerged as the practice or study of securing communications against third parties called adversaries. Public Key Cryptography (PKC) was introduced to address key issues of Key Distribution Problem and Digital Signature Verification problems. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 3/22

  10. Introduction Cryptography has emerged as the practice or study of securing communications against third parties called adversaries. Public Key Cryptography (PKC) was introduced to address key issues of Key Distribution Problem and Digital Signature Verification problems. The two most widely used primitives of PKC are RSA and Elliptic Curve Cryptography. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 3/22

  11. Introduction Cryptography has emerged as the practice or study of securing communications against third parties called adversaries. Public Key Cryptography (PKC) was introduced to address key issues of Key Distribution Problem and Digital Signature Verification problems. The two most widely used primitives of PKC are RSA and Elliptic Curve Cryptography. Elliptic Curve Cryptography (ECC) has emerged as a strong alternative to RSA due to its property of more security per key bit. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 3/22

  12. Motivation ECC scalar multiplication algorithm is mathematically secure against the ECDLP problem. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 4/22

  13. Motivation ECC scalar multiplication algorithm is mathematically secure against the ECDLP problem. However ECC algorithms once implemented, the implementations suffer from side-channel leakage such as power (EM) leakage, timing leakage, acoustic leakage etc. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 4/22

  14. Motivation ECC scalar multiplication algorithm is mathematically secure against the ECDLP problem. However ECC algorithms once implemented, the implementations suffer from side-channel leakage such as power (EM) leakage, timing leakage, acoustic leakage etc. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 4/22

  15. Motivation ECC scalar multiplication algorithm is mathematically secure against the ECDLP problem. However ECC algorithms once implemented, the implementations suffer from side-channel leakage such as power (EM) leakage, timing leakage, acoustic leakage etc. Ladder, Unified Algorithm, Atomic formula: Countermeasure against Simple Power Analysis 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 4/22

  16. Motivation ECC scalar multiplication algorithm is mathematically secure against the ECDLP problem. However ECC algorithms once implemented, the implementations suffer from side-channel leakage such as power (EM) leakage, timing leakage, acoustic leakage etc. Ladder, Unified Algorithm, Atomic formula: Countermeasure against Simple Power Analysis Scalar Blinding, Point Coordinate Randomization: Countermeasure against Differential Power Analysis 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 4/22

  17. Motivation Horizontal Attacks are special attacks which threatens a SPA as well as DPA resistant implementation. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 5/22

  18. Motivation Horizontal Attacks are special attacks which threatens a SPA as well as DPA resistant implementation. It involves few (single) number of traces to break the entire secret key. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 5/22

  19. Motivation Horizontal Attacks are special attacks which threatens a SPA as well as DPA resistant implementation. It involves few (single) number of traces to break the entire secret key. Thus imposes a serious threat to ECC implementations. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 5/22

  20. Horizontal Collision Correlation Analysis (HCCA) First seminal work in Horizontal Attacks was Big Mac Attack by Walter et. al. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 6/22

  21. Horizontal Collision Correlation Analysis (HCCA) First seminal work in Horizontal Attacks was Big Mac Attack by Walter et. al. Big Mac Analysis followed several flavors of Horizontal attacks on the RSA-based exponentiation algorithms. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 6/22

  22. Horizontal Collision Correlation Analysis (HCCA) First seminal work in Horizontal Attacks was Big Mac Attack by Walter et. al. Big Mac Analysis followed several flavors of Horizontal attacks on the RSA-based exponentiation algorithms. Horizontal Collision Correlation Analysis or HCCA by Bauer et. al. put forward the idea of Horizontal Attacks in case of elliptic curve cryptography. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 6/22

  23. Horizontal Collision Correlation Analysis (HCCA) First seminal work in Horizontal Attacks was Big Mac Attack by Walter et. al. Big Mac Analysis followed several flavors of Horizontal attacks on the RSA-based exponentiation algorithms. Horizontal Collision Correlation Analysis or HCCA by Bauer et. al. put forward the idea of Horizontal Attacks in case of elliptic curve cryptography. HCCA threatens an atomic scheme ECC algorithm or unified ECC algorithm (Edward curve) with SPA, DPA resistance. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 6/22

