the temperature side channel and heating fault attacks
play

The Temperature Side Channel and Heating Fault Attacks Michael - PowerPoint PPT Presentation

Feb 27, 2023 •436 likes •687 views

Introduction SCA Faults Remanence Conclusions 1 / 24 The Temperature Side Channel and Heating Fault Attacks Michael Hutter and J orn-Marc Schmidt Michael Hutter and J orn-Marc Schmidt CARDIS 2013, November 27-29, 2013 Introduction

  1. Introduction SCA Faults Remanence Conclusions 1 / 24 The Temperature Side Channel and Heating Fault Attacks Michael Hutter and J¨ orn-Marc Schmidt Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  2. Introduction SCA Faults Remanence Conclusions 2 / 24 Related Work A. Shamir and E. Tromer - “Acoustic cryptanalysis” (2004) [12] ◮ Heat causes mechanical stress expressed as low-level acoustic noise ◮ Exploit the acoustic emissions to get information about processed data Several low-temperature attacks ◮ S. Skorobogatov [13] and D. Samyde et al. [11] ◮ Cooling down SRAM ( − 50 ◦ C) will freeze the data ◮ Allows reading out of data even after seconds after power down ◮ Similar to cold-boot attacks [10] J. Brouchier et al. - “Thermocommunication” (2009) [3, 4] ◮ Cooling fan can carry information about the processed data Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  3. Introduction SCA Faults Remanence Conclusions 3 / 24 Outline 1 Introduction 2 Temperature Side Channel 3 High-Temperature Fault Attacks 4 Exploiting Data-Remanence Effects 5 Conclusions Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  4. Introduction SCA Faults Remanence Conclusions 4 / 24 The Temperature Side Channel Electrical current causes heat Heat is proportional to the power consumption Temperature of the ATmega162 is measured using a Resistance Temperature Detector (PT100 RTD sensor) AD693 is an analog conditioning circuit to amplify the sensor signals (voltage to current converter, 4 ... 20 mA to 0 ... 104 ◦ C) PT100 AD693 Power DC 26V Amplifier Supply 390 Ω PC ATmega162 Digital- Oscilloscope storage control oscilloscope Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  5. Introduction SCA Faults Remanence Conclusions 5 / 24 The Measurement Setup Rear-side de-capsulated chip The silicon substrate offers a good thermal conductivity for the RTD sensor (about 150 W / m · K ) Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  6. Introduction SCA Faults Remanence Conclusions 6 / 24 Temperature Leakage Characterization We measured the temperature dissipation of various instructions, e.g. MOV , ADD , EOR , and MUL Evaluated the impact of thermal conductivity and capacitance ◮ Targeted one byte that is processed and stored in 24 internal registers (and cleared before writing) ◮ Executed the instructions in a loop Long acquisition window of 20 seconds ◮ First 10 seconds: process zero values ◮ Second 10 seconds: process all possible byte values (2 8 ) ◮ We averaged 100 traces per value to reduce noise Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  7. Introduction SCA Faults Remanence Conclusions 7 / 24 AVR Results 27 26.82 HW=0 26.8 HW=1 26.9 HW=2 26.78 Mean temperature [°C] HW=3 Temperature [°C] HW=4 26.76 HW=5 26.8 HW=6 26.74 HW=7 HW=8 26.72 26.7 26.7 26.6 26.68 26.66 26.5 4 6 8 10 12 0 50 100 150 200 250 Time [s] Possible values of the intermediate byte The temperature side-channel obviously leaks the Hamming weight of the processed data Data caused an averaged DC increase/decrease (0 . 3 ◦ C) Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  8. Introduction SCA Faults Remanence Conclusions 8 / 24 PIC16F84 Results 25.7 25.7 Mean temperature [C°] Mean temperature [C°] 25.68 25.68 25.66 25.66 25.64 25.64 25.62 25.62 25.6 25.6 0 5 10 15 20 0 5 10 15 20 Time [s] Time [s] Leakage of 0x00 → 0xFF (left plot) and 0xFF → 0x00 (right plot) No chip decapsulation RTD placed on top of package Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  9. Introduction SCA Faults Remanence Conclusions 9 / 24 Observed Characteristics Temperature variation is limited by the physical property of thermal conductivity Heat flow can be seen as a (low-pass) RC network with cut-off frequency of some kHz Junction Case (Heat sink) Transistor Ambient temperature Higher frequency leakages are filtered Temperature sensor has limitations in response time and acquisition resolution (100 ms and 0 . 