Correlation power analysis of DECIM～v2 被引量：3

Correlation power analysis of DECIM～v2

导出

摘要 Power analysis has been a powerful and thoroughly studied threat for implementations of block ciphers and public key algorithms but not yet for stream ciphers. Based on the consumed power differences between two neighboring clock cycles, this paper presents a correlation power analysis （CPA） attack on the synchronous stream cipher DECIM^v2 （the tweaked version of the original submission DECIM）. This attack resynchronizes the cryptographic device ceaselessly with many different initialization values （IVs） to obtain enough power traces. Then by modeling the statistical properties of the differential power traces with the correlation coefficients, the proposed attack algorithm can completely reveal the secret key of DECIM^v2. Furthermore, a simulation attack is mounted to confirm the validity of the algorithm. The results show that the entire secret key of DECIM^v2 can be restored within several minutes by performing 12 CPA attacks. It seems that there are still some defects in the design of DECIM^v2 and thus some further improvements should be made to resist the proposed attack. Power analysis has been a powerful and thoroughly studied threat for implementations of block ciphers and public key algorithms but not yet for stream ciphers. Based on the consumed power differences between two neighboring clock cycles, this paper presents a correlation power analysis （CPA） attack on the synchronous stream cipher DECIM^v2 （the tweaked version of the original submission DECIM）. This attack resynchronizes the cryptographic device ceaselessly with many different initialization values （IVs） to obtain enough power traces. Then by modeling the statistical properties of the differential power traces with the correlation coefficients, the proposed attack algorithm can completely reveal the secret key of DECIM^v2. Furthermore, a simulation attack is mounted to confirm the validity of the algorithm. The results show that the entire secret key of DECIM^v2 can be restored within several minutes by performing 12 CPA attacks. It seems that there are still some defects in the design of DECIM^v2 and thus some further improvements should be made to resist the proposed attack.

作者 JIA Yan-yan HU Yu-pu ZHAO Yong-bin GAO Jun-tao

机构地区 Key Laboratory of Computer Networks and Information Security State Key Laboratory of Information Security

出处《The Journal of China Universities of Posts and Telecommunications》 EI CSCD 2011年第5期118-123,共6页 中国邮电高校学报（英文版）

基金 supported by the National Basic Research Program of China (2007CB311201) the National Natural Science Foundation of China (60833008, 60803149)

关键词 CRYPTOGRAPHY CRYPTANALYSIS side channel attacks （SCA） CPA DECIM^v2 cryptography, cryptanalysis, side channel attacks （SCA）, CPA, DECIM^v2

分类号 TP393.08 [自动化与计算机技术—计算机应用技术] TN949.12 [自动化与计算机技术—计算机科学与技术]