  24. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  25. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. It is based on the following assumption: The adversary can detect when a pair of field multiplications have at least one operand in common 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  26. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. It is based on the following assumption: The adversary can detect when a pair of field multiplications have at least one operand in common If A , B , C and D be field multiplications considered without loss of generality, then following pairs can be defined 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  27. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. It is based on the following assumption: The adversary can detect when a pair of field multiplications have at least one operand in common If A , B , C and D be field multiplications considered without loss of generality, then following pairs can be defined ( A × B , A × B ): sharing both operands 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  28. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. It is based on the following assumption: The adversary can detect when a pair of field multiplications have at least one operand in common If A , B , C and D be field multiplications considered without loss of generality, then following pairs can be defined ( A × B , A × B ): sharing both operands ( A × B , C × B ): sharing one operand 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  29. Horizontal Collision Correlation Analysis (HCCA) HCCA is based on underlying field multiplications that constitute ECC point addition and doubling. It is based on the following assumption: The adversary can detect when a pair of field multiplications have at least one operand in common If A , B , C and D be field multiplications considered without loss of generality, then following pairs can be defined ( A × B , A × B ): sharing both operands ( A × B , C × B ): sharing one operand ( A × B , C × D ): sharing no operand 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 7/22

  30. Horizontal Collision Correlation Analysis (HCCA) Following properties have been defined: 29 / 09 / 2017 Debapriya Basu Roy, Proofs-2017 8/22

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco

Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco

Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco Regazzoni 23 October 2015, Chia, Italy P. 1 Contents 1 Motivations 2 DPA Resistant Synthesis 3 DPA Resistant Place and Route 4 DPA

1.01k views • 55 slides
Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras Side Channel Analysis Electro magnetic Radiation Fault injection Power consumption Timing channels Preventing Side Channel Attacks is

468 views • 34 slides
Multidimensional Ontology-Based Personalization Modeling for Automatic Generation of Mashups in

Multidimensional Ontology-Based Personalization Modeling for Automatic Generation of Mashups in

Multidimensional Ontology-Based Personalization Modeling for Automatic Generation of Mashups in Next-Generation Portals Fedor Bakalov University of Jena Birgitta Knig-Ries Andreas Nauerz IBM Research and Development Martin Welsch

263 views • 22 slides
Automatic Generation of Efficient Dynamic Binary Translators Fr ed eric P etrot, Luc

Automatic Generation of Efficient Dynamic Binary Translators Fr ed eric P etrot, Luc

Introduction DBT principle Design flow Intermediate Representation Generation Conclusion Automatic Generation of Efficient Dynamic Binary Translators Fr ed eric P etrot, Luc Michel and Nicolas Fournel Tima Laboratory , Grenoble,

686 views • 25 slides
Optimized or Balanced Mix Design Crack Resistant Rut Resistant Resistant to Moisture

Optimized or Balanced Mix Design Crack Resistant Rut Resistant Resistant to Moisture

Optimized or Balanced Mix Design Crack Resistant Rut Resistant Resistant to Moisture Damage 1 Balanced Mix Design: ETG Definition Asphalt mix design using performance tests on appropriately conditioned specimens that address

480 views • 46 slides
A Framework for Automatic Generation A Framework for Automatic Generation of Configuration Files

A Framework for Automatic Generation A Framework for Automatic Generation of Configuration Files

A Framework for Automatic Generation A Framework for Automatic Generation of Configuration Files for a Custom of Configuration Files for a Custom Hardware/Software RTOS Hardware/Software RTOS Jaehwan Lee* Lee* Jaehwan Kyeong Keol Keol Ryu

702 views • 29 slides
Automatic Generation of 100 Gbps Packet Parsers from P4 Description cek 1 s 1 a 2 Pavel Ben a

Automatic Generation of 100 Gbps Packet Parsers from P4 Description cek 1 s 1 a 2 Pavel Ben a

Automatic Generation of 100 Gbps Packet Parsers from P4 Description cek 1 s 1 a 2 Pavel Ben a Viktor Pu Hana Kub atov 1 Liberouter CESNET 2 Faculty of Information Technology Czech Technical University in Prague H 2 RC Workshop,

130 views • 12 slides
Automatic Synthesizer Preset Generation with PresetGen Kvan Tatar, Matthieu Macret, Philippe

