host sca countermeasures i ece 525 side channel analysis
play

HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) - PowerPoint PPT Presentation

Mar 20, 2024 •279 likes •479 views

HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) Countermeasures Reference Mangard et. al, "Power Analysis Attacks, Revealing the Secrets of Smart Cards", Springer, 2009 Power analysis attacks are effective because the

  1. HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) Countermeasures Reference Mangard et. al, "Power Analysis Attacks, Revealing the Secrets of Smart Cards", Springer, 2009 Power analysis attacks are effective because the power consumption of crypto devices depends on intermediate values The overall goal of countermeasures is to avoid or reduce these dependencies For hiding , the goal is to break the link between power consumption and the data being processed Here, the crypto devices execute the algo in the same way as un protected chips The hiding countermeasure makes it difficult to data mine the power traces Two general approaches • Build the chip such that the power consumption is random (during each clk cycle) • Build the chip such that it consumes an equal amount of power for all operations and data values processed Neither of these can be accomplished ’ideally’ in practice ECE UNM 1 (3/24/18)

  2. HOST SCA Countermeasures I ECE 525 SCA Countermeasures Several approaches have been proposed • Randomize power consumption by performing the operations of the crypto algo- rithm at different moments in time (affect the time dimension ) • Make the power consumption random or equal by modifying the power consump- tion characteristics of the operations (affect amplitude dimension ) Time Dimension Approaches DPA attacks on DES, etc. depend on the attacker knowing precisely how the chip executes the algorithm If the samples in the measured supply waveforms are not ’synchronized’, then the attack will not succeed, i.e., there will be no ’spikes’ or the spikes will be false. Countermeasures focus on making it difficult for the attacker to ’synchronize’ with the algorithm execution This is most commonly accomplished by random insertion of dummy operations and shuffling the operations ECE UNM 2 (3/24/18)

  3. HOST SCA Countermeasures I ECE 525 SCA Countermeasures A random number generator is used to determine how many dummy operations are inserted The number randomly varies from execution to execution of the algorithm (for obvi- ous reasons) but the total number remains the same Note that inserting lots of dummies impacts throughput For shuffling , the strategy is to randomly change the sequence of operations For example, S-box lookup operations can be randomized during each round Advantage is that shuffling does not impact throughput Unfortunately, the sequential nature of the algorithm limits what you can do using randomized execution Both shuffling and dummy delay insertion are often combined in practice ECE UNM 3 (3/24/18)

  4. HOST SCA Countermeasures I ECE 525 SCA Countermeasures Amplitude Dimension Approaches These techniques focus on reducing information leakage by lowering the signal-to- noise (SNR), ideally to 0 This is achieved by ensuring that power consumption is exactly equal for all opera- tions and data values (eliminate signal ) Or by increasing the amplitude of the noise, ideally to infinity For the latter, best approach is to carry out several independent operations in parallel Not all architectures support parallelism Another way is to use dedicated noise engines Note: if the noise is random, it will cancel out in the averaging process, so it must be correlated with non-critical operations in the chip Unfortunately, if enough examples plain/cyphertext pairs are available, noise can usually be eliminated (DPA is powerful) ECE UNM 4 (3/24/18)

  5. HOST SCA Countermeasures I ECE 525 Software Countermeasures For the former technique, two approaches are possible • Dedicated logic styles • Filter the power consumption More on this later The techniques that are effective vary depending on whether the crypto algorithm is running in software or by dedicated hardware engines For software implementations , the options available to alter the power traces are limited For the time dimension , the most common option is to randomize the algorithm’s exe- cution Both shuffling and dummy delay insertion are possible in software However, these techniques require random numbers , that are typically generated by a crypto chip ECE UNM 5 (3/24/18)

  6. HOST SCA Countermeasures I ECE 525 Software Countermeasures For the amplitude dimension , a choice exists with regard to which instructions are used to carry out the algorithm SPA can be prevented by selecting these instructions carefully, e.g., low-leakage instructions Unfortunately, this is usually not sufficient for DPA Beyond detecting specific instruction executions, attackers can also detect • Changes in program flow , e.g., conditional jumps and repeated basic blocks Conditional jumps that depend on the key (or data related to the key) should be AVOIDED! • Memory addressing that depend on the key If there is a dependency, then memory addresses with the same Hamming weight should be used Obscuring the signal can also be accomplished in software implementations by add- ing parallelism, e.g., using a coprocessor or communication interface ECE UNM 6 (3/24/18)