引文网络
相关文献

参考文献1

1臧玉亮,韩文报.线性反馈移位寄存器的差分能量攻击[J].电子与信息学报,2009,31(10):2406-2410. 被引量：8

二级参考文献11

1Jean-Jacques Quisquater and Math RiZK. Side channel attacks, http://www.ipa.go.jp/security/enc/CRYPTREC/ fy15/doc/1047_Side_Channel_report.pdf, 2008.9. 被引量：1
2Zhou Yong-bin and Feng Deng-guo, et al.. Side-channel attacks: Ten years after its publication and the impacts on cryptographic module security testing, http://eprint.iacr. org/2005 / 388.pdf, 2008.4. 被引量：1
3Courtois N T and Meier W, et al.. Algebraic attacks on stream ciphers with linear feedback [C]. Advances in Eurocrypt 2003, Warsaw Poland, Lecture Notes in Computer Science, May 4-8, 2003, Vol. 2656: 345-359. 被引量：1
4Kocher P C, Jae J, and Jun B, et al.. Differential power analysis [C]. CRYPTOv 99, Santa Barbara, CA, USA, Lecture Notes in Computer Science, Aug 15-19, 1999, Vol. 1666: 388-397. 被引量：1
5Gierlichs B, Batina L, and Clavier C, et al.. Susceptibility of eSTREAM candidates towards side channel analysis. http://www.ecrypt.eu.org/stream, 2008.3. 被引量：1
6ECRYPT. eSTREAM, http://www.ecrypt.eu.org/stream/, 2008.9. 被引量：1
7Lano J, Mentens N, and Preneel B, et al.. Power analysis of synchronous stream ciphers with resynchronization mechanism [C]. SASC Workshop, Novotel Brugge Centrum, Belgium, Workshop Record, Oct 14-15, 2004: 327-333. 被引量：1
8Burman S, Mukhopadhyay D, and Veezhinathan K, et al.. LFSR based stream ciphers are vulnerable to power attacks [C]. INDOCRYPT 2007, Chennai, INDIA, Lecture Notes in Computer Science, Dec 9-13, 2007, Vol. 4859: 384-392. 被引量：1
9Fischer W, Gammel B M, and Kniffier O, et al.. Differential power analysis of stream ciphers [C]. CT-RSA 2007, San Francisco, CA, USA, Lecture Notes in Computer Science, Feb 5-9, 2007, Vol. 4377: 257-270. 被引量：1
10Berbain C, Billet O, and Canteaut A, et al.. DECIMv2. http: / /www.ecrypt.eu.org/stream/ decim/ decim_p3.pdf, 2007.5. 被引量：1

共引文献7

1贾艳艳,胡予濮,高军涛.对比特搜索生成器的猜测确定攻击[J].电子与信息学报,2010,32(12):2925-2929.
2汪鹏君,郝李鹏.基于MSMV的抗差分能量攻击电路设计及其应用[J].电路与系统学报,2012,17(5):98-103. 被引量：1
3汪鹏君,张跃军,张学龙.防御差分功耗分析攻击技术研究[J].电子与信息学报,2012,34(11):2774-2784. 被引量：10
4汪鹏君,郝李鹏,张跃军.防御零值功耗攻击的AES SubByte模块设计及其VLSI实现[J].电子学报,2012,40(11):2183-2187. 被引量：14
5郝李鹏,汪鹏君,张跃军.具有抗差分能量攻击性能的JK触发器设计[J].电路与系统学报,2012,17(6):117-123. 被引量：2
6梁海华,盘丽娜.快速CRC逆序校验方法[J].计算机应用,2013,33(7):1833-1835. 被引量：4
7杨昌盛,于敬超,严迎建.Grain-128同步流密码的选择初始向量相关性能量攻击[J].计算机应用,2014,34(5):1318-1321. 被引量：3

同被引文献33

1熊昌镇,邹建成,齐东旭.一种基于混沌映射的数字图像加密新算法[J].中山大学学报（自然科学版）,2004,43(A02):29-33. 被引量：17
2Kocher P C. Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems [G]// CRYPTO'1996, LNCS 1440. Berlin: Springer, 1996: 104-113. 被引量：1
3Koeher P C, Jaffe J, Jun B. Differential Power Analysis[C]//CRYPTO'1999, LNCS 1666. Berlin: Springer, 1999: 388-397. 被引量：1
4Lano J, Mentens N, Preneel B, et al. Power Analysis of Synchronous Stream Ciphers with Resynchronization Mechanism [C]//SASC 2004, Workshop Record. Berlin: Springer-Verlag, 2004: 327-333. 被引量：1
5Gierlichs B, Batina L, Clavier C, et al. Susceptibility of eSTREAM Candidates Towards Side Channel Analysis [EB/ OL]. [2012-02-23]. http://www, ecrypt, eu. org/stvl/sasc2008/index, html. 被引量：1
6Fischer W, Gammel B M, Kniffler O, et al. Differential Power Analysis of Stream Ciphers [C]//Advances in Cryptology-CT-RSA 2007, LNCS 4377. Berlin: Springer, 2006: 257-270. 被引量：1
7Burman S, Mukhopadhyay D, Veezhinathan K, et al. LFSR Based Stream Ciphers are Vulnerable to Power Attacks [C]//Advances in Crptology-INDOCRYPT'2007, LNCS 4859. Berlin: Springer, 2007: 384-392. 被引量：1
8Steve B, Julia B, Vesselin V. The eSTREAM Portfolio in 2012 (Jan 2012) [EB/OL]. [2012-02-23]. http://www.ecrypt, eu. org/stream/.(12): 1709-1720. 被引量：1
9Kumar S, Lemke K, Paar C. Some Thoughts about Implementation Properties of Stream Ciphers [C]//SASC 2004, Workshop Record. Berlin: Springer-Verlag, 2004: 311-319. 被引量：1
10Key E L. An Analysis of the Structure and Complexity of Nonlinear Binary Sequence Generators [J]. IEEE Trans on Information Theory, 1976, 22(11): 732-736. 被引量：1