Automatic Synthesizer Preset Generation with PresetGen Kvan Tatar, Matthieu Macret, Philippe

Automatic Synthesizer Preset Generation with PresetGen Kvan Tatar, Matthieu Macret, Philippe Pasquier ENGAGING THE WORLD The preset generation problem Modern synthesizers are very powerful and have many parameters resulting in a vast

543 views • 12 slides
ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS

ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS

ON THE AUTOMATIC GENERATION OF RECURSIVE ATTITUDE DETERMINATION ALGORITHMS Presented at the AAS GN&C Conference in Breckenridge, CO, on February the 7th, 2017 by Tucker McClure @ An Uncommon Lab WHAT ARE THE GOALS? EXAMINE

775 views • 29 slides
Earn CEU Credit Feature Focus: www . hcca - info . org / quiz see page 47 The new frontier: r

Earn CEU Credit Feature Focus: www . hcca - info . org / quiz see page 47 The new frontier: r

Health Care Compliance Association 888-580-8373 www.hcca-info.org ...continued from page Volume Twelve Number Eight August 2010 Published Monthly Meet the Co-Chairs of HCCAs New England Regional Conference, Lawrence Vernaglia

248 views • 10 slides
Languages, Ontologies and automatic grammar generation Pedro Rangel Henriques (M Joo

Languages, Ontologies and automatic grammar generation Pedro Rangel Henriques (M Joo

Languages, Ontologies and automatic grammar generation Pedro Rangel Henriques (M Joo Varanda Pereira) Dep. de Informtica Centro Algoritmi Universidade do Minho, Braga-Portugal UCM Madrid, 2016-07-12 Motivation This talk is about:

1.03k views • 63 slides
Automatic Generation of Efficient Accelerator Designs for Reconfigurable Hardware David

Automatic Generation of Efficient Accelerator Designs for Reconfigurable Hardware David

Automatic Generation of Efficient Accelerator Designs for Reconfigurable Hardware David Koeplinger Raghu Prabhakar Yaqi Zhang Christina Delimitrou Christos Kozyrakis Kunle Olukotun Stanford University ISCA 2016 FPGAs in Data Centers

299 views • 26 slides
Automatic Generation of I/O Kernels for HPC Applications Babak Behzad 1 , Hoang-Vu Dang 1 , Farah

Automatic Generation of I/O Kernels for HPC Applications Babak Behzad 1 , Hoang-Vu Dang 1 , Farah

Automatic Generation of I/O Kernels for HPC Applications Babak Behzad 1 , Hoang-Vu Dang 1 , Farah Hariri 1 , Weizhe Zhang 2 , Marc Snir 1 , 3 1 University of Illinois at Urbana-Champaign, 2 Harbin Institue of Technology, 3 Argonne National

537 views • 33 slides
Automatic generation of MedDRA terms groupings using an ontology Gunnar DECLERCK a , Cdric

Automatic generation of MedDRA terms groupings using an ontology Gunnar DECLERCK a , Cdric

Automatic generation of MedDRA terms groupings using an ontology Gunnar DECLERCK a , Cdric BOUSQUET a,b and Marie Christine JAULENT a a INSERM, UMRS 872 EQ20, Universit Paris Descartes, France. b Department of Public Health, CHU University

547 views • 27 slides
Ontology-based automatic generation of computerized cognitive exercises Giorgio Leonardi a,c ,

Ontology-based automatic generation of computerized cognitive exercises Giorgio Leonardi a,c ,

Oral presentation at MIE2011 Ontology-based automatic generation of computerized cognitive exercises Giorgio Leonardi a,c , Silvia Panzarasa b and Silvana Quaglini a Laboratory for Biomedical a Dept. Computer Eng. & Systems Science,

595 views • 23 slides
Automatic Testing of Symbolic Execution Engines via Program Generation and Differential Testing

Automatic Testing of Symbolic Execution Engines via Program Generation and Differential Testing

Automatic Testing of Symbolic Execution Engines via Program Generation and Differential Testing Timotej Kapus, Cristian Cadar Department of Computing Imperial College London if (x > 2294967295) { assert(false); } printf("x:

1.08k views • 45 slides
InS-DLA: An In-SSD Deep Learning Accelerator for Near-Data Processing Shengwen Liang 1,2 , Ying

