introduction to profiled side channel analysis
play

Introduction to (profiled) side-channel analysis Annelie Heuser In - PowerPoint PPT Presentation

Feb 18, 2023 •525 likes •1.28k views

Introduction to (profiled) side-channel analysis Annelie Heuser In this talk back to the basics!! details on power / EM leakage (low/high noise scenario) how/where to attack AES? di ff erent attacker models overview of

  1. Introduction to (profiled) side-channel analysis Annelie Heuser

  2. In this talk… • … back to the basics!! • details on power / EM leakage (low/high noise scenario) • how/where to attack AES? • di ff erent attacker models • overview of side-channel distinguishers • details on template attack and stochastic approach • side-channel evaluation metrics • ….

  3. Side-channel analysis cryptography Alice Bob Side-channel information secret key / 
 sensitive data Time Sound electromagnetic emanation

  4. Side-channel analysis Invasive hardware attacks, proceeding in two steps: 1) During cryptographic operations capture additional side-channel information • power consumption/ electromagnetic emanation • timing • noise, … Side- 2) Side-channel distinguisher to channel Input reveal the secret distinguisher

  5. Side-channel attacks • …are real in practice • Beginning 2016: FBI asks Apple to bypass their encryption • Handful methods to break into the encrypted iPhone ๏ software bugs ๏ side-channel attacks ๏ glitch attack ๏ invasive attacks Documents released by Snowden: NSA is studying the use of side-channel attacks to break into iPhones

  6. Side-channel attacks • …are real in practice • attacking Philips Hue smart lamps • side-channel attack revealed the global AES-CCM key used to encrypt and verify firmware updates • insert malicious update: lamps infect each other with a worm Paper: Eyal Ronen et al, IoT Goes that has the potential to Nuclear: Creating a ZigBee Chain control the device Reaction

  7. Observable leakage • In this talk: Power/EM as leakage source • register writing, loading / storing, computations • bytes, bits, nibbles, … (also architecture dependent) • coarse grained model: Hamming weight/distance model • fine grained model: intermediate states / key values

  8. Side-channel targets • Symmetric block ciphers • Asymmetric block ciphers • Signatures • Post-quantum schemes • hash-based message authentication code (HMAC) • …

  9. Symmetric key crypto • input: plaintext • output: ciphertext • secret key used for encryption and decryption • block ciphers: AES, lightweight ciphers: PRESENT • with side-channel information able to reveal secret key

  10. AES • plaintext/ciphertext: 
 128-bit • secret key: 128, 192, 256 bits with 10/12/14 rounds • each round distinct round key

  11. Side-channel attacks on AES • secret key: 128, 192, 256 bits (infeasible to iterate on) • side-channel attacks use divide-and-conquer • attack each byte independently • 256 key guesses, iteration easily possible • on embedded devices typically operating/processing on bytes • key byte information are mixed using MixColumns operation => attack before! • Typically first round or last round…

  12. SCA on AES (first round) label: SECRET

  13. SBox and key guesses • Toy example: • 6 plaintext bytes = [ 24 1 230 50 10 155]; • 3 key guesses = [ 1 2 3 ];

  14. SCA on AES (last round) label: or

  15. Dataset 1 • Low noise dataset - DPA contest v4 (publicly available) • Atmel ATMega-163 smart card connected to a SASEBO-W board • AES-256 RSM 
 (Rotating SBox Masking) • In this talk: 
 mask assumed known • used in this talk: 
 1 000 000

  16. Traces • Trace length regarding one S-box operation: 3000

  17. Traces • Trace length regarding one S-box operation: 3000

  18. Leakage • Attack first round • Correlation between HW of the Sbox output and traces

  19. Observable leakage • HWs of the Sbox output are easily distinguishable • Indications that the HW model not precise

  20. Observable leakage • Densities according to the Sbox output

  21. Observable leakage • Hamming weight grouping over time

  22. Dataset 2 • High noise dataset (still unprotected!) • AES-128 core was written in VHDL in a round based architecture (11 clock cycles for each encryption). • The design was implemented on Xilinx Virtex-5 FPGA of a SASEBO GII evaluation board. • used in this talk: 1 000 000 • publicly available on github: 
 https://github.com/AESHD/AES HD Dataset