引证文献3

1赵永斌,胡予濮,贾艳艳.一种抵抗能量攻击的线性反馈移位寄存器[J].西安电子科技大学学报,2013,40(3):172-179. 被引量：5
2曾旭,司马宇.双线性反馈移位寄存器的数字图像加密[J].激光杂志,2016,37(10):82-84. 被引量：1
3杨杰,尹向东,刘小兵.混沌系统和移位寄存器相融合的图像安全分析算法[J].吉林大学学报（理学版）,2017,55(3):657-663. 被引量：2

二级引证文献8

1杨昌盛,于敬超,严迎建.Grain-128同步流密码的选择初始向量相关性能量攻击[J].计算机应用,2014,34(5):1318-1321. 被引量：3
2严迎建,杨昌盛,李伟,张立朝.Grain-128序列密码的能量分析攻击[J].北京工业大学学报,2015,41(6):842-850.
3严迎建,杨昌盛,李伟,张立朝.ZUC序列密码算法的选择IV相关性能量分析攻击[J].电子与信息学报,2015,37(8):1971-1977. 被引量：2
4曾旭,司马宇.双线性反馈移位寄存器的数字图像加密[J].激光杂志,2016,37(10):82-84. 被引量：1
5杨杰,尹向东,刘小兵.混沌系统和移位寄存器相融合的图像安全分析算法[J].吉林大学学报（理学版）,2017,55(3):657-663. 被引量：2
6王红涛,冯连强,王志超,赵静.基于Henon映射置换的彩色图像加密算法[J].重型机械,2020,0(1):16-20. 被引量：2
7武磊.基于六维超混沌和DNA编码的图像加密算法设计[J].现代信息科技,2024,8(3):149-153.
8张慧.基于混沌理论的数字多媒体图像加密研究[J].自动化技术与应用,2024,43(11):217-220.

1外来的和尚在中国还念得动经吗?[J].金融科技时代,2015,23(8):48-49.
2张德成.TCL王牌大屏幕彩电电源分析与检修[J].电子产品维修与制作,1996(8):13-15.
3陈大钊,成超,熊峙,王津.密码算法实现方式对安全性的影响研究[J].通信技术,2016,49(10):1387-1391. 被引量：1
4郭德虎.CT-110B终端电源分析与故障排除[J].宝鸡文理学院学报（自然科学版）,1999,19(2):66-68.
5臧玉亮,韩文报.线性反馈移位寄存器的差分能量攻击[J].电子与信息学报,2009,31(10):2406-2410. 被引量：8
6Voltus：IC电源方案[J].世界电子元器件,2014(1):27-27.
7FLUKE热像仪在电源行业中的应用[J].变频器世界,2008(7):109-110.
8张思敏.长虹DT-5A彩电开关电源分析[J].新课程（下）,2009(12):151-151.
9张欣艳,左春英,朱文霞.国外数控机床电源分析[J].黑龙江八一农垦大学学报,2010,22(3):41-44.
10陈浩,王韬,刘会英.对流密码Decim^(v2)差分故障攻击[J].小型微型计算机系统,2015,36(1):150-155.

The Journal of China Universities of Posts and Telecommunications

2011年第5期

浏览历史

内容加载中请稍等...