01 ◦ C) Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  10. Introduction SCA Faults Remanence Conclusions 10 / 24 Attack Scenarios and Ideas 1 Loops and continuous leakages ◮ Implementation repeatedly checks a password (as similarly argued by Brouchier et al. [3, 4]) ◮ Password is written continuously from memory into registers ◮ The dissipated temperature can then be exploited to reveal the password 2 Exploiting static leakage ◮ Assuming a device is leaking information in the static power consumption (already shown by, e.g., Giogetti et al. [7] or Lin et al. [9]) ◮ The clock signal can then be stopped, e.g., after the first AES S-box operation ◮ Intermediates can be extracted from the temperature side channel ◮ Advantage : plenty of time available to measure the temperature leak Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  11. Introduction SCA Faults Remanence Conclusions 11 / 24 Exploiting Heating Faults Well known attack, but less details available in literature The device is exposed to extensive heating ( > 150 ◦ C) ◮ ATmega162 operated beyond the maximum ratings ◮ Target implementation was CRT-RSA Bellcore attack [2] ◮ CRT allows computing two exponentiations in smaller sub-groups (faster) ◮ Signature S ≡ CRT (( m d mod p ) , ( m d mod q )) mod n ◮ Injection of a random fault ∆ causes the device to output a faulty S ≡ CRT (( m mod p ) d , ( m mod q ) d + ∆) mod n signature ˜ ◮ Now p = gcd(˜ S − S , n ) can be calculated to factorize p and to reveal the RSA primes p and q Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  12. Introduction SCA Faults Remanence Conclusions 12 / 24 The Used Setup Laboratory heating plate from Schott instruments (SLK 1) ◮ ATmega162 placed directly on top of the hot-plate surface ◮ Temperature measured with two PT100s “Flying” connections ◮ Exposed wires to avoid any contact to the hot plate: serial connection , power supply , clock signal , and reset Controller ◮ Spartan-3 FPGA-based board ◮ Allows turning off/on signals Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  13. Introduction SCA Faults Remanence Conclusions 13 / 24 Results ATmega162 does not respond after 160 ◦ C Faults occurred between 152 and 158 ◦ C ◮ Within 70 minutes, we got 100 faults ◮ 31 revealed one of the prime modulus: 15 revealed p , 16 revealed q ◮ 7 faults produced the same RSA output Same result also for other 10 ATmega162 devices Frequency of fault occurrence 8 ◮ E.g., 182 faults within 30 minutes 6 ◮ Mean and fault temperature 4 varies per device 2 0 150 152 154 156 158 160 Temperature [°C] Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  14. Introduction SCA Faults Remanence Conclusions 14 / 24 Exploiting Data-Remanence Effects Data stored in SRAM for a long period of time leaves a permanent mark, cf. P. Gutmann [8] Can be recovered by reading out the preferred power-up values ◮ Practically exploited by R. Anderson and M. Kuhn [1] in 1997, recovered over 90 % of a DES key of a late 1980s bank card ◮ Harder on newer SRAM structures, 18 % recoverable (cf. Cakir [5]) Effect is due to aging where transistor parameters change (speed, current drive, noise margin) Extensive heating accelerates aging ◮ Negative Bias Temperature Instability (NBTI) ◮ SRAM cells get “weaker” and tend to a certain bit value Two NBTI degradation components: permanent and transient damage [6] Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  15. Introduction SCA Faults Remanence Conclusions 15 / 24 Permanent Data Remanence Effect 1 Tests performed on new ATmega162; preferred power-up values are around 50 % 2 We wrote randomly distributed data to SRAM (3 072 bits to “1” and 3 072 bits to “0”, 6 144 out of 8 192 bits total) 3 Exposed the device to extensive burn-in stress ◮ 100 ◦ C for 36 hours at 5.5 volts 70 ◮ SRAM cells got biased: 65 52 . 24 % → 1, 47 . 75 % → 0 ◮ 919 bits (15 %) changed their Success rate [%] 60 state, i.e., 30 % are unstable ◮ > 95 % of the bits tended to the 55 correct value Predicting a "1" 50 Predicting a "0" ◮ In total, we can predict 63 % correctly 45 0 5 10 15 20 25 30 35 Burn−in stress time [h] Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