  7. HOST SCA Countermeasures I ECE 525 Hardware Countermeasures For hardware implementations , there are significantly more options available At the architecture level , in the time dimension , • Dummy operations and shuffling are possible • Operations are performed randomly (using a random number generator) using dummy data in extra registers • Randomly skip clock pulses, change clock frequency, and use multiple clock sources In any of these strategies, it is important that the attacker is not able to identify the insertions and modifications (obviously) At the architecture level , in the amplitude dimension , • Power consumption can be made equal by filtering A filter, e.g., switched capacitors, is placed between power pins of chip and the internal hardware crypto circuit • Generate noise in parallel with the computation, using random number generators connected to a network of large capacitors for random charging and discharging ECE UNM 7 (3/24/18)

  8. HOST SCA Countermeasures I ECE 525 Hardware Countermeasures It is important to realize that the measurement strategy adopted by the attacker impacts the effectiveness of these countermeasures, particularly noise generators Power can be monitored by • Small inserted resistors in series with the power supply connections • Current probes • EM emanation To deal with the latter, it is important to spatially distribute the noise sources on the chip Cell level hardware strategies Countermeasures taken at the cell level were quickly adopted by industry after SCA attacks became widely known The basic idea is to make power consumption constant , and independent of the data being processed in each clock cycle This effectively means that power in each clock is set to the max value ECE UNM 8 (3/24/18)

  9. HOST SCA Countermeasures I ECE 525 DPA-Resistant Logic Style Countermeasures Many approaches included here are classified under dual-rail precharge (DRP) logic styles Dual-rail implies that two (matched) wires are used to implement connections, one carrying a non-inverted value and the other the inverted value Also called differential encoding Precharge implies the circuit operating in a precharge-evaluate fashion, under con- trol of the clock In the precharge phase, all signal wires are changed to a constant value In evaluate, data is processed ECE UNM 9 (3/24/18)

  10. HOST SCA Countermeasures I ECE 525 DPA-Resistant Logic Style Countermeasures In DRP circuits, assuming the precharge state is 0, only one of the complementary signals transitions from 0 to 1, the other one remains at 0 DRP FFs DRP FF have two stages Stage 1 is in precharge , when stage 2 (and the DRP combo circuit) are in evalu- ate During precharge of stage 2, the stage 1 FFs store the logic values ECE UNM 10 (3/24/18)

  11. HOST SCA Countermeasures I ECE 525 DPA-Resistant Logic Style Countermeasures It is important to balance the capacitive loads on the outputs of the complementary signals (power consumption is proportional to these capacitances) From the figure, this requires balancing the self-capacitance, wire and downstream load capacitances Note that wire capacitances can dominate in modern technologies, so special routing is required Careful design of the DRP cells ensures that self and load capacitances, as well as internal nodes, are balanced ECE UNM 11 (3/24/18)

  12. HOST SCA Countermeasures I ECE 525 DPA-Resistant Logic Style Countermeasures Standard-cell design strategies are typically used to automate the chip generation process Behavioral synthesis tools can not work with DRP -- instead, a ’ single rail ’ (SR) design is processed and the netlist/layout updated to dual rail afterwards Also, typically, a single-rail external interface is usually required (plaintext inputs are usually provided in non-complimentary forms) Specialized processes associated with DRP ECE UNM 12 (3/24/18)

  13. HOST SCA Countermeasures I ECE 525 DPA-Resistant Logic Style Countermeasures High-level synthesis Concern here is to prevent any sensitive intermediate results from leaving the crytpo chip (Trojans?) Logic synthesis Constrain SR cell library to cells available in DRP library Logic style conversion Perform cell substitution, addition of complementary signal nets (on all except clock and asynch reset signals) + SR interface Note that SR inverters are removed -- not needed b/c DRP provides inversion for free Place and Route Must ensure capacitance (and resistance) are matched In practice, this is impossible because of coupling caps and process variations ECE UNM 13 (3/24/18)

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

HOST SCA Countermeasures II ECE 525 Introduction We propose a technique called Side-channel

