template attack vs bayes classifier
play

Template Attack vs. Bayes Classifier Stjepan Picek 1 Annelie Heuser 2 - PowerPoint PPT Presentation

Dec 31, 2023 •324 likes •701 views

Template Attack vs. Bayes Classifier Template Attack vs. Bayes Classifier Stjepan Picek 1 Annelie Heuser 2 Sylvain Guilley 2 1 KU Leuven, Belgium 2 TELECOM-ParisTech, Paris, France PROOFS, Santa Barbara August 20, 2016 1 / 32 Template Attack

  1. Template Attack vs. Bayes Classifier Template Attack vs. Bayes Classifier Stjepan Picek 1 Annelie Heuser 2 Sylvain Guilley 2 1 KU Leuven, Belgium 2 TELECOM-ParisTech, Paris, France PROOFS, Santa Barbara August 20, 2016 1 / 32

  2. Template Attack vs. Bayes Classifier Outline 1 Introduction 2 Machine Learning 3 Profiled SCA 4 Experimental Evaluation 5 Observations 6 Conclusions 2 / 32

  3. Template Attack vs. Bayes Classifier Introduction Outline 1 Introduction 2 Machine Learning 3 Profiled SCA 4 Experimental Evaluation 5 Observations 6 Conclusions 3 / 32

  4. Template Attack vs. Bayes Classifier Introduction Short Intro to Implementation Attacks and SCA Implementation attacks Implementation attacks do not aim at the weaknesses of the algorithm itself, but on the actual implementations on cryptographic devices. Implementation attacks can be categorized on active and passive attacks. In passive attacks, the device operates within its specification and the attacker just reads hidden signals. Side-channel attacks (SCA) belong into passive, non-invasive attacks. Side-channel attacks represent one of the most powerful category of attacks on cryptographic devices. 4 / 32

  5. Template Attack vs. Bayes Classifier Introduction Profiled Attacks Profiled attacks have a prominent place as the most powerful among side channel attacks. Within profiling phase the adversary estimates leakage models for targeted intermediate computations, which are then exploited to extract secret information in the actual attack phase. Template Attack (TA) is the most powerful attack from the information theoretic point of view. TA efficiency can only be guaranteed when the template estimates are provided with an reasonable amount of traces in the profiling phase. Some machine learning (ML) techniques also belong to the profiled attacks. 5 / 32

  6. Template Attack vs. Bayes Classifier Introduction Motivation Motivation When working with ML, methods used up to now belong to more powerful ML techniques. However, when using such powerful methods, space and time complexity grows significantly. Tuning phase is a long process where one cannot be sure in the results. It is difficult to explain on an intuitive level what is happening. Finally, it becomes very difficult to follow some more theoretical framework. Accordingly, our goal is to explore some simpler ML techniques where there is also a clear connection between those methods and TA. 6 / 32

  7. Template Attack vs. Bayes Classifier Machine Learning Outline 1 Introduction 2 Machine Learning 3 Profiled SCA 4 Experimental Evaluation 5 Observations 6 Conclusions 7 / 32

  8. Template Attack vs. Bayes Classifier Machine Learning Introduction to ML Machine learning (ML) is a subfield of computer science that evolved from the study of pattern recognition and computational learning theory. Algorithms extract information from data, however, they also learn a model to discover something about the data in the future. Today, there exists a plenitude of ML algorithms when could choose from. Machine Learning A computer program is said to learn from experience E with respect to some task T and some performance measure P, if its performance on T, as measured with P, improves with experience E. 8 / 32

  9. Template Attack vs. Bayes Classifier Machine Learning Types of ML Types of ML on a Basis of Feedback Supervised learning - available data also include information how to correctly classify at least a part of data. Unsupervised learning - input data does not tell the algorithm what the clusters should be. Reinforcement learning. Active learning. 9 / 32

  10. Template Attack vs. Bayes Classifier Machine Learning When to use ML What can we do with ML Regression. Feature selection. Prototyping. Classification. Clustering 10 / 32

