对轻量级分组密码算法LBlock的差分故障攻击被引量：3

Differential Fault Attack on Lightweight Block Cipher LBlock

下载PDF

导出

摘要本文首先分析差分故障攻击的故障模型与原理,利用S盒的差分不均匀性,通过建立输入差分、输出差分和可能输入值之间的对应关系,给出差分故障分析的优化方案,实现快速归约,提高差分故障攻击的效率.本文通过对LBlock算法建立对应关系,可以快速直观缩小输入值取值空间,进而快速确定对应扩展密钥.对于不同故障值(输入差分),对应的输出差分和可能输入值均不相同,可以得到二元关系集合.由于轻量级分组密码S盒多为4×4 S盒,该集合中元素较少,注入少量不同故障值,通过查表,对可能输入值取交集即可快速确定唯一可能输入值.将优化方案应用于LBlock轻量级分组密码算法,在最后一轮输入处注入2次宽度为16 bit的故障可恢复最后一轮轮密钥,然后将状态回推一轮,在倒数第二轮输入处注入2次宽度为16 bit的故障可恢复倒数第二轮密钥.根据密钥扩展方案,恢复两轮轮密钥后将恢复主密钥的计算复杂度降为2^(19). Firstly, this paper analyzes the fault model and principle of differential fault attack. By using the differential inhomogeneity of S-boxes, this paper gives an optimization of differential fault analysis by establishing the corresponding relationship between input differentials, output differentials,and possible input values to improve the efficiency of differential fault attack. In this paper, the corresponding relationship for LBlock algorithm is established, which can be used to effectively reduce the value space of input values, and then quickly determine the corresponding extended key. For different fault values(input differentials), the corresponding output differences, and possible input values are not the same, there exists a set of binary relationships. Since the lightweight S-boxes are mostly 4 × 4 S boxes, there are fewer elements in the set and a small number of different false values are injected. By looking up the table, the only possible input value can be quickly identified by taking the intersection of possible input values. The optimization scheme is applied to the LBlock lightweight block cipher algorithm. In the last round of input, two 16-bit wide faults are recoverable to the last round key, and then the state is pushed one round back. In the second last round, by injecting 2 faults in 16-bit width, the second last round key can be recovered. According to the key expansion scheme,the recovery of two-round key reduces the computational complexity of recovering master key to 219.

作者王涛王永娟高杨张诗怡 WANG Tao;WANG Yong-Juan;GAO Yang;ZHANG Shi-Yi(Information Engineering University,Zhengzhou 450001,China)

机构地区信息工程大学

出处《密码学报》 CSCD 2019年第1期18-26,共9页 Journal of Cryptologic Research

基金国家自然科学基金(61872381)~~

关键词轻量级分组密码 LBlock算法差分故障攻击 lightweight block cipher LBlock algorithm differential fault attack

分类号 TN918.4 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献2

1潘晓中,程璐.针对LBlock密码单轮扩散的差分故障分析[J].武警工程大学学报,2016,32(6):43-46. 被引量：1
2TENG Jikai,WU Chuankun.An Identity-Based Group Key Agreement Protocol for Low-Power Mobile Devices[J].Chinese Journal of Electronics,2016,25(4):726-733. 被引量：11