HOST SCA Countermeasures II ECE 525 Introduction We propose a technique called Side-channel

HOST SCA Countermeasures II ECE 525 Introduction We propose a technique called Side-channel Power Resistance for Encryption Algo- rithms using Dynamic Partial Reconfiguration or SPREAD As a countermeasure to DPA, CPA and other types of

689 views • 10 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer ESC 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

476 views • 33 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer FSE 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

635 views • 30 slides
Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat DC February 21, 2008 Black Hat USA 2007 Agenda Advances in Embedded Systems Security From USB stick to game console Current

673 views • 42 slides
Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of

Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of

Plaintext: A Missing Feature for Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of side-channel countermeasures Anh-Tuan Hoang, Neil Hanley and Mire ONeill CHES 2020 14-18 September 2020 Outline

620 views • 21 slides
Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat

Side Channel Analysis and Embedded Systems Impact and Countermeasures Job de Haas Black Hat Europe 2008 Black Hat Europe 2008 Agenda Advances in Embedded Systems Security From USB stick to game console Current attacks

653 views • 42 slides
Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet

Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet

Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet nadia.el-mrabet@emse.fr Mines St Etienne WRACH2019, April 17, 2019 Side channel attacks Physical counter measures Algorithmic counter measures Arithmetical

900 views • 36 slides
Side-Channel Countermeasures Dissection and the Limits of Closed Source Security Evaluations

Side-Channel Countermeasures Dissection and the Limits of Closed Source Security Evaluations

Introduction Countermeasures Dissection Information Extraction Attack Results Closed Source Evaluation Conclusion Side-Channel Countermeasures Dissection and the Limits of Closed Source Security Evaluations Olivier Bronchain Fran

2.22k views • 189 slides
Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures

Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures

Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures Dahmun Goudarzi, Matthieu Rivain, Srinivas Vivek, and Damien Vergnaud Background 2 Secure Software S-box Implementations Higher-Order

636 views • 25 slides
Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco

Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco

Towards the Automatic Applications of Side Channel Countermeasures Francesco Regazzoni Francesco Regazzoni 23 October 2015, Chia, Italy P. 1 Contents 1 Motivations 2 DPA Resistant Synthesis 3 DPA Resistant Place and Route 4 DPA

1.01k views • 55 slides
Provably secure compilation of side-channel countermeasures: the case of cryptographic

Provably secure compilation of side-channel countermeasures: the case of cryptographic

Provably secure compilation of side-channel countermeasures: the case of cryptographic constant-time Gilles Barthe Benjamin Grgoire Vincent Laporte CSF18, 2018-07-12 Vincent Laporte et alii Provably secure compilation of

501 views • 25 slides
Side Channel Attacks and Countermeasures for Embedded Systems Job de Haas Black Hat USA

Side Channel Attacks and Countermeasures for Embedded Systems Job de Haas Black Hat USA

Side Channel Attacks and Countermeasures for Embedded Systems Job de Haas Black Hat USA August 2, 2007 Black Hat USA 2007 Agenda Advances in Embedded Systems Security From USB stick to game console Current attacks

533 views • 41 slides
Overview of Countermeasures against Implementation Attacks Marcel Medwed marcel.medwed@nxp.com

Overview of Countermeasures against Implementation Attacks Marcel Medwed marcel.medwed@nxp.com

Overview of Countermeasures against Implementation Attacks Marcel Medwed marcel.medwed@nxp.com Outline Motivation & general mechanisms Side-channel countermeasures Fault countermeasures Conclusions 2 Design and Security of

549 views • 40 slides
Side Channel Analysis & Countermeasures Begl Bilgin 27 Dec. 2014 - IAM Alumni Meeting

Side Channel Analysis & Countermeasures Begl Bilgin 27 Dec. 2014 - IAM Alumni Meeting

Side Channel Analysis & Countermeasures Begl Bilgin 27 Dec. 2014 - IAM Alumni Meeting Adversary Models 2 Adversary Models 2 Adversary Models Black-box Gray-box White-box 3 Adversary Models Black-box Gray-box White-box Key

1.45k views • 118 slides
Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curves Side-Channel Countermeasures Conclusion Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks Vincent Verneuil 1 , 2 1 Inside Secure 2 Institut de Math ematiques de Bordeaux S

