Bucketing and information flow analysis for provable timing attack mitigation

This paper investigates the effect of bucketing in security against timing-channel attacks. Bucketing is a technique proposed to mitigate timing-channel attacks by restricting a system’s outputs to only occur at designated time intervals, and has the effect of reducing the possible timing-channel observations to a small number of possibilities. However, there is little formal analysis on when and to what degree bucketing is effective against timing-channel attacks. In this paper, we show that bucketing is in general insufficient to ensure security. Then, we present two conditions that can be used to ensure security of systems against adaptive timing-channel attacks. The first is a general condition that ensures that the security of a system decreases only by a limited degree by allowing timing-channel observations, whereas the second condition ensures that the system would satisfy the first condition when bucketing is applied and hence becomes secure against timing-channel attacks. A main benefit of the conditions is that they allow separation of concerns whereby the security of the regular channel can be proven independently of concerns of side-channel information leakage, and certain conditions are placed on the side channel to guarantee the security of the whole system. Further, we show that the bucketing technique can be applied compositionally in conjunction with the constant-time-implementation technique to increase their applicability. While we instantiate our contributions to timing channel and bucketing, many of the results are actually quite general and are applicable to any side channels and techniques that reduce the number of possible observations on the channel. It is interesting to note that our results make non-trivial (and somewhat unconventional) uses of ideas from information flow research such as channel capacity and refinement order relation.

Download Full-text

Formal Analysis of Information Flow Using Min-Entropy and Belief Min-Entropy

Formalized Probability Theory and Applications Using Theorem Proving ◽

10.4018/978-1-4666-8315-0.ch010 ◽

2015 ◽

pp. 143-158

Keyword(s):

Information Flow ◽

Formal Analysis ◽

Flow Analysis ◽

Information Leakage ◽

Vital Role ◽

Order Logic ◽

Theorem Prover ◽

Higher Order Logic ◽

Information Flow Analysis ◽

Paper And Pencil

Information flow analysis plays a vital role in obtaining quantitative bounds on information leakage due to external attacks. Traditionally, information flow analysis is done using paper-and-pencil-based proofs or computer simulations based on the Shannon entropy and mutual information. However, these metrics sometimes provide misleading information while dealing with some specific threat models, like when the secret is correctly guessed in one try. Min-Entropy and Belief Min-Entropy metrics have been recently proposed to address these problems. But the information flow analysis using these metrics is done by simulation and paper-and-pencil approaches and thus cannot ascertain accurate results due to their inherent limitations. In order to overcome these shortcomings, the authors present the formalization of Min-Entropy and Belief-Min-Entropy in higher-order logic and use them to perform information flow analysis within the sound core of the HOL4 theorem prover in this chapter. For illustration purposes, they use their formalization to evaluate the information leakage of a cascade of channels in HOL.

Download Full-text

Security validation of VP-based SoCs using dynamic information flow tracking

it - Information Technology ◽

10.1515/itit-2018-0027 ◽

2019 ◽

Vol 61 (1) ◽

pp. 45-58 ◽

Cited By ~ 4

Author(s):

Mehran Goli ◽

Muhammad Hassan ◽

Daniel Große ◽

Rolf Drechsler

Keyword(s):

Information Flow ◽

Flow Analysis ◽

Information Leakage ◽

Electronic System ◽

System Level ◽

Time Behavior ◽

Security Threat ◽

Dynamic Information ◽

Information Flow Tracking ◽

Access To Data

Abstract Modern System-on-Chips (SoCs) are notoriously insecure. Hence, the fundamental security feature of IP isolation is heavily used, e. g., secured Memory Mapped IOs (MMIOs), or secured address ranges in case of memories, are marked as non-accessible. One way to provide strong assurance of security is to define isolation as information flow policy in hardware using the notion of non-interference. Since, an insecure hardware opens up the door for attacks across the entire system stack (from software down to hardware), the security validation process should start as early as possible in the SoC design cycle, i. e. at Electronic System Level (ESL). Hence, in this paper we propose the first dynamic information flow analysis at ESL. Our approach allows to validate the run-time behavior of a given SoC implemented using Virtual Prototypes (VPs) against security threat models, such as information leakage (confidentiality) and unauthorized access to data in a memory (integrity). Experiments show the applicability and efficacy of the proposed method on various VPs including a real-world system.