  11. Template Attack vs. Bayes Classifier Machine Learning When to use ML What can we do with ML Regression. Feature selection. Prototyping. Classification. Clustering 10 / 32

  12. Template Attack vs. Bayes Classifier Machine Learning When to use ML What can we do with ML Regression. Feature selection. Prototyping. Classification. Clustering 10 / 32

  13. Template Attack vs. Bayes Classifier Machine Learning When to use ML What can we do with ML Regression. Feature selection. Prototyping. Classification. Clustering 10 / 32

  14. Template Attack vs. Bayes Classifier Machine Learning When to use ML What can we do with ML Regression. Feature selection. Prototyping. Classification. Clustering 10 / 32

  15. Template Attack vs. Bayes Classifier Machine Learning When to use ML No Free Lunch No Free Lunch There exists no single model that works best for every problem. To find the best model for a certain problem, numerous algorithms and parameter combinations should be tested. Not even then we can be sure that we found the best model, but at least we should be able to estimate the possible trade-offs between the speed, accuracy, and complexity of the obtained models. 11 / 32

  16. Template Attack vs. Bayes Classifier Machine Learning ML model ML model Training set consists of pairs ( x , y ) called training examples. x is a feature vector, y is a label (classification value for x ). Objective is to find function y = f ( x ). if y is a real number → regression. y is a Boolean variable → binary classification. y is member of a finite set → multiclass classification. 12 / 32

  17. Template Attack vs. Bayes Classifier Machine Learning ML model ML architecture 13 / 32

  18. Template Attack vs. Bayes Classifier Profiled SCA Outline 1 Introduction 2 Machine Learning 3 Profiled SCA 4 Experimental Evaluation 5 Observations 6 Conclusions 14 / 32

  19. Template Attack vs. Bayes Classifier Profiled SCA Profiled Attacks We are particularly interested in multivariate leakage � X = X 1 , . . . , X D , where D is the data dimensionality (i.e., the number of time samples per measurement trace). In order to guess the secret key an attacker chooses a model Y depending on a key guess k and on some known text T . Considering a powerful attacker, a set of N profiling traces X 1 , . . . , � � X N is used in order to estimate the leakage model beforehand, which can then be used in the attacking phase with � X 1 , . . . , � X Q traces. 15 / 32

  20. Template Attack vs. Bayes Classifier Profiled SCA Template Attack Template Attack Given � X 1 , . . . , � X N measurements in the profiling phase the template attack (TA) consists in estimating ˆ P ( � X | Y = y ) for all possible values of y . In the attack phase the attacker uses a new set of measurements � X 1 , . . . , � X Q and decides for a key ˆ k given by ˆ ˆ � P ( � k = arg max X | Y ( k )) . k ∈K X 1 ,...,� � X Q 16 / 32

  21. Template Attack vs. Bayes Classifier Profiled SCA Naive Bayes Naive Bayes Naive Bayes is a method based on the Bayesian rule, but it works under a simplifying assumption that the predictor attributes (measurements) are mutually independent among the D features given the target class. Existence of highly-correlated attributes in a dataset can thus influence the learning process and reduce the number of successful predictions. D � p ( Y = y | X = x ) = p ( Y = y ) p ( X i = x i | Y = y ) . i =1 17 / 32

  22. Template Attack vs. Bayes Classifier Profiled SCA Averaged n-Dependence Estimators A0DE If the assumption of independence is violated, Naive Bayes may result in high precision loss. In Averaged One-Dependence Estimators there is a Super-Parent One-Dependence Estimate that relaxes the assumption of independence by making all other attributes independent given the class and one privileged attribute called the super-parent x α . Since this is a weaker assumption, the bias of this model should be lower, while the variance should be higher since it is derived from higher-order probability estimates. D � p ( Y = y | X = x ) = p ( Y = y , x α ) p ( X i = x i | Y i = y i , x α ) . i =1 18 / 32