2.22k views • 188 slides
Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with

Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with

Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with Stjepan Picek, Sylvain Guilley, Alan Jovic, Shivam Bhasin, Tania Richmond, Karlo Knezevic In this talk Short recap on side-channel analysis

4.52k views • 56 slides
Physical layer Encoding data into signals Computer networks Girts Strazdins, gist@ntnu.no, NTNU

Physical layer Encoding data into signals Computer networks Girts Strazdins, gist@ntnu.no, NTNU

Physical layer Encoding data into signals Computer networks Girts Strazdins, gist@ntnu.no, NTNU i lesund, 2020 Outline 1. Digital and analog data 2. Signaling, symbols, bitrate 3. Digital signaling 4. Analog signaling 5. Sender and

719 views • 53 slides
Signal Encoding Techniques Digital Data, Analog Signals Analog Data, Digital Signals ITS323:

Signal Encoding Techniques Digital Data, Analog Signals Analog Data, Digital Signals ITS323:

ITS323 Signal Encoding Introduction Digital Data, Digital Signals Signal Encoding Techniques Digital Data, Analog Signals Analog Data, Digital Signals ITS323: Introduction to Data Communications Analog Data, Analog Signals Sirindhorn

787 views • 40 slides
Everything I ever learned about JVM performance tuning @twitter 1 12. mrcius 3., szombat

Everything I ever learned about JVM performance tuning @twitter 1 12. mrcius 3., szombat

Everything I ever learned about JVM performance tuning @twitter 1 12. mrcius 3., szombat Everything More than I ever wanted to learned about JVM performance tuning @twitter 2 12. mrcius 3., szombat http://twitter.com/asz 3 12.

768 views • 59 slides
Overview Coding and Information Theory What is information theory? Entropy Coding Chris

Overview Coding and Information Theory What is information theory? Entropy Coding Chris

Overview Coding and Information Theory What is information theory? Entropy Coding Chris Williams Rate-distortion theory School of Informatics, University of Edinburgh Mutual information Channel capacity November 2007 Reading: Bishop 1.6

389 views • 5 slides
Entropy & Information Jill illes V s Vreeken 29 29 May 2015 2015 Qu Question o of f

Entropy & Information Jill illes V s Vreeken 29 29 May 2015 2015 Qu Question o of f

Entropy & Information Jill illes V s Vreeken 29 29 May 2015 2015 Qu Question o of f th the da day What is infor ormation tion? (and what do talking drums have to do with it?) Bit Bits a s and Piec Pieces es What are

592 views • 42 slides
FedSel: Federated SGD under Local Differential Privacy with Top-k Dimension Selection Ruixuan

FedSel: Federated SGD under Local Differential Privacy with Top-k Dimension Selection Ruixuan

FedSel: Federated SGD under Local Differential Privacy with Top-k Dimension Selection Ruixuan Liu 1 , Yang Cao 2 , Masatoshi Yoshikawa 2 , Hong Chen 1 1 Renmin University of China, 2 Kyoto University DASFAA, 2020 Federated Learning Overview

370 views • 35 slides
DATABASE SYSTEM IMPLEMENTATION GT 4420/6422 // SPRING 2019 // @JOY_ARULRAJ LECTURE #2: IN-MEMORY

DATABASE SYSTEM IMPLEMENTATION GT 4420/6422 // SPRING 2019 // @JOY_ARULRAJ LECTURE #2: IN-MEMORY

DATABASE SYSTEM IMPLEMENTATION GT 4420/6422 // SPRING 2019 // @JOY_ARULRAJ LECTURE #2: IN-MEMORY DATABASES 2 TODAYS AGENDA Background In-Memory DBMS Architectures Early Notable In-Memory DBMSs 3 LAST CLASS History of DBMSs In a way

1.08k views • 69 slides
Differential Fault Analysis against AES-192 and AES-256 with Minimal Faults Chong Hee KIM

Differential Fault Analysis against AES-192 and AES-256 with Minimal Faults Chong Hee KIM

Outline Differential Fault Analysis against AES-192 and AES-256 with Minimal Faults Chong Hee KIM Information Security Group Universit e Catholique de Louvain, Belgium August 21, 2010 Chong Hee KIM, Universit e Catholique de Louvain

797 views • 76 slides

More recommend