  23. Traces • Complete trace length: 1250 • Trace length regarding one S-box operation: approx 150

  24. Traces • Complete trace length: 1250 • Trace length regarding one S-box operation: approx 150

  25. Leakage • Correlation between HD of the Sbox output (last round) and traces

  26. Observable leakage • High noise scenario: densities of HWs

  27. Observable leakage • High noise scenario: 256 classes

  28. Attacker models • un-profiled: 
 attacker only has access to the device under attack • weakest attacker, but more “robust" ATTACKING traces classification algorithm hypothetical labels secret

  29. Attacker models • profiled (traditional view): 
 attacker processes two devices - profiling and attacking • stronger attacker, but with more pitfalls…

  30. Side-channel attacks • Profiled: • Unprofiled: • Template attack • Di ff erence-of-means • Stochastic approach • Correlation Power Analysis (CPA) • Machine learning • Linear regression techniques Analysis • Deep learning • Deep learning techniques techniques (supervised)

  31. Unprofiled SCA # samples Traces Labels # points # key guesses # key guesses Output # points

  32. CPA ρ ( , ) Traces Labels # key guesses Output # points

  33. CPA • Dataset 1: Labels = output of the S-Box in the first round

  34. Profiled side-channel • Profiling phase: • classification (Template attack, SVM, RF , Deep learning) • regression (Stochastic approach) • Attacking phase: • maximum likelihood principle

  35. Profiled SCA • Profiling phase: building model La # samples Traces be ls # points key MODEL Algorithm

  36. Profiled SCA • For each trace in the attacking phase, get the probability that the trace belongs to a certain class label Trace Algorithm Probability MODEL

  37. Profiled SCA • Maximum likelihood principle to calculate that a set of traces belongs to a certain key } Trace Probabilities Probabilities Trace Probabilities Probabilities Trace key ranking … Trace Probabilities # key guesses

  38. Template attack • first profiled attack • optimal from an information theoretical point of view • may not be optimal in practice MODEL Algorithm Density estimation densities • often works with the pre-assumption that the noise is normal distributed • advantage of being easier to estimate: 
 mean and covariances for each class label • pooled version

  39. Template attack • Dataset 1: low noise • Assumption of normal distribution multivariate: means and covariances over a set of points

  40. Template attack • Dataset 2: high noise

  41. Stochastic Approach • uses regression instead of classification • estimate a function that models the leakage • constructive: may provide detailed feedback about leakage “source” MODEL Algorithm regression coe ffi cients/ 
 Linear regression beta-coe ffi cients

  42. Stochastic Approach • Regressors/ “basis (functions)” for linear regression: • 9-dimensional basis: const + bits • 37-dimensional basis: const + bits + prod 2 bits • 92-dimensional basis: const + bits + prod 2 bits + prod 3 bits • … • 256-dimensional basis: const + bits + prod 2 bits + prod 3 bits + prod 4 bit + prod 5 bit + prod 6 bit + … + prod 8 bit

  43. Stochastic Approach • Dataset 1: low noise • Basis: 9-dimensional

  44. Stochastic Approach • Dataset 1: low noise • 9-dim basis, zoom in

  45. Stochastic Approach • Dataset 1: low noise • 9-dim basis, zoom in

  46. Stochastic Approach • Dataset 1: low noise • 37-dim basis, zoom in

  47. Stochastic Approach • Dataset 2: high noise

  48. Stochastic Approach • Dataset 2: high noise • zoom in

  49. Constructiveness? Michael Kasper, Werner Schindler, Marc Stöttinger: 
 A stochastic method for security evaluation of cryptographic FPGA implementations. FPT 2010: 146-153

