Proving SIFA Protection of Masked Redundant Circuits

Vedad Hadžić; Robert Primas; Roderick Bloem

doi:10.1007/978-3-030-88885-5_17

Proving SIFA Protection of Masked Redundant Circuits

Vedad Hadžić, Robert Primas, Roderick Bloem

Institut für Angewandte Informationsverarbeitung und Kommunikationstechnologie (7050)

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Abstract

Implementation attacks like side-channel and fault attacks pose a considerable threat to cryptographic devices that are physically accessible by an attacker. As a consequence, devices like smart cards implement corresponding countermeasures like redundant computation and masking. Recently, statistically ineffective fault attacks (SIFA) were shown to be able to circumvent these classical countermeasure techniques. We present a new approach for verifying the SIFA protection of arbitrary masked implementations in both hardware and software. The proposed method uses Boolean dependency analysis, factorization, and known properties of masked computations to show whether the fault detection mechanism of redundant masked circuits can leak information about the processed secret values. We implemented this new method in a tool called Danira, which can show the SIFA resistance of cryptographic implementations like AES S-Boxes within minutes.

Originalsprache	englisch
Titel	Automated Technology for Verification and Analysis
Untertitel	19th International Symposium, ATVA 2021
Redakteure/-innen	Z. Hou, V. Ganesh
Erscheinungsort	Cham
Herausgeber (Verlag)	Springer
Seiten	249-265
Seitenumfang	16
ISBN (elektronisch)	978-3-030-88885-5
ISBN (Print)	978-3-030-88884-8
DOIs	https://doi.org/10.1007/978-3-030-88885-5_17
Publikationsstatus	Veröffentlicht - 2021
Veranstaltung	19th International Symposium on Automated Technology for Verification and Analysis : ATVA 2021 - Virtuell, Australien Dauer: 18 Okt. 2021 → 22 Okt. 2021

Publikationsreihe

Name	Lecture Notes in Computer Science
Band	12971

Konferenz

Konferenz	19th International Symposium on Automated Technology for Verification and Analysis
Kurztitel	ATVA 2021
Land/Gebiet	Australien
Ort	Virtuell
Zeitraum	18/10/21 → 22/10/21

ASJC Scopus subject areas

Hardware und Architektur
Informatik (sonstige)

Zugriff auf Dokument

10.1007/978-3-030-88885-5_17

daniraEingereichtes Manuskript, 426 KB

2 Abgeschlossen

FERMION - Formale Verifizierung maskierter Hardware-Implementierungen
Bloem, R.
2/01/19 → 1/01/22
Projekt: Forschungsprojekt
Dessnet - Zuverlässige, sichere und zeitnahe Sensornetzwerke
Mangard, S., Glanzer, C., Görtschacher, L. J., Bösch, W., Grosinger, J., Fischbacher, R. B., Deutschmann, B. & Shetty, D.
1/06/17 → 31/07/21
Projekt: Forschungsprojekt

Dieses zitieren

Proving SIFA Protection of Masked Redundant Circuits. / Hadžić, Vedad; Primas, Robert; Bloem, Roderick.
Automated Technology for Verification and Analysis: 19th International Symposium, ATVA 2021. Hrsg. / Z. Hou; V. Ganesh. Cham: Springer, 2021. S. 249-265 (Lecture Notes in Computer Science; Band 12971).

Publikation: Beitrag in Buch/Bericht/Konferenzband › Beitrag in einem Konferenzband › Begutachtung

Hadžić, V, Primas, R & Bloem, R 2021, Proving SIFA Protection of Masked Redundant Circuits. in Z Hou & V Ganesh (Hrsg.), Automated Technology for Verification and Analysis: 19th International Symposium, ATVA 2021. Lecture Notes in Computer Science, Bd. 12971, Springer, Cham, S. 249-265, 19th International Symposium on Automated Technology for Verification and Analysis , Virtuell, Australien, 18/10/21. https://doi.org/10.1007/978-3-030-88885-5_17