  16. Introduction SCA Faults Remanence Conclusions 16 / 24 Transient Data Remanence Effect 1 Read out the SRAM content every 4 seconds during burn-in stress 2 Heated up to 170 ◦ C and turned off heating afterwards 80 ◮ “Weak” SRAM cells tend to “0” "1" values "0" values during heating 70 Bit value probability [%] heating cooling ◮ They move back to preferred 60 state after cooling 50 ◮ Can be used to identify “unstable” bits 40 ◮ Around 30 % have been 30 identified to be unstable 20 0 100 200 300 400 Burn−in stress time [seconds] Michael Hutter and J¨ orn-Marc Schmidt CARDIS 2013, November 27-29, 2013

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Systems Security: Side-channel attacks Stjepan Picek s.picek@tudelft.nl Delft University of

Systems Security: Side-channel attacks Stjepan Picek s.picek@tudelft.nl Delft University of

Systems Security: Side-channel attacks Stjepan Picek s.picek@tudelft.nl Delft University of Technology, The Netherlands May 6, 2018 Outline 1 Side-channels 2 Implementation Attacks 3 Side-channel Attacks 4 Fault Injection 2 / 48

824 views • 48 slides
PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan,

PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan,

PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan, Korea Bruno Robisson, Hlne Le Bouder Secure Architecture and Systems Laboratory Joint team between CEA and Ecole des Mines de Saint-Etienne

883 views • 28 slides
Fresh Re-Keying: Security against Side-Channel and Fault Attacks for Low-Cost Devices Marcel

Fresh Re-Keying: Security against Side-Channel and Fault Attacks for Low-Cost Devices Marcel

VLSI Institute for Applied Information Processing and Communications (IAIK) VLSI & Security Fresh Re-Keying: Security against Side-Channel and Fault Attacks for Low-Cost Devices Marcel Medwed Franois-Xavier Standaert Johann

814 views • 28 slides
Side-Channel & Fault Attacks Ruggero Susella System Research & Applications Security

Side-Channel & Fault Attacks Ruggero Susella System Research & Applications Security

Side-Channel & Fault Attacks Ruggero Susella System Research & Applications Security Rodmap STMicroelectronics 2018/12/06 2 ST Who are we ? STMicroelectronics 3 A global semiconductor leader 2017 revenues of $8.35B

1.32k views • 107 slides
Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras

Automatic Synthesis of Fault Attack Resistant Cipher Implementations Chester Rebeiro IIT Madras Side Channel Analysis Electro magnetic Radiation Fault injection Power consumption Timing channels Preventing Side Channel Attacks is

468 views • 34 slides
Thermo Attacks - On Temperature Side Channels and Heating Faults Michael Hutter and J orn-Marc

Thermo Attacks - On Temperature Side Channels and Heating Faults Michael Hutter and J orn-Marc

Introduction SCA Faults Remanence Conclusions 1 / 24 Thermo Attacks - On Temperature Side Channels and Heating Faults Michael Hutter and J orn-Marc Schmidt February 28, 2014 Michael Hutter and J orn-Marc Schmidt Introduction SCA

528 views • 24 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer ESC 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

476 views • 33 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer FSE 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

635 views • 30 slides
channel and fault attacks Jasper van Woudenberg @jzvw January 10, 2019 1 Our vision

channel and fault attacks Jasper van Woudenberg @jzvw January 10, 2019 1 Our vision

Practicing the art and science of side channel and fault attacks Jasper van Woudenberg @jzvw January 10, 2019 1 Our vision certificate recommendations countermeasures 2 Where we are today Science Art Bit of both certificate 2 weeks

998 views • 41 slides
Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet

Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet

Randomness as countermeasures against Side Channel Attacks Nadia El Mrabet nadia.el-mrabet@emse.fr Mines St Etienne WRACH2019, April 17, 2019 Side channel attacks Physical counter measures Algorithmic counter measures Arithmetical

900 views • 36 slides
Behind the Scene of Side Channel Attacks ASIACRYPT 2013 Victor LOMNE, Emmanuel PROUFF and Thomas

Behind the Scene of Side Channel Attacks ASIACRYPT 2013 Victor LOMNE, Emmanuel PROUFF and Thomas

Behind the Scene of Side Channel Attacks ASIACRYPT 2013 Victor LOMNE, Emmanuel PROUFF and Thomas ROCHE ANSSI (French Network and Information Security Agency) Thursday, December 3rd, 2013 Side Channel Attacks (SCA)| Linear Regression Attack

340 views • 32 slides
SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna

SIDE-CHANNEL ATTACKS ON HARDWARE IMPLEMENTATIONS OF CRYPTOGRAPHIC ALGORITHMS Sddka Berna Ors Yal cn Istanbul Technical University Department of Electronics and Communication Engineering Introduction A side-channel analysis attack

1.81k views • 99 slides
Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France November 16, 2017 Cryptacus Workshop, Nijmegen, Netherlands the attacker only needs unprivileged execution on the victims machine

1.99k views • 164 slides
Performing Low-cost Electromagnetic Side-channel Attacks using RTL-SDR and Neural Networks

Performing Low-cost Electromagnetic Side-channel Attacks using RTL-SDR and Neural Networks