二级参考文献34

1张蕾,吴文玲.SMS4密码算法的差分故障攻击[J].计算机学报,2006,29(9):1596-1602. 被引量：67
2M. Jurian, I. Lita and D. Visan, "Efficient mobile communi- cation solutions for remote data acquisition, supervisory and control systems", WSEAS Transactions on Communications, Vol.7, No.7, pp.739-748, 2008. 被引量：1
3T.J. Pan, L.N. Zheng, H.J. Zhang, et al., "Research of utility prepayment system based on wireless communication", WSEAS Transactions on Communications, Vol.8, No.l, pp.71-80, 2009. 被引量：1
4E.Bresson, O. Chevassut, D. Pointcheval, et al., "Provably au- thenticated group Diffie-Hellman key exchange", Proceedings of the 8th ACM Conference on Computer and Communications Security, Philadelphia- Pennsylvania, USA, ACM, pp.255-264, 2001. 被引量：1
5E. Bresson, O. Chevassut and D. Pointcheval, "Provably au- thenticated group Diffie-Hellman key exchange-the dynamic case", Proceedings of the 7th International Conference on the Theory and Application of Cryptology and Information Secu- rity, Gold Coast, Australia, Springer, LNCS Vol.2248, pp.290- 309, 2001. 被引量：1
6E. Bresson, O. Chevassut and D. Pointcheval, "Dynamic group Diffie-Hellman key exchange under standard assumptions", Pro- ceedings of Eurocrypt PO02: International Conference on theTheory and Applications of Cryptographic Techniques, Amster- dam, The Netherlands, Springer, LNCS Vol.2332, pp.321-336, 2002. 被引量：1
7Y. Kim, A. Perrig and G. Tsudik, "Simple and fault-tolerant key agreement for dynamic collaborative groups", Proceedings of the 7th ACM Conference on Computer and Communications Security, Athens, Greece, ACM, pp.235-244, 2000. 被引量：1
8R. Dutta and R. Barua, "Dynamic group key agreement in tree- based setting", Proceedings of the lOth Australasian Confer- ence on Information Security and Privacy, Brisbane, Australia, Springer, LNCS Vol.3574, pp.101-112, 2005. 被引量：1
9K.Y. Choi, J.Y. Hwang and D.H. Lee, "Efficient ID-based group key agreement with bilinear maps", Proceedings of the 7th In- ternational Workshop on Theory and Practice in Public Key Cryptography, Singapore, Springer, LNCS Vol.2947, pp.130- 144, 2004. 被引量：1
10R. Dutta and R. Barua, "Provably secure constant round con- tributory group key agreement in dynamic setting", IEEE Tran- sancations on Information Theory, Vol.54, No.5, pp.2007-2025, 2008. 被引量：1

共引文献10

1何桂荣,宋宗余.模指数运算的一种快速实现算法[J].通信技术,2017,50(5):1045-1049. 被引量：1
2ZHANG Qikun,LI Yongjiao,ZHANG Quanxin,YUAN Junling,WANG Ruifang,GAN Yong,TAN Yu'an.A Self-certified Cross-Cluster Asymmetric Group Key Agreement for Wireless Sensor Networks[J].Chinese Journal of Electronics,2019,28(2):280-287. 被引量：5
3谢涛,滕济凯.非对称群组密钥交换协议的叛逆追踪性[J].通信技术,2019,52(5):1210-1214. 被引量：2
4张怡帆,任炯炯,陈少真.一种新的面向硬件轻量级near-MDS矩阵的构造算法[J].密码学报,2019,6(4):433-442.
5李峰,龚宗跃,雷翻翻,顾申,高鹏.快速素数生成方法综述[J].密码学报,2019,6(4):463-476. 被引量：1
6宋丽华,李涛,王伊蕾.博弈论在区块链中的应用研究[J].密码学报,2019,6(1):100-111. 被引量：6
7李旭东,牛玉坤,魏凌波,张驰,俞能海.比特币隐私保护综述[J].密码学报,2019,6(2):133-149. 被引量：20
8徐林宏,郭建胜,崔竞一,李明明.Piccolo算法的Biclique分析[J].密码学报,2019,6(2):150-164.
9张毅,刘国强,李超.类SIMON算法参数等价类研究[J].密码学报,2019,6(3):293-303. 被引量：1
10冯天耀,韦永壮,史佳利,丛旌,郑彦斌.轻量级分组密码GIFT的差分故障攻击[J].密码学报,2019,6(3):324-335. 被引量：3