  23. Template Attack vs. Bayes Classifier Profiled SCA Averaged n-Dependence Estimators AnDE AnDE algorithm works by learning an ensemble of n -dependence classifiers where the prediction is obtained by aggregating the predictions of all classifiers. n -dependence estimator means that the probability of an attribute is conditioned by the class variable and at most n other attributes. In AnDE algorithm, an n -dependence classifier is constructed for every combination of n attributes where those n attributes are set as parents to all other attributes. D � � D � � p ( Y = y | X = x ) = p ( Y = y , x s ) p ( X i = x i | Y i = y i , x s ) / , n s ∈ S n i =1 19 / 32

  24. Template Attack vs. Bayes Classifier Experimental Evaluation Outline 1 Introduction 2 Machine Learning 3 Profiled SCA 4 Experimental Evaluation 5 Observations 6 Conclusions 20 / 32

  25. Template Attack vs. Bayes Classifier Experimental Evaluation Datasets Datasets Datasets with 5 000, 10 000, 20 000, 30 000, 50 000, and 100 000 measurements which are randomly selected from the whole data sets. 2/3 of the data is for training and 1/3 for testing. The number of features equals 50 and the model consists either of 256 uniformly distributed classes (S-box output) or 9 binomial distributed classes (HW of the S-box output). DPAcontest v2 → provides measurements of an AES hardware implementation. DPAcontest v4 → provides measurements of a masked AES software implementation. 21 / 32

  26. Template Attack vs. Bayes Classifier Experimental Evaluation Datasets DPAcontest v2 22 / 32

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Lecture 9: Nave Bayes Classifier (contd.) Logistic Regression Discriminative vs.

Lecture 9: Nave Bayes Classifier (contd.) Logistic Regression Discriminative vs.

Lecture 9: Nave Bayes Classifier (contd.) Logistic Regression Discriminative vs. Generative Classification Linear Discriminant Functions Aykut Erdem October 2016 Hacettepe University Last time Nave Bayes Classifier

822 views • 63 slides
DATA MINING: NAVE BAYES 1 Nave Bayes Classifier Thomas Bayes 1702 - 1761 We will start off

DATA MINING: NAVE BAYES 1 Nave Bayes Classifier Thomas Bayes 1702 - 1761 We will start off

DATA MINING: NAVE BAYES 1 Nave Bayes Classifier Thomas Bayes 1702 - 1761 We will start off with some mathematical background. But first we start with some visual intuition. 2 Grasshoppers Katydids 10 9 8 7 Antenna Length 6 5 4

1.29k views • 61 slides
The Nave Bayes Classifier Machine Learning 1 Todays lecture The nave Bayes Classifier

The Nave Bayes Classifier Machine Learning 1 Todays lecture The nave Bayes Classifier

The Nave Bayes Classifier Machine Learning 1 Todays lecture The nave Bayes Classifier Learning the nave Bayes Classifier Practical concerns 2 Todays lecture The nave Bayes Classifier Learning the nave Bayes

1.03k views • 84 slides
Lecture 8: Maximum a Posteriori (MAP) Nave Bayes Classifier Applications Aykut Erdem

Lecture 8: Maximum a Posteriori (MAP) Nave Bayes Classifier Applications Aykut Erdem

Lecture 8: Maximum a Posteriori (MAP) Nave Bayes Classifier Applications Aykut Erdem November 2018 Hacettepe University Assignment 2 is out! It is due November 24 (i.e. in 2 weeks) Implement Naive Bayes classifier for fake

788 views • 65 slides
Naive Bayes and Gaussian Bayes Classifier Ladislav Rampasek slides by Mengye Ren and others

Naive Bayes and Gaussian Bayes Classifier Ladislav Rampasek slides by Mengye Ren and others

Naive Bayes and Gaussian Bayes Classifier Ladislav Rampasek slides by Mengye Ren and others February 22, 2016 Naive Bayes and Gaussian Bayes Classifier February 22, 2016 1 / 21 Naive Bayes Bayes Rule: p ( t | x ) = p ( x | t ) p ( t ) p (

365 views • 21 slides
Machine Learning and Data Mining 2 : Bayes Classifiers Kalev Kask A basic classifier

Machine Learning and Data Mining 2 : Bayes Classifiers Kalev Kask A basic classifier