  50. Success rate • Success rate: average estimated probability of success • empirically: using measurements/ simulations • theoretically: using closed-form expressions 
 • For CPA and template attack the theoretical success rate depends on 3 factors • number of measurements • signal-to-noise ratio • confusion coe ffi cient Yunsi Fei, Qiasi Luo, A. Adam Ding: 
 A Statistical Model for DPA with Novel Algorithmic Confusion Analysis. CHES 2012: 233-250

  51. Confusion Coefficient • Interestingly, predictions for di ff erent key guesses are not independent • Confusion coe ffi cient describes the relationship • (simplified) metric: the lower the minimum confusion coe ffi cient (over all keys) the higher the side-channel resistance Sylvain Guilley, Annelie Heuser, Olivier Rioul: 
 A Key to Success - Success Exponents for Side-Channel Distinguishers. INDOCRYPT 2015: 270-290

  52. SBoxes • SBoxes with optimal cryptographic properties 4-bit S-boxes • KLEIN • Midori (1/2) • Mysterion 8-bit S-boxes • Piccolo • AES • PRESENT / LED • Robin • Pride • Zorro • PRINCE • Rectangle A Heuser, S Picek, S Guilley, N Mentens • Skinny Lightweight ciphers and their side-channel resilience, IEEE Transactions on Computers

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Non-Profiled Deep Learning-based Side-Channel attacks with Sensitivity Analysis Benjamin Timon

Non-Profiled Deep Learning-based Side-Channel attacks with Sensitivity Analysis Benjamin Timon

Non-Profiled Deep Learning-based Side-Channel attacks with Sensitivity Analysis Benjamin Timon August 28, 2019 Python notebook presentation for CHES 2019 1 Introduction & Motivation Profiled vs Non-Profiled attacks Machine Learning trend

407 views • 14 slides
Profiled Side-Channel Analysis Guilherme Perin , Lukasz Chmielewski, Stjepan Picek In

Profiled Side-Channel Analysis Guilherme Perin , Lukasz Chmielewski, Stjepan Picek In

Conference on Cryptographic Hardware and Embedded Systems (CHES) 2020 Strength in Numbers: Improving Generalization with Ensembles in Machine Learning-based Profiled Side-Channel Analysis Guilherme Perin , Lukasz Chmielewski, Stjepan Picek In

468 views • 25 slides
Mind The Portability A Warriors Guide through Realistic Profiled Side-channel Analysis Shivam

Mind The Portability A Warriors Guide through Realistic Profiled Side-channel Analysis Shivam

Mind The Portability A Warriors Guide through Realistic Profiled Side-channel Analysis Shivam Bhasin 1 , Dirmanto Jap 1 , Anupam Chattopadhyay 1 , Stjepan Picek 2 , Annelie Heuser 3 , and Ritu Ranjan Shrivastwa 4 1 NTU, Singapore 2 TU Delft,

335 views • 22 slides
Make Some Noise Unleashing the Power of Convolutional Neural Networks for Profiled Side-channel

Make Some Noise Unleashing the Power of Convolutional Neural Networks for Profiled Side-channel

Make Some Noise Make Some Noise Unleashing the Power of Convolutional Neural Networks for Profiled Side-channel Analysis Jaehun Kim 1 Stjepan Picek 1 Annelie Heuser 2 Shivam Bhasin 3 Alan Hanjalic 1 Delft University of Technology, Delft, The

537 views • 36 slides
Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with

Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with

Recent advances in side- channel analysis using machine learning techniques Annelie Heuser with Stjepan Picek, Sylvain Guilley, Alan Jovic, Shivam Bhasin, Tania Richmond, Karlo Knezevic In this talk Short recap on side-channel analysis

4.52k views • 56 slides
Introduction to Side-Channel Analysis Franois-Xavier Standaert UCL Crypto Group, Belgium

