| Presentation | 2011-12-14 Break Masked AES Implementations Using Fault Sensitivity and Faulty Ciphertext : Review of Presentation at CHES2011 Yang LI, Kazuo OHTA, Kazuo SAKIYAMA, |
|---|---|
| PDF Download Page |  PDF download Page Link |
| Abstract(in Japanese) | (See Japanese page) |
| Abstract(in English) | At CHES 2010, a novel side-channel analysis called fault sensitivity analysis (FSA) has been proposed. The essence of the FSA attack is the exploration of the relationship between the fault injection intensity and the occurrence of the faulty calculation. The originally proposed FSA attack is based on the dependency between the intermediate value and the delay timing for the combinational circuit, and can successfully recover the secret key of 128-bit AES. After that, the FSA attack has been improved from the following two directions, which have been presented at CHES 2011. 1) The break of all the AES cores for SASEBO-R by applying the FSA attack proposed at CHES 2010. 2) The enhancement of the FSA attack by additionally analyzing of the faulty ciphertext that have not been used in the original FSA attack. In this paper, the result of breaking all the AES cores on the SASEBO-R will be explained at first, and then the enhanced FSA attack using faulty ciphertext will be reported in detail especially. In 2), for the AES implementation with masking-based side-channel countermeasures, we successfully find the dependency between the unmasked S-box input and the distribution of the values for a byte of the faulty ciphertext. Based on this factor, we demonstrate how to successfully recover the difference between the secret key bytes for the Masked-AND AES implementation and the AES-Threshold on SASEBO-R. |
| Keyword(in Japanese) | (See Japanese page) |
| Keyword(in English) | Side-channel attacks / fault sensitivity analysis / AES / masking |
| Paper # | ISEC2011-66 |
| Date of Issue |
| Conference Information | |
| Committee | ISEC |
|---|---|
| Conference Date | 2011/12/7(1days) |
| Place (in Japanese) | (See Japanese page) |
| Place (in English) | |
| Topics (in Japanese) | (See Japanese page) |
| Topics (in English) | |
| Chair | |
| Vice Chair | |
| Secretary | |
| Assistant | |
| Paper Information | |
| Registration To | Information Security (ISEC) |
|---|---|
| Language | JPN |
| Title (in Japanese) | (See Japanese page) |
| Sub Title (in Japanese) | (See Japanese page) |
| Title (in English) | Break Masked AES Implementations Using Fault Sensitivity and Faulty Ciphertext : Review of Presentation at CHES2011 |
| Sub Title (in English) | |
| Keyword(1) | Side-channel attacks |
| Keyword(2) | fault sensitivity analysis |
| Keyword(3) | AES |
| Keyword(4) | masking |
| 1st Author's Name | Yang LI |
| 1st Author's Affiliation | Department of Informatics, The University of Electro-Communications() |
| 2nd Author's Name | Kazuo OHTA |
| 2nd Author's Affiliation | Department of Informatics, The University of Electro-Communications |
| 3rd Author's Name | Kazuo SAKIYAMA |
| 3rd Author's Affiliation | Department of Informatics, The University of Electro-Communications |
| Date | 2011-12-14 |
| Paper # | ISEC2011-66 |
| Volume (vol) | vol.111 |
| Number (no) | 337 |
| Page | pp.pp.- |
| #Pages | 24 |
| Date of Issue | |