+ Machine Learning and Data Mining 2 : Bayes Classifiers Kalev Kask A basic classifier Training data D={x (i) ,y (i) }, Classifier f(x ; D) Discrete feature vector x f(x ; D) is a contingency table Ex: credit rating prediction

459 views • 45 slides
Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What

Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What

Spam Filtering with Naive Bayes Classifier Yuriy Arabskyy June 6, 2017 Table of contents What is spam? Different spam types Anti-Spam Techniques Probability theory basics Conditional probability Bayes Theorem Naive Bayes Theorem Spam

1.04k views • 27 slides
Chapter IX: Classification* 1. Basic idea 2. Decision trees 3. Nave Bayes classifier 4.

Chapter IX: Classification* 1. Basic idea 2. Decision trees 3. Nave Bayes classifier 4.

Chapter IX: Classification* 1. Basic idea 2. Decision trees 3. Nave Bayes classifier 4. Support vector machines 5. Ensemble methods * Zaki & Meira: Ch. 18, 19, 21, 22; Tan, Steinbach & Kumar: Ch. 4, 5.35.6 IR&DM 13/14 16

582 views • 42 slides
Learning: Nave Bayes Classifier CE417: Introduction to Artificial Intelligence Sharif

Learning: Nave Bayes Classifier CE417: Introduction to Artificial Intelligence Sharif

Learning: Nave Bayes Classifier CE417: Introduction to Artificial Intelligence Sharif University of Technology Spring 2018 Soleymani Slides are based on Klein and Abdeel, CS188, UC Berkeley. Machine Learning Up until now: how use a model

964 views • 45 slides
STAT 339 Naive Bayes Classification 8-10 March 2017 Colin Reimer Dawson Outline Naive Bayes

STAT 339 Naive Bayes Classification 8-10 March 2017 Colin Reimer Dawson Outline Naive Bayes

STAT 339 Naive Bayes Classification 8-10 March 2017 Colin Reimer Dawson Outline Naive Bayes Classification Naive Bayes Classifier Using MLE Parameter Estimates Bayesian Naive Bayes Continuous Features Mixed Feature Types Back to Supervised

530 views • 21 slides
Introduction to Artificial Intelligence CoreNLP, Semantic Analysis, Naives Bayes Classifier

Introduction to Artificial Intelligence CoreNLP, Semantic Analysis, Naives Bayes Classifier

Introduction to Artificial Intelligence CoreNLP, Semantic Analysis, Naives Bayes Classifier Janyl Jumadinova November 18, 2016 CoreNLP Reference: http://stanfordnlp.github.io/CoreNLP/ Package available in /opt/corenlp/ Run: java -cp

696 views • 34 slides
Bayes Classifier (slides borrowed from Tom Mitchell, Barnabs Pczos & Aarti Singh 1 Joint

Bayes Classifier (slides borrowed from Tom Mitchell, Barnabs Pczos & Aarti Singh 1 Joint

CSCI 4520 - Introduction to Machine Learning Mehdi Allahyari Georgia Southern University Bayes Classifier (slides borrowed from Tom Mitchell, Barnabs Pczos & Aarti Singh 1 Joint Distribution: sounds like the solution to learning F: X

812 views • 53 slides
The Bayes Optimal Classifier Machine Learning 1 Most probable classification In Bayesian

The Bayes Optimal Classifier Machine Learning 1 Most probable classification In Bayesian

The Bayes Optimal Classifier Machine Learning 1 Most probable classification In Bayesian learning, the primary question is: What is the most probable hypothesis given data? We can also ask: For a new test point, what is the most

442 views • 12 slides
A template attack against Verify PIN algorithms Hlne Le Bouder, Thierno Barry, Damien

A template attack against Verify PIN algorithms Hlne Le Bouder, Thierno Barry, Damien

A template attack against Verify PIN algorithms Hlne Le Bouder, Thierno Barry, Damien Courouss, Jean-Louis Lanet and Ronan Lashermes July 27th 2016 A template attack against Verify PIN algorithms Le Bouder et al. July 27th 2016 1/23