Introduction to Side-Channel Analysis Franois-Xavier Standaert UCL Crypto Group, Belgium

Introduction to Side-Channel Analysis Franois-Xavier Standaert UCL Crypto Group, Belgium Summer school on real-world crypto, 2016 Outline Link with linear cryptanalysis Standard Differential Power Analysis Noise-based security (is

1.17k views • 92 slides
SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna Ors Yal cn Istanbul Technical University Department of Electronics and Communication Engineering Introduction A side-channel analysis attack

1.81k views • 99 slides
Glitching and Side-Channel Analysis for All Colin OFlynn NewAE Technology Inc. RECON 2015

Glitching and Side-Channel Analysis for All Colin OFlynn NewAE Technology Inc. RECON 2015

Glitching and Side-Channel Analysis for All Colin OFlynn NewAE Technology Inc. RECON 2015 Montreal, QC. Overview W.t.f is side-channel power analysis (again) Example: IEEE 802.15.4 Node Example: AES-256 Bootloader W.t.f.

633 views • 47 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer ESC 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

476 views • 33 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer FSE 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

635 views • 30 slides
Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of

Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of

Plaintext: A Missing Feature for Enhancing the Power of Deep Learning in Side-Channel Analysis? Breaking multiple layers of side-channel countermeasures Anh-Tuan Hoang, Neil Hanley and Mire ONeill CHES 2020 14-18 September 2020 Outline

620 views • 21 slides
A Comprehensive Study of Deep Learning for Side-Channel Analysis c Masure 1,3 ecile Dumas 1

A Comprehensive Study of Deep Learning for Side-Channel Analysis c Masure 1,3 ecile Dumas 1

A Comprehensive Study of Deep Learning for Side-Channel Analysis A Comprehensive Study of Deep Learning for Side-Channel Analysis c Masure 1,3 ecile Dumas 1 Emmanuel Prouff 2, 3 Lo C 1 Univ. Grenoble Alpes, CEA, LETI, DSYS, CESTI, F-38000

1.39k views • 86 slides
Symbolic Approach for Side-Channel Resistance Analysis of Masked Assembly Codes Workshop PROOFS

Symbolic Approach for Side-Channel Resistance Analysis of Masked Assembly Codes Workshop PROOFS

Introduction / Motivation Symbolic Method Experiments Conclusion Symbolic Approach for Side-Channel Resistance Analysis of Masked Assembly Codes Workshop PROOFS In` es Ben El Ouahma Quentin Meunier Karine Heydemann Emmanuelle Encrenaz

271 views • 25 slides
Improved Blind Side-Channel Analysis by Exploitation of Joint Distributions of Leakages Christophe

Improved Blind Side-Channel Analysis by Exploitation of Joint Distributions of Leakages Christophe

Improved Blind Side-Channel Analysis by Exploitation of Joint Distributions of Leakages Christophe Clavier, L eo Reynaud Universit e de Limoges - XLIM Introduction Joint distributions and maximum of likelihood Extension to masked

657 views • 31 slides
HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) Countermeasures Reference

HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) Countermeasures Reference

HOST SCA Countermeasures I ECE 525 Side-Channel Analysis (SCA) Countermeasures Reference Mangard et. al, "Power Analysis Attacks, Revealing the Secrets of Smart Cards", Springer, 2009 Power analysis attacks are effective because the

479 views • 19 slides
+ Side Channel and Covert Channel A1acks on Microkernel

+ Side Channel and Covert Channel A1acks on Microkernel

+ Side Channel and Covert Channel A1acks on Microkernel Architectures WAMOS 2015 Advanced Opera3ng Systems Hochschule RheinMain Alexander Baumgrtner and

539 views • 25 slides
Tutorial on Probabilistic Programming in Machine Learning Frank Wood Play Along 1. Download

