Invisible Probe: Timing Attacks with PCIe Congestion Side-channel

2021 ◽  
Author(s):  
Mingtian Tan ◽  
Junpeng Wan ◽  
Zhe Zhou ◽  
Zhou Li
Keyword(s):  
Side Channel ◽  
Timing Attacks

scholarly journals Timing attacks and local timing attacks against Barrett’s modular multiplication algorithm

2021 ◽  
Author(s):  
Johannes Mittmann ◽  
Werner Schindler
Keyword(s):  
Side Channel ◽  
Modular Exponentiation ◽  
Modular Multiplication ◽  
Multiplication Algorithm ◽  
Diffie Hellman ◽  
Mathematical Difficulties ◽  
Execution Times ◽  
Stochastic Properties ◽  
Timing Attacks ◽  
Theoretical Results

AbstractMontgomery’s and Barrett’s modular multiplication algorithms are widely used in modular exponentiation algorithms, e.g. to compute RSA or ECC operations. While Montgomery’s multiplication algorithm has been studied extensively in the literature and many side-channel attacks have been detected, to our best knowledge no thorough analysis exists for Barrett’s multiplication algorithm. This article closes this gap. For both Montgomery’s and Barrett’s multiplication algorithm, differences of the execution times are caused by conditional integer subtractions, so-called extra reductions. Barrett’s multiplication algorithm allows even two extra reductions, and this feature increases the mathematical difficulties significantly. We formulate and analyse a two-dimensional Markov process, from which we deduce relevant stochastic properties of Barrett’s multiplication algorithm within modular exponentiation algorithms. This allows to transfer the timing attacks and local timing attacks (where a second side-channel attack exhibits the execution times of the particular modular squarings and multiplications) on Montgomery’s multiplication algorithm to attacks on Barrett’s algorithm. However, there are also differences. Barrett’s multiplication algorithm requires additional attack substeps, and the attack efficiency is much more sensitive to variations of the parameters. We treat timing attacks on RSA with CRT, on RSA without CRT, and on Diffie–Hellman, as well as local timing attacks against these algorithms in the presence of basis blinding. Experiments confirm our theoretical results.

scholarly journals Novel Side-Channel Attacks on Quasi-Cyclic Code-Based Cryptography

2019 ◽  
pp. 180-212 ◽  
Author(s):  
Bo-Yeon Sim ◽  
Jihoon Kwon ◽  
Kyu Young Choi ◽  
Jihoon Cho ◽  
Aesun Park ◽  
...  
Keyword(s):  
Power Consumption ◽  
Power Analysis ◽  
Cyclic Code ◽  
Linear Equations ◽  
Constant Time ◽  
Side Channel ◽  
Parity Check ◽  
Side Channel Attacks ◽  
Timing Attacks ◽  
Code Based Cryptography

Chou suggested a constant-time implementation for quasi-cyclic moderatedensity parity-check (QC-MDPC) code-based cryptography to mitigate timing attacks at CHES 2016. This countermeasure was later found to become vulnerable to a differential power analysis (DPA) in private syndrome computation, as described by Rossi et al. at CHES 2017. The proposed DPA, however, still could not completely recover accurate secret indices, requiring further solving linear equations to obtain entire secret information. In this paper, we propose a multiple-trace attack which enables to completely recover accurate secret indices. We further propose a singletrace attack which can even work when using ephemeral keys or applying Rossi et al.’s DPA countermeasures. Our experiments show that the BIKE and LEDAcrypt may become vulnerable to our proposed attacks. The experiments are conducted using power consumption traces measured from ChipWhisperer-Lite XMEGA (8-bit processor) and ChipWhisperer UFO STM32F3 (32-bit processor) target boards.

scholarly journals Are Timing-Based Side-Channel Attacks Feasible in Shared, Modern Computing Hardware?

2018 ◽  
Vol 8 (2) ◽  
pp. 32-59 ◽  
Author(s):  
Reza Montasari ◽  
Amin Hosseinian-Far ◽  
Richard Hill ◽  
Farshad Montaseri ◽  
Mak Sharma ◽  
...  
Keyword(s):  
Side Channel ◽  
Security Threats ◽  
Side Channel Attacks ◽  
Broad Application ◽  
Application Range ◽  
Computing Process ◽  
Timing Attacks ◽  
Modern Computing ◽  
Shared Computing

