摘要
侧信道攻击技术是国际密码学研究的热点方向,它能够通过物理信道直接获得密码运算的中间信息,也能够分段恢复较长的密钥,因而它比传统密码分析更容易攻击实际密码系统.目前国际主流的密码产品测评机构均把侧信道攻击的防护能力作为衡量设备或芯片安全性的主要指标,但产品即使取得了权威的安全认证,仍然可能会被侧信道攻击攻破.本文归纳了近年来国际上的学者、黑客们利用侧信道攻击破解密码模块或安全产品的技术与案例,分别从能量攻击、电磁辐射攻击、故障攻击、中距离电磁与声音攻击、缓存攻击等角度进行详细阐述,并对未来发展趋势进行了探讨.尤其是近三年内,物联网设备、工业控制系统、手机、智能终端等流行设备都成了侧信道攻击者们热衷研究的对象,多种常见密码设备已被侧信道攻击技术破解,为个人财产、集体利益带来了极大的安全威胁.希望能够通过本文的综述,引起业界对物理安全问题的高度重视,新产品在快速研发、占领市场的同时,也应达到足够的安全等级.
Side-channel attacks can extract intermediate values of cryptographic operation by some physical channels, and then divide and conquer a long secret key, which is a popular research topic in cryptography. Side-channel attacks can often break cryptosystems easier than traditional cryptanalysis.Nowadays, the main evaluation institutions for cryptographic products in the world regard the sidechannel protection capability as the main security measure of devices or chips. Even if a product has obtained authoritative security certification, it may still be broken by side-channel attacks. In this paper, some kinds of side-channel attack technologies and cases on practical cryptographic modules and security products are studied. The channel includes power, electromagnetic emission, fault information,remote electromagnetic and sound, cache, and so on. Some development trends of these attacks are discussed. Especially in the past three years, the side-channel attackers pay more attention to the Internet of Things, industry control system, mobile phone, intelligent terminal, and some other popular devices. Some common cryptographic devices are broken by these technologies, which bring great security threat to the personal property and collective interests.
作者
王安
葛婧
商宁
张帆
张国双
WANG An;GE Jing;SHANG Ning;ZHANG Fan;ZHANG Guo-Shuang(School of Computer Science,Beijing Institute of Technology,Beijing 100081,China;State Key Laboratory of Cryptology,Beijing 100878,China;College of Information Science & Electronic Engineering,Zhejiang University,Hangzhou 310027,China;Institute of Cyber Security Research,Zhejiang University,Hangzhou 310027,China)
出处
《密码学报》
CSCD
2018年第4期383-398,共16页
Journal of Cryptologic Research
基金
"十三五"国家密码发展基金(MMJJ20170201)
国家自然科学基金(61472357
61571063)
北京市自然科学基金(4162053)
信息保障技术重点实验室开放基金(KJ-17-009)
北京理工大学青年教师学术启动计划~~
关键词
侧信道攻击
能量攻击
电磁攻击
故障攻击
缓存攻击
side-channel attack
power attack
electromagnetic attack
fault attack
cache attack