590 views • 30 slides
Tuple Space Explosion: A Denial-of-Service Attack Against a Software Packet Classifier Levente

Tuple Space Explosion: A Denial-of-Service Attack Against a Software Packet Classifier Levente

Tuple Space Explosion: A Denial-of-Service Attack Against a Software Packet Classifier Levente Csikor, Min Suk Kang, Dinil Mon Divakaran Attila K rsi, Dvid Haja, Balzs Sonkoly, Dimitrios P. Pezaros, Stefan Schmid, Gbor Rtvri

773 views • 31 slides
TERM PROJECT Classifying Tweets Using Nave Bayes Classifier CSC 177 Spring 2020 Andrew

TERM PROJECT Classifying Tweets Using Nave Bayes Classifier CSC 177 Spring 2020 Andrew

TERM PROJECT Classifying Tweets Using Nave Bayes Classifier CSC 177 Spring 2020 Andrew Flores, Hera Flores Agenda Demo Motivation Background Knowledge Lessons Learned Scope of the Project Future work Approach

609 views • 34 slides
Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany

Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany

Probabilistic Slide Cryptanalysis and Its Applications to LED-64 and Zorro Hadi Soleimany Department of Information and Computer Science, Aalto University School of Science, Finland FSE 2014 1 / 21 Outline Introduction Slide Cryptanalysis

712 views • 49 slides
You need to get into a vault Try all combinations. Try a subset of combinations.

You need to get into a vault Try all combinations. Try a subset of combinations.

4/25/08 You need to get into a vault Try all combinations. Try a subset of combinations. Exploit weaknesses in the locks design. Open the door (drilling, torch, ). Back-door access: walls, ceiling, floor. Observe

663 views • 41 slides
Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models,

Important Examples of Cyber-Physical Systems Cyber-Physical Systems under Attack Models, Fundamental Limitations, and Monitor Design Fabio Pasqualetti Florian D orfler Francesco Bullo Center for Control, Dynamical systems and Computation

994 views • 11 slides
Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU

Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU

Introduction Three Easy, Automated Techniques Tools for Cryptography Conclusion Cryptanalysis of Symmetric-Key Primitives: Automated Techniques Nicky Mouha ESAT/COSIC, KU Leuven, Belgium IBBT, Belgium Summer School on Tools, Mykonos

886 views • 77 slides
Definitions and Terminology Fall 2014 CS 334 Computer Security 1 Security Goals

Definitions and Terminology Fall 2014 CS 334 Computer Security 1 Security Goals

Definitions and Terminology Fall 2014 CS 334 Computer Security 1 Security Goals Confidentiality : concealment of information or resources. Availability : preserve ability to use information or resource desired. An unavailable

318 views • 19 slides
Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt

Motivation Anonymous Communication NISAN Torsk Conclusion Attacks on Structured Peer-to-Peer Anonymous Communication Systems Theresa Enghardt theri@mailbox.tu-berlin.de Seminar Computer Security Technische Universitt Berlin 28 July 2011

390 views • 17 slides
Programmable timing functions Part 2: Timer operating modes Textbook: Chapter 8, Section 8.6

Programmable timing functions Part 2: Timer operating modes Textbook: Chapter 8, Section 8.6

Programmable timing functions Part 2: Timer operating modes Textbook: Chapter 8, Section 8.6 (pulse-width modulation) Chapter 9, Sections 9.6, 9.7 (SysTick and Timer interrupts) STM32F4xx Technical Reference Manual: Chapter 17 Basic

1.38k views • 27 slides
The benefits of a more efficient Photon Detector for DUNE Gustavo Cancelo, Dante Totani, Carlos

The benefits of a more efficient Photon Detector for DUNE Gustavo Cancelo, Dante Totani, Carlos

ARAPUCA, active ganging: The benefits of a more efficient Photon Detector for DUNE Gustavo Cancelo, Dante Totani, Carlos Escobar, Flavio Cavanna (FERMILAB), for the DUNE PD group. DUNE Module of Opportunity Workshop, BNL, November 12, 2019 TDR

417 views • 27 slides

More recommend