Side-Channel Leakage Detection Based on Constant Parameter Channel Model

2020 ◽  
Author(s):  
Wei Yang ◽  
Hailong Zhang ◽  
Yansong Gao ◽  
Anmin Fu ◽  
Songjie Wei
Keyword(s):  
Channel Model ◽  
Side Channel ◽  
Constant Parameter ◽  
Leakage Detection

scholarly journals Semi-Automatic Locating of Cryptographic Operations in Side-Channel Traces

2021 ◽  
pp. 345-366
Author(s):  
Jens Trautmann ◽  
Arthur Beckers ◽  
Lennert Wouters ◽  
Stefan Wildermann ◽  
Ingrid Verbauwhede ◽  
...  
Keyword(s):  
Fault Injection ◽  
Side Channel ◽  
Leakage Detection ◽  
Clock Frequency ◽  
Detection Techniques ◽  
Effective Time ◽  
Meta Information ◽  
Software Implementations ◽  
Single Data ◽  
The Time Domain

Locating a cryptographic operation in a side-channel trace, i.e. finding out where it is in the time domain, without having a template, can be a tedious task even for unprotected implementations. The sheer amount of data can be overwhelming. In a simple call to OpenSSL for AES-128 ECB encryption of a single data block, only 0.00028% of the trace relate to the actual AES-128 encryption. The rest is overhead. We introduce the (to our best knowledge) first method to locate a cryptographic operation in a side-channel trace in a largely automated fashion. The method exploits meta information about the cryptographic operation and requires an estimate of its implementation’s execution time.The method lends itself to parallelization and our implementation in a tool greatly benefits from GPU acceleration. The tool can be used offline for trace segmentation and for generating a template which can then be used online in real-time waveformmatching based triggering systems for trace acquisition or fault injection. We evaluate it in six scenarios involving hardware and software implementations of different cryptographic operations executed on diverse platforms. Two of these scenarios cover realistic protocol level use-cases and demonstrate the real-world applicability of our tool in scenarios where classical leakage-detection techniques would not work. The results highlight the usefulness of the tool because it reliably and efficiently automates the task and therefore frees up time of the analyst.The method does not work on traces of implementations protected by effective time randomization countermeasures, e.g. random delays and unstable clock frequency, but is not affected by masking, shuffling and similar countermeasures.

Enhanced side-channel leakage detection method by considering combinational logic

2015 ◽  
Vol 12 (6) ◽  
pp. 1-10 ◽  
Author(s):  
Junrong Liu ◽  
Zheng Guo ◽  
Dawu Gu ◽  
Yu Yu ◽  
Haining Lu ◽  
...  
Keyword(s):  
Detection Method ◽  
Side Channel ◽  
Combinational Logic ◽  
Leakage Detection

Circulatory Flow Characteristics in Side Channel Blowers

2017 ◽  
Vol 871 ◽  
pp. 237-243 ◽  
Author(s):  
Sven Münsterjohann ◽  
Till Heinemann ◽  
Stefan Becker
Keyword(s):  
High Pressure ◽  
Energy Transfer ◽  
Momentum Transfer ◽  
Centrifugal Force ◽  
Channel Model ◽  
Pressure Rise ◽  
Side Channel ◽  
Shear Stresses ◽  
Pressure Coefficients ◽  
Circulatory Flow

Side channel blowers generate their pressure rise by a complex inner flow field. Despite being subject to scientific investigations since the 1940s, the mechanism behind the generation of high-pressure coefficients, i.e. around 20, are still not fully known. In literature, two main theories try to explain the inner workings and the momentum transfer from theimpeller to the fluid. One approach sees the momentum being transferred by shear stresses between the impeller and the slower fluid in the channel. The other approach sees the circulatory flow, generated by the centrifugal force acting on the circumferentially moving fluid, as the key mechanism to energy transfer from the impeller to the fluid. A review of both mechanisms is necessary to allow for further improvements in the efficiency. In the current work, a numerical analysis of a straight side channel model is presented. The model holds the possibility to omit the influence of the centrifugal force and thus prevent the generation of a circulatory flow. Hence, only shear stresses between fluid and impeller contribute to the momentum transfer. The results show that the circulatory flow is essential to a proper energy transfer and thus high pressure coefficients.

scholarly journals EM-X-DL: Efficient Cross-device Deep Learning Side-channel Attack With Noisy EM Signatures

2022 ◽  
Vol 18 (1) ◽  
pp. 1-17
Author(s):  
Josef Danial ◽  
Debayan Das ◽  
Anupam Golder ◽  
Santosh Ghosh ◽  
Arijit Raychowdhury ◽  
...  
Keyword(s):  
Deep Learning ◽  
Deep Neural Network ◽  
Signal To Noise Ratio ◽  
Side Channel ◽  
Leakage Detection ◽  
High Confidence ◽  
Side Channel Analysis ◽  
Channel Analysis ◽  
Single Trace ◽  
Processing Techniques