Performing Low-cost Electromagnetic Side-channel Attacks using RTL-SDR and Neural Networks Pieter Robyns Motivation and introduction Motivation Information about performing EM side-channel attacks using SDR is quite scarce A few

758 views • 42 slides
HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume that secret keys are utilized by implementations of the algorithm in a secure fashion, with access only allowed through the I/Os Unfortunately,

363 views • 12 slides
Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curves Side-Channel Countermeasures Conclusion Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks Vincent Verneuil 1 , 2 1 Inside Secure 2 Institut de Math ematiques de Bordeaux S

2.22k views • 188 slides
Heat Exchangers Many years of experience over a wide range of applications enables us to develop

Heat Exchangers Many years of experience over a wide range of applications enables us to develop

CLEAN & EXTENDED HEATING SURFACES EKSTRMS VRMETEKNISKA AB Ekstrms Vrmetekniska AB Ekstrms Vrmetekniska AB is a market leader in the design and supply of economisers, fluegas coolers, air preheaters, shot cleaning systems and

87 views • 6 slides
CURING OF COMPOSITE MATERIALS USING THE RECENTLY DEVELOPED HEPHAISTOS MICROWAVE M. Kwak 1 *, P.

CURING OF COMPOSITE MATERIALS USING THE RECENTLY DEVELOPED HEPHAISTOS MICROWAVE M. Kwak 1 *, P.

18 TH INTERNATIONAL CONFERENCE ON COMPOSITE MATERIALS CURING OF COMPOSITE MATERIALS USING THE RECENTLY DEVELOPED HEPHAISTOS MICROWAVE M. Kwak 1 *, P. Robinson 2 , A. Bismarck 2 , R. Wise 1 1 Advanced Materials and Processes Group, TWI Technology

638 views • 6 slides
Simulation of Induction Heating of Slabs Using ELTA 6.0 Valentin Nemkov Fluxtrol, Inc. V. Bukanin,

Simulation of Induction Heating of Slabs Using ELTA 6.0 Valentin Nemkov Fluxtrol, Inc. V. Bukanin,

Modelling for Electromagnetic Processes, September 16-19, 2014 Simulation of Induction Heating of Slabs Using ELTA 6.0 Valentin Nemkov Fluxtrol, Inc. V. Bukanin, A. Zenkov, A. Ivanov St. Petersburg Electrotechnical University Overview: New

466 views • 19 slides
High Frequency Analysis with Advanced Technologies Dave Druiff Emerson Process Management Asset

High Frequency Analysis with Advanced Technologies Dave Druiff Emerson Process Management Asset

High Frequency Analysis with Advanced Technologies Dave Druiff Emerson Process Management Asset Optimization Presentation for: Vibration Institute - Piedmont Chapter #14 May 2008 Why they are different. High frequency wave action is

689 views • 39 slides
Innovative power capacitor technologies for wide band-gap semiconductors Dr. Lucia Cabo Manager,

Innovative power capacitor technologies for wide band-gap semiconductors Dr. Lucia Cabo Manager,

TDK Technologies & Products Press Conference 2019 Innovative power capacitor technologies for wide band-gap semiconductors Dr. Lucia Cabo Manager, Basic R&D Film Capacitors Aluminum & Film Capacitors Business Group Fernando

223 views • 4 slides
Preliminary Results 201 8 Paul Mines, CE O / Declan Brown, FD 01 April 201 9 Disclaimer The

Preliminary Results 201 8 Paul Mines, CE O / Declan Brown, FD 01 April 201 9 Disclaimer The

Preliminary Results 201 8 Paul Mines, CE O / Declan Brown, FD 01 April 201 9 Disclaimer The information contained in this presentation (the " Presentation ") has been prepared by and is the sole responsibility of the directors of

735 views • 24 slides
The Frequency Agile Solar Radiotelescope T. S. Bas:an (NRAO)

The Frequency Agile Solar Radiotelescope T. S. Bas:an (NRAO)

The Frequency Agile Solar Radiotelescope T. S. Bas:an (NRAO) What it is FASRs fundamental innova:on is the ability to perform dynamic, broadband,

514 views • 30 slides
Renewable Electricity for Minnesotas Future Xcel Renewable Development Fund Advisory Group

Renewable Electricity for Minnesotas Future Xcel Renewable Development Fund Advisory Group

Renewable Electricity for Minnesotas Future Xcel Renewable Development Fund Advisory Group Presentation November 8, 2016 Agenda Renewable Electricity for MN Futures Advisory Board Project Presentations Impact Questions

479 views • 31 slides

More recommend