同被引文献16

1王剑锋,张应辉,马华.浅谈密码学与信息安全[J].西安文理学院学报（自然科学版）,2020,23(1):34-36. 被引量：7
2李玮,谷大武.基于密钥编排故障的SMS4算法的差分故障分析[J].通信学报,2008,29(10):135-142. 被引量：23
3郭华,丁国良,刘昌杰,尹文龙.DES加密算法的差分电磁攻击实现[J].微电子学与计算机,2009,26(12):34-37. 被引量：4
4王红胜,宋凯,张阳,陈开颜.针对高级加密标准算法的光故障注入攻击[J].计算机工程,2011,37(21):97-99. 被引量：4
5陈海红.DES中S盒差分概率表的实现[J].赤峰学院学报（自然科学版）,2012,28(3):43-45. 被引量：1
6吕慧,赵跃华.基于掩码的AES算法抗二阶DPA攻击方法研究[J].电子设计工程,2015,23(20):31-33. 被引量：6
7荣雪芳,吴震,王敏,杜之波,饶金涛.基于随机故障注入的SM4差分故障攻击方法[J].计算机工程,2016,42(7):129-133. 被引量：8
8贾平,徐洪,来学嘉.LBlock-s算法的不可能差分分析[J].电子学报,2017,45(4):966-973. 被引量：2
9龚向东,王佳,张准,王坤.基于FPGA的AES算法硬件实现优化及IP核应用[J].电子设计工程,2017,25(12):1-5. 被引量：7
10李浪,邹祎,李株华,刘波涛.DBlock密码算法差分故障分析[J].计算机科学,2017,44(7):116-119. 被引量：2

引证文献3

1段晓毅,李姣,蒋桂秋,宿淑春,李秀滢.智能卡电压故障注入攻击研究与实现[J].北京电子科技学院学报,2019(3):40-49.
2谢敏,李嘉琪,田峰.GOST的差分故障攻击[J].密码学报,2021,8(4):630-639. 被引量：1
3孟娇,李濛,胡晓波,成嵩,杜鹏程,高鹰.轻量级LBlock算法硬件实现与研究[J].电力信息与通信技术,2023,21(3):47-52.

二级引证文献1

1谢敏,江家煜,陈杰.SKINNY的差分故障攻击与ForkAE的密钥恢复攻击[J].密码学报（中英文）,2024,11(3):692-705.

1毛和风,胡斌.基于整数的轻量级分组密码电路的同态运算[J].计算机科学,2018,45(11):169-175.
2陈怀凤.轻量级分组密码算法设计研究[J].信息技术与网络安全,2018,37(11):25-29. 被引量：2
3施泰荣,关杰,李俊志,王森鹏.故障模型下MORUS算法的差分扩散性质研究[J].软件学报,2018,29(9):2861-2873. 被引量：2
4冯秀涛,张凡,黄慎.一类模加差分方程系统解个数的期望与方差[J].中国科学：数学,2017,47(11):1545-1556.
5何艳冰,何嘉宝,麦志晖.自制《ICU约束患者巡查表》对非计划性拔管ICU患者应用[J].现代养生,2019,0(4):81-82.
6刘城霞,蔡英,范艳芳.一种简单的密钥管理服务研究及实现[J].安防技术,2018,6(4):67-73.
7计算的极限(九):叹息与奋斗[J].语数外学习（高中版）（中）,2018(11):63-66.
8谭至聪.轻量级密码Rectangle实现及优化研究[J].福建电脑,2019,35(1):108-109.
9计算的极限(十):无限绵延的层级[J].语数外学习（高中版）（下）,2018(11):60-65.
10范校正.逆向思维在解题中的应用[J].语数外学习（高中版）（上）,2018(12):41-41.

密码学报

2019年第1期

浏览历史

内容加载中请稍等...

对轻量级分组密码算法LBlock的差分故障攻击被引量：3

参考文献2

二级参考文献34

共引文献10

同被引文献16

引证文献3

二级引证文献1

相关作者

相关机构

相关主题

浏览历史

对轻量级分组密码算法LBlock的差分故障攻击 被引量：3

参考文献2

二级参考文献34

共引文献10

同被引文献16

引证文献3

二级引证文献1

相关作者

相关机构

相关主题

浏览历史

对轻量级分组密码算法LBlock的差分故障攻击被引量：3