Ensuring tight computational security against higher-order DPA attacks

Dakshita Khurana; Aditya Gaurav

doi:10.1109/PST.2011.5971970

Ensuring tight computational security against higher-order DPA attacks

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Abstract

While DES has been proven to be breakable within a day given sufficient computational power, AES is still in use because it is extremely resistant to cryptanalytic attacks. Power Analytic Attacks use power consumption traces of the hardware or software implementation of these algorithms to reduce search space exponentially in the size of the key, thereby making computational complexity several orders of magnitude lower. This paper analyzes the increase in the computational advantage of an adversary who uses DPA and higher order power analysis attacks as opposed to algorithmic cryptanalysis. We highlight why there can be no perfect masking against DPA, and then define a standard for the security of masking countermeasures to such attacks. The main contribution is a security metric for systems and a cut-off for the number of encryptions allowable for a given order of masking to make the system immune to higher order DPA attacks.

Original language	English (US)
Title of host publication	2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011
Pages	96-101
Number of pages	6
DOIs	https://doi.org/10.1109/PST.2011.5971970
State	Published - Aug 31 2011
Externally published	Yes
Event	2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011 - Montreal, QC, Canada Duration: Jul 19 2011 → Jul 21 2011

Publication series

Name	2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011

Conference

Conference	2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011
Country/Territory	Canada
City	Montreal, QC
Period	7/19/11 → 7/21/11

Keywords

complexity of power analysis attacks
computational security
higher-order Differential Power Analysis (HO-DPA)
higher-order masking
security metric

ASJC Scopus subject areas

Computer Science Applications
Software

Online availability

10.1109/PST.2011.5971970

Library availability

Discover UIUC Full Text

Cite this

Ensuring tight computational security against higher-order DPA attacks. / Khurana, Dakshita; Gaurav, Aditya.
2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011. 2011. p. 96-101 5971970 (2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Khurana, D & Gaurav, A 2011, Ensuring tight computational security against higher-order DPA attacks. in 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011., 5971970, 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011, pp. 96-101, 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011, Montreal, QC, Canada, 7/19/11. https://doi.org/10.1109/PST.2011.5971970

@inproceedings{2055e4e12a964bb79335e2292aed5835,

title = "Ensuring tight computational security against higher-order DPA attacks",

abstract = "While DES has been proven to be breakable within a day given sufficient computational power, AES is still in use because it is extremely resistant to cryptanalytic attacks. Power Analytic Attacks use power consumption traces of the hardware or software implementation of these algorithms to reduce search space exponentially in the size of the key, thereby making computational complexity several orders of magnitude lower. This paper analyzes the increase in the computational advantage of an adversary who uses DPA and higher order power analysis attacks as opposed to algorithmic cryptanalysis. We highlight why there can be no perfect masking against DPA, and then define a standard for the security of masking countermeasures to such attacks. The main contribution is a security metric for systems and a cut-off for the number of encryptions allowable for a given order of masking to make the system immune to higher order DPA attacks.",

keywords = "complexity of power analysis attacks, computational security, higher-order Differential Power Analysis (HO-DPA), higher-order masking, security metric",

author = "Dakshita Khurana and Aditya Gaurav",

note = "Copyright: Copyright 2011 Elsevier B.V., All rights reserved.; 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011 ; Conference date: 19-07-2011 Through 21-07-2011",

year = "2011",

month = aug,

day = "31",

doi = "10.1109/PST.2011.5971970",

language = "English (US)",

isbn = "9781457705847",

series = "2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011",

pages = "96--101",

booktitle = "2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011",

}

TY - GEN

T1 - Ensuring tight computational security against higher-order DPA attacks

AU - Khurana, Dakshita

AU - Gaurav, Aditya

PY - 2011/8/31

Y1 - 2011/8/31

N2 - While DES has been proven to be breakable within a day given sufficient computational power, AES is still in use because it is extremely resistant to cryptanalytic attacks. Power Analytic Attacks use power consumption traces of the hardware or software implementation of these algorithms to reduce search space exponentially in the size of the key, thereby making computational complexity several orders of magnitude lower. This paper analyzes the increase in the computational advantage of an adversary who uses DPA and higher order power analysis attacks as opposed to algorithmic cryptanalysis. We highlight why there can be no perfect masking against DPA, and then define a standard for the security of masking countermeasures to such attacks. The main contribution is a security metric for systems and a cut-off for the number of encryptions allowable for a given order of masking to make the system immune to higher order DPA attacks.

AB - While DES has been proven to be breakable within a day given sufficient computational power, AES is still in use because it is extremely resistant to cryptanalytic attacks. Power Analytic Attacks use power consumption traces of the hardware or software implementation of these algorithms to reduce search space exponentially in the size of the key, thereby making computational complexity several orders of magnitude lower. This paper analyzes the increase in the computational advantage of an adversary who uses DPA and higher order power analysis attacks as opposed to algorithmic cryptanalysis. We highlight why there can be no perfect masking against DPA, and then define a standard for the security of masking countermeasures to such attacks. The main contribution is a security metric for systems and a cut-off for the number of encryptions allowable for a given order of masking to make the system immune to higher order DPA attacks.

KW - complexity of power analysis attacks

KW - computational security

KW - higher-order Differential Power Analysis (HO-DPA)

KW - higher-order masking

KW - security metric

UR - http://www.scopus.com/inward/record.url?scp=80052089450&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=80052089450&partnerID=8YFLogxK

U2 - 10.1109/PST.2011.5971970

DO - 10.1109/PST.2011.5971970

M3 - Conference contribution

AN - SCOPUS:80052089450

SN - 9781457705847

T3 - 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011

SP - 96

EP - 101

BT - 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011

T2 - 2011 9th Annual International Conference on Privacy, Security and Trust, PST 2011

Y2 - 19 July 2011 through 21 July 2011

ER -

Ensuring tight computational security against higher-order DPA attacks

Abstract

Publication series

Conference

Keywords

ASJC Scopus subject areas

Online availability

Library availability

Related links

Fingerprint

Cite this