@inproceedings{32e5cd47adba49c2a3bf949d7af88006,

title = "Proving SIFA Protection of Masked Redundant Circuits",

abstract = "Implementation attacks like side-channel and fault attacks pose a considerable threat to cryptographic devices that are physically accessible by an attacker. As a consequence, devices like smart cards implement corresponding countermeasures like redundant computation and masking. Recently, statistically ineffective fault attacks (SIFA) were shown to be able to circumvent these classical countermeasure techniques. We present a new approach for verifying the SIFA protection of arbitrary masked implementations in both hardware and software. The proposed method uses Boolean dependency analysis, factorization, and known properties of masked computations to show whether the fault detection mechanism of redundant masked circuits can leak information about the processed secret values. We implemented this new method in a tool called Danira, which can show the SIFA resistance of cryptographic implementations like AES S-Boxes within minutes.",

keywords = "SIFA, verification, hardware security",

author = "Vedad Had{\v z}i{\'c} and Robert Primas and Roderick Bloem",

year = "2021",

doi = "10.1007/978-3-030-88885-5_17",

language = "English",

isbn = "978-3-030-88884-8",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "249--265",

editor = "Hou, { Z.} and V. Ganesh",

booktitle = "Automated Technology for Verification and Analysis",

note = "19th International Symposium on Automated Technology for Verification and Analysis : ATVA 2021, ATVA 2021 ; Conference date: 18-10-2021 Through 22-10-2021",

}

TY - GEN

T1 - Proving SIFA Protection of Masked Redundant Circuits

AU - Hadžić, Vedad

AU - Primas, Robert

AU - Bloem, Roderick

PY - 2021

Y1 - 2021

N2 - Implementation attacks like side-channel and fault attacks pose a considerable threat to cryptographic devices that are physically accessible by an attacker. As a consequence, devices like smart cards implement corresponding countermeasures like redundant computation and masking. Recently, statistically ineffective fault attacks (SIFA) were shown to be able to circumvent these classical countermeasure techniques. We present a new approach for verifying the SIFA protection of arbitrary masked implementations in both hardware and software. The proposed method uses Boolean dependency analysis, factorization, and known properties of masked computations to show whether the fault detection mechanism of redundant masked circuits can leak information about the processed secret values. We implemented this new method in a tool called Danira, which can show the SIFA resistance of cryptographic implementations like AES S-Boxes within minutes.

AB - Implementation attacks like side-channel and fault attacks pose a considerable threat to cryptographic devices that are physically accessible by an attacker. As a consequence, devices like smart cards implement corresponding countermeasures like redundant computation and masking. Recently, statistically ineffective fault attacks (SIFA) were shown to be able to circumvent these classical countermeasure techniques. We present a new approach for verifying the SIFA protection of arbitrary masked implementations in both hardware and software. The proposed method uses Boolean dependency analysis, factorization, and known properties of masked computations to show whether the fault detection mechanism of redundant masked circuits can leak information about the processed secret values. We implemented this new method in a tool called Danira, which can show the SIFA resistance of cryptographic implementations like AES S-Boxes within minutes.

KW - SIFA

KW - verification

KW - hardware security

U2 - 10.1007/978-3-030-88885-5_17

DO - 10.1007/978-3-030-88885-5_17

M3 - Conference paper

SN - 978-3-030-88884-8

T3 - Lecture Notes in Computer Science

SP - 249

EP - 265

BT - Automated Technology for Verification and Analysis

A2 - Hou, Z.

A2 - Ganesh, V.

PB - Springer

CY - Cham

T2 - 19th International Symposium on Automated Technology for Verification and Analysis

Y2 - 18 October 2021 through 22 October 2021

ER -

Proving SIFA Protection of Masked Redundant Circuits

Abstract

Publikationsreihe

Konferenz

ASJC Scopus subject areas

Zugriff auf Dokument

Fingerprint

Projekte

FERMION - Formale Verifizierung maskierter Hardware-Implementierungen

Dessnet - Zuverlässige, sichere und zeitnahe Sensornetzwerke

Dieses zitieren