Tutorial on Probabilistic Programming in Machine Learning Frank Wood Play Along 1. Download

Tutorial on Probabilistic Programming in Machine Learning Frank Wood Play Along 1. Download and install Leiningen http://leiningen.org/ 2. Fork and clone the Anglican Examples repository git@bitbucket.org:fwood/anglican-examples.git

806 views • 53 slides
(MLE) Ken Kreutz-Delgado (Nuno Vasconcelos) ECE 175A Winter 2012 UCSD Statistical

(MLE) Ken Kreutz-Delgado (Nuno Vasconcelos) ECE 175A Winter 2012 UCSD Statistical

Maximum Likelihood Estimation (MLE) Ken Kreutz-Delgado (Nuno Vasconcelos) ECE 175A Winter 2012 UCSD Statistical Learning Goal: Given a relationship between a feature vector x and a vector y , and iid data samples ( x i ,y i ), find an

661 views • 48 slides
Likelihood-Based Statistical Decisions Marco Cattaneo Seminar for Statistics ETH Z urich,

Likelihood-Based Statistical Decisions Marco Cattaneo Seminar for Statistics ETH Z urich,

Likelihood-Based Statistical Decisions Marco Cattaneo Seminar for Statistics ETH Z urich, Switzerland July 23, 2005 Likelihood Function set of statistical models { P : } observation A likelihood function lik : P

372 views • 26 slides
10-701 Probability and MLE (brief) intro to probability Basic notations Random variable -

10-701 Probability and MLE (brief) intro to probability Basic notations Random variable -

10-701 Probability and MLE (brief) intro to probability Basic notations Random variable - referring to an element / event whose status is unknown: A = it will rain tomorrow Domain (usually denoted by ) - The set of values a

755 views • 53 slides
Statistical Tests Matthieu de Lapparent matthieu.delapparent@epfl.ch Transport and Mobility

Statistical Tests Matthieu de Lapparent matthieu.delapparent@epfl.ch Transport and Mobility

Statistical Tests Matthieu de Lapparent matthieu.delapparent@epfl.ch Transport and Mobility Laboratory, School of Architecture, Civil and Environmental Engineering, Ecole Polytechnique F ed erale de Lausanne Transport and Mobility

884 views • 65 slides
Statistical Tests Amanda Stathopoulos amanda.stathopoulos@epfl.ch Transport and Mobility

Statistical Tests Amanda Stathopoulos amanda.stathopoulos@epfl.ch Transport and Mobility

Statistical Tests Amanda Stathopoulos amanda.stathopoulos@epfl.ch Transport and Mobility Laboratory, School of Architecture, Civil and Environmental Engineering, Ecole Polytechnique F ed erale de Lausanne Transport and Mobility Laboratory

978 views • 72 slides
RooStats Lecture and Tutorials Lorenzo Moneta (CERN) Terascale Alliance School and Workshop,

RooStats Lecture and Tutorials Lorenzo Moneta (CERN) Terascale Alliance School and Workshop,

RooStats Lecture and Tutorials Lorenzo Moneta (CERN) Terascale Alliance School and Workshop, Bonn, 20-22 August 2012 Outline Introduction to RooStats Model building with RooFit brief introduction to RooFit slides from W. Verkerke, NIKHEF),

926 views • 64 slides
X-RAY SPECTRAL WORKSHOP 2019 POISSON STATISTICS WITH BACKGROUNDS Background measurement Image

X-RAY SPECTRAL WORKSHOP 2019 POISSON STATISTICS WITH BACKGROUNDS Background measurement Image

J. MICHAEL BURGESS - MPE X-RAY SPECTRAL WORKSHOP 2019 POISSON STATISTICS WITH BACKGROUNDS Background measurement Image via Vianello (2018) POISSON STATISTICS WITH BACKGROUNDS POISSON OBSERVATION + POISSON BACKGROUND Background measurement

1.52k views • 106 slides

More recommend