This article describes how there exist various vulnerabilities in computing hardware that adversaries can exploit to mount attacks against the users of such hardware. Microarchitectural attacks, the result of these vulnerabilities, take advantage of microarchitectural performance of processor implementations, revealing hidden computing process. Leveraging microarchitectural resources, adversaries can potentially launch timing-based side-channel attacks in order to leak information via timing. In view of these security threats against computing hardware, the authors analyse current attacks that take advantage of microarchitectural elements in shared computing hardware. This analysis focuses only on timing-based side-channel attacks against the components of modern PC platforms - with references being made also to other platforms when relevant - as opposed to any other variations of side-channel attacks which have a broad application range. To this end, the authors analyse timing attacks performed against processor and cache components, again with references to other components when appropriate.

scholarly journals SSSL: Shoulder Surfing Safe Login

2010 ◽  
Vol 6 (2) ◽  
pp. 65 ◽  
Author(s):  
Toni Perković ◽  
Mario Čagalj ◽  
Nikola Rakić
Keyword(s):  
Cognitive Skills ◽  
Broad Class ◽  
Side Channel ◽  
Usability Study ◽  
User Input ◽  
Shoulder Surfing ◽  
Authentication Schemes ◽  
Cost Efficient ◽  
User Friendly ◽  
Timing Attacks

Classical PIN-entry methods are vulnerable to a broad class of observation attacks (shoulder surfing, key-logging).A number of alternative PIN-entry methods that are based on human cognitive skills have been proposed. These methods can be classified into two classes regarding information available to a passive adversary: (i) the adversary fully observes the entire input and output of a PIN-entry procedure, and (ii) the adversary can only partially observe the input and/or output. In this paper we propose a novel PIN-entry scheme - Shoulder Surfing Safe Login (SSSL). SSSL is a challenge response protocol that allows a user to login securely in the presence of the adversary who can observe (via key-loggers, cameras) user input. This is accomplished by restricting the access to SSSL challenge values. Compared to existing solutions, SSSL is both user-friendly (not mentally demanding) and cost efficient. Our usability study reveals that the average login time with SSSL is around 8 sec in a 5-digit PIN scenario. We also show the importance of considering side-channel timing attacks in the context of authentication schemes based on human cognitive skills.

scholarly journals Improved Timing Attacks against the Secret Permutation in the McEliece PKC

2016 ◽  
Vol 12 (1) ◽  
pp. 7 ◽  
Author(s):  
Dominic Bucerzan ◽  
Pierre-Louis Cayrel ◽  
Vlad Dragoi ◽  
Tania Richmond
Keyword(s):  
Minimum Distance ◽  
Public Key ◽  
Side Channel ◽  
Public Key Cryptosystem ◽  
Hamming Weight ◽  
Secret Key ◽  
Decoding Algorithm ◽  
Side Channel Attacks ◽  
Decoding Algorithms ◽  
Timing Attacks

In this paper, we detail two side-channel attacks against the McEliece public-key cryptosystem. They are exploiting timing differences on the Patterson decoding algorithm in order to reveal one part of the secret key: the support permutation. The first one is improving two existing timing attacks and uses the correlation between two different steps of the decoding algorithm. This improvement can be deployed on all error-vectors with Hamming weight smaller than a quarter of the minimum distance of the code. The second attack targets the evaluation of the error locator polynomial and succeeds on several different decoding algorithms. We also give an appropriate countermeasure.

Recent Research Trends in Side Channel Attack on Cryptographic Modules and its Countermeasure

2012 ◽  
Vol 132 (1) ◽  
pp. 9-12
Author(s):  
Yu-ichi Hayashi ◽  
Naofumi Homma ◽  
Takaaki Mizuki ◽  
Takafumi Aoki ◽  
Hideaki Sone
Keyword(s):  
Research Trends ◽  
Side Channel ◽  
Side Channel Attack

A Fast Power Current Simulation of Cryptographic VLSI Circuits for Side Channel Attack Evaluation

2013 ◽  
Vol E96.A (12) ◽  
pp. 2533-2541
Author(s):  
Daisuke FUJIMOTO ◽  
Toshihiro KATASHITA ◽  
Akihiko SASAKI ◽  
Yohei HORI ◽  
Akashi SATOH ◽  
...  
Keyword(s):  
Vlsi Circuits ◽  
Side Channel ◽  
Side Channel Attack ◽  
Fast Power

Scan-Based Side-Channel Attack on the Camellia Block Cipher Using Scan Signatures

2015 ◽  
Vol E98.A (12) ◽  
pp. 2547-2555 ◽  
Author(s):  
Huiqian JIANG ◽  
Mika FUJISHIRO ◽  
Hirokazu KODERA ◽  
Masao YANAGISAWA ◽  
Nozomu TOGAWA
Keyword(s):  
Block Cipher ◽  
Side Channel ◽  
Side Channel Attack
Sign in / Sign up

Export Citation Format

Share Document