InS-DLA: An In-SSD Deep Learning Accelerator for Near-Data Processing Shengwen Liang 1,2 , Ying

InS-DLA: An In-SSD Deep Learning Accelerator for Near-Data Processing Shengwen Liang 1,2 , Ying Wang 1,2 , Cheng Liu 1,2 Huawei Li 1,2,3 , Xiaowei Li 1,2 1 State Key Laboratory of Computer Architecture, Institute of Computing Technology, Chinese

894 views • 11 slides
DEDICATED RADIOSONDE VALIDATION MEASUREMENTS F. J. Schmidlin NASA Goddard Space Flight Center

DEDICATED RADIOSONDE VALIDATION MEASUREMENTS F. J. Schmidlin NASA Goddard Space Flight Center

DEDICATED RADIOSONDE VALIDATION MEASUREMENTS F. J. Schmidlin NASA Goddard Space Flight Center Observational Science Branch Wallops Island, Virginia 23337 UPPER AIR INSTRUMENTATION: RESEARCH AND PROJECTS IMPROVE AND/OR REFINE UPPER AIR

335 views • 16 slides
Side ide-Chan Channel nel Res Resis istant tant Scalar calar Multiplication ultiplication

Side ide-Chan Channel nel Res Resis istant tant Scalar calar Multiplication ultiplication

Side-Channel Resistant Scalar Multiplication Algorithms over Finite Fields Side ide-Chan Channel nel Res Resis istant tant Scalar calar Multiplication ultiplication Algorithms Algorithms ov over er Finite Finite Fields Fields

771 views • 27 slides
Follo lowin ing g De Derek ek's 's foots tstep eps s Feodor Dragan May, 2014 Dereks

Follo lowin ing g De Derek ek's 's foots tstep eps s Feodor Dragan May, 2014 Dereks

Follo lowin ing g De Derek ek's 's foots tstep eps s Feodor Dragan May, 2014 Dereks Primary Universe The talk is not about this Derek These footsteps are hard to follow Dereks Parallel Universe domination decomposition

740 views • 53 slides
Kindergarten Readiness Numeracy Workshop October 18, 2017 Amy Zappone Pre-k-12 Math Coordinator

Kindergarten Readiness Numeracy Workshop October 18, 2017 Amy Zappone Pre-k-12 Math Coordinator

Kindergarten Readiness Numeracy Workshop October 18, 2017 Amy Zappone Pre-k-12 Math Coordinator Southington Public Schools Key Shifts in Common Core Mathematics Focuses on Conceptual understanding (knowing the why and how)

413 views • 14 slides
33 rd APAN Meeting 2012 g Chiangmai, Thailand Feb 13 (Mon) - 17 (Fri), 2012 ( ) ( ), The

33 rd APAN Meeting 2012 g Chiangmai, Thailand Feb 13 (Mon) - 17 (Fri), 2012 ( ) ( ), The

33 rd APAN Meeting 2012 g Chiangmai, Thailand Feb 13 (Mon) - 17 (Fri), 2012 ( ) ( ), The Empress hotel & Convention Centre General Information The third APAN meeting in Thailand Chiang Mai located in the northern part of C g

501 views • 23 slides
6.02 Fall 2012 Lecture #5 Error correction for linear block codes - Syndrome decoding

6.02 Fall 2012 Lecture #5 Error correction for linear block codes - Syndrome decoding

6.02 Fall 2012 Lecture #5 Error correction for linear block codes - Syndrome decoding Burst errors and interleaving 6.02 Fall 2012 Lecture 5, Slide #1 Matrix Notation for Linear Block Codes Task: given k-bit message, compute n-bit

417 views • 18 slides
EdDSA signatures and Ed25519 Peter Schwabe Joint work with Daniel J. Bernstein, Niels Duif,

EdDSA signatures and Ed25519 Peter Schwabe Joint work with Daniel J. Bernstein, Niels Duif,

EdDSA signatures and Ed25519 Peter Schwabe Joint work with Daniel J. Bernstein, Niels Duif, Tanja Lange, and Bo-Yin Yang March 20, 2012 CARAMEL seminar, INRIA Nancy A few words about Taiwan and Academia Sinica Taiwan ( ) is an

1.16k views • 90 slides

More recommend