This work presents a Cross-device Deep-Learning based Electromagnetic (EM-X-DL) side-channel analysis (SCA) on AES-128, in the presence of a significantly lower signal-to-noise ratio (SNR) compared to previous works. Using a novel algorithm to intelligently select multiple training devices and proper choice of hyperparameters, the proposed 256-class deep neural network (DNN) can be trained efficiently utilizing pre-processing techniques like PCA, LDA, and FFT on measurements from the target encryption engine running on an 8-bit Atmel microcontroller. In this way, EM-X-DL achieves >90% single-trace attack accuracy. Finally, an efficient end-to-end SCA leakage detection and attack framework using EM-X-DL demonstrates high confidence of an attacker with <20 averaged EM traces.

scholarly journals Strength in Numbers: Improving Generalization with Ensembles in Machine Learning-based Profiled Side-channel Analysis

2020 ◽  
pp. 337-364
Author(s):  
Guilherme Perin ◽  
Łukasz Chmielewski ◽  
Stjepan Picek
Keyword(s):  
Neural Network ◽  
Machine Learning ◽  
Side Channel ◽  
Leakage Detection ◽  
Training Set ◽  
Specific Test ◽  
Side Channel Analysis ◽  
Leakage Model ◽  
Channel Analysis ◽  
Weight Initialization

The adoption of deep neural networks for profiled side-channel attacks provides powerful options for leakage detection and key retrieval of secure products. When training a neural network for side-channel analysis, it is expected that the trained model can implement an approximation function that can detect leaking side-channel samples and, at the same time, be insensible to noisy (or non-leaking) samples. This outlines a generalization situation where the model can identify the main representations learned from the training set in a separate test set.This paper discusses how output class probabilities represent a strong metric when conducting the side-channel analysis. Further, we observe that these output probabilities are sensitive to small changes, like selecting specific test traces or weight initialization for a neural network. Next, we discuss the hyperparameter tuning, where one commonly uses only a single out of dozens of trained models, where each of those models will result in different output probabilities. We show how ensembles of machine learning models based on averaged class probabilities can improve generalization. Our results emphasize that ensembles increase a profiled side-channel attack’s performance and reduce the variance of results stemming from different hyperparameters, regardless of the selected dataset or leakage model.

scholarly journals Side-Channel Leakage Detection with One-Way Analysis of Variance

2021 ◽  
Vol 2021 ◽  
pp. 1-13
Author(s):  
Wei Yang ◽  
Anni Jia
Keyword(s):  
Analysis Of Variance ◽  
Measurement Data ◽  
Security Evaluation ◽  
Side Channel ◽  
Security Assessment ◽  
Leakage Detection ◽  
Intermediate Variable ◽  
Detection Approach ◽  
The Difference ◽  
The One

Side-channel analysis (SCA) is usually used for security evaluation to test the side-channel vulnerability of a cryptographic device. However, in practice, an analyser may need to cope with enormous amounts of side-channel measurement data to extract valuable information for SCA. Under the circumstances, side-channel leakage detection can be used to identify leakage points which contain secret information and therefore improve the efficiency of security assessment. This investigation proposes a new black-box leakage detection approach on the basis of the one-way analysis of variance (ANOVA). In accordance with the relevance between leakage points and inputs of a cryptographic algorithm, the proposed method divides side-channel samples into multiple classes and tests the difference among these classes by taking advantage of the one-way ANOVA. Afterwards, leakage points and nonleakage points can be distinguished by determining whether the null hypothesis is accepted. Further, we extend our proposed method to multichannel leakage detection. In particular, a new SCA attack with a F -statistic-based distinguisher is capable of developing if the input of the leakage detection approach is replaced by a sensitive intermediate variable. Practical experiments show the effectiveness of the proposed methods.

scholarly journals Leakage Detection with the x2-Test

2018 ◽  
pp. 209-237 ◽  
Author(s):  
Amir Moradi ◽  
Bastian Richter ◽  
Tobias Schneider ◽  
François-Xavier Standaert
Keyword(s):  
Black Box ◽  
Higher Order ◽  
T Test ◽  
Statistical Moments ◽  
Side Channel ◽  
Leakage Detection ◽  
Key Recovery ◽  
Detection Techniques ◽  
The Moment ◽  
Key Recovery Attacks

We describe how Pearson’s χ2-test can be used as a natural complement to Welch’s t-test for black box leakage detection. In particular, we show that by using these two tests in combination, we can mitigate some of the limitations due to the moment-based nature of existing detection techniques based on Welch’s t-test (e.g., for the evaluation of higher-order masked implementations with insufficient noise). We also show that Pearson’s χ2-test is naturally suited to analyze threshold implementations with information lying in multiple statistical moments, and can be easily extended to a distinguisher for key recovery attacks. As a result, we believe the proposed test and methodology are interesting complementary ingredients of the side-channel evaluation toolbox, for black box leakage detection and non-profiled attacks, and as a preliminary before more demanding advanced analyses.

Sign in / Sign up

Export Citation Format

Share Document