Download Full-text

Side-channel information leakage of encrypted video stream in video surveillance systems

IEEE INFOCOM 2016 - The 35th Annual IEEE International Conference on Computer Communications ◽

10.1109/infocom.2016.7524621 ◽

2016 ◽

Cited By ~ 11

Author(s):

Hong Li ◽

Yunhua He ◽

Limin Sun ◽

Xiuzhen Cheng ◽

Jiguo Yu

Keyword(s):

Video Surveillance ◽

Information Leakage ◽

Video Stream ◽

Side Channel ◽

Surveillance Systems ◽

Channel Information

Download Full-text

A Comprehensive Side-Channel Information Leakage Analysis of an In-Order RISC CPU Microarchitecture

ACM Transactions on Design Automation of Electronic Systems ◽

10.1145/3212719 ◽

2018 ◽

Vol 23 (5) ◽

pp. 1-30 ◽

Cited By ~ 4

Author(s):

Davide Zoni ◽

Alessandro Barenghi ◽

Gerardo Pelosi ◽

William Fornaciari

Keyword(s):

Information Leakage ◽

Side Channel ◽

Channel Information

Download Full-text

Design Time Engineering of Side Channel Resistant Cipher Implementations

Theory and Practice of Cryptography Solutions for Secure Information Systems - Advances in Information Security, Privacy, and Ethics ◽

10.4018/978-1-4666-4030-6.ch006 ◽

2013 ◽

pp. 133-157 ◽

Cited By ~ 1

Author(s):

Alessandro Barenghi ◽

Luca Breveglieri ◽

Fabrizio De Santis ◽

Filippo Melzani ◽

Andrea Palomba ◽

...

Keyword(s):

Power Consumption ◽

Information Leakage ◽

Smart Phones ◽

Mobile Systems ◽

Side Channel ◽

Security Level ◽

Embedded Devices ◽

Design Time ◽

Secret Keys ◽

Channel Information

Dependable and trustworthy security solutions have emerged as a crucial requirement in the specification of the applications and protocols employed in modern Information Systems (IS). Threats to the security of embedded devices, such as smart phones and PDAs, have been growing since several techniques exploiting side-channel information leakage have proven successful in recovering secret keys even from complex mobile systems. This chapter summarizes the side-channel techniques based on power consumption and elaborates the issue of the design time engineering of a secure system, through the employment of the current hardware design tools. The results of the analysis show how these tools can be effectively used to understand possible vulnerabilities to power consumption side-channel attacks, thus providing a sound conservative margin on the security level. The possible extension of this methodology to the case of fault attacks is also sketched.

Download Full-text

Thermal-aware 3D design for side-channel information leakage

2016 IEEE 34th International Conference on Computer Design (ICCD) ◽

10.1109/iccd.2016.7753336 ◽

2016 ◽

Cited By ~ 6

Author(s):

Peng Gu ◽

Dylan Stow ◽

Russell Barnes ◽

Eren Kursun ◽

Yuan Xie

Keyword(s):

Information Leakage ◽

Side Channel ◽

3D Design ◽

Channel Information

Download Full-text

Attacking and Defending Masked Polynomial Comparison for Lattice-Based Cryptography

IACR Transactions on Cryptographic Hardware and Embedded Systems ◽

10.46586/tches.v2021.i3.334-359 ◽

2021 ◽

pp. 334-359

Author(s):

Shivam Bhasin ◽

Jan-Pieter D’Anvers ◽

Daniel Heinz ◽

Thomas Pöppelmann ◽

Michiel Van Beirendonck

Keyword(s):

Information Leakage ◽

Side Channel ◽

Side Channel Attacks ◽

First Order ◽

Comparison Operation ◽

Security Properties ◽

Channel Information ◽

Comparison Algorithms ◽

Lattice Based Cryptography ◽

Do So

In this work, we are concerned with the hardening of post-quantum key encapsulation mechanisms (KEM) against side-channel attacks, with a focus on the comparison operation required for the Fujisaki-Okamoto (FO) transform. We identify critical vulnerabilities in two proposals for masked comparison and successfully attack the masked comparison algorithms from TCHES 2018 and TCHES 2020. To do so, we use first-order side-channel attacks and show that the advertised security properties do not hold. Additionally, we break the higher-order secured masked comparison from TCHES 2020 using a collision attack, which does not require side-channel information. To enable implementers to spot such flaws in the implementation or underlying algorithms, we propose a framework that is designed to test the re-encryption step of the FO transform for information leakage. Our framework relies on a specifically parametrized t-test and would have identified the previously mentioned flaws in the masked comparison. Our framework can be used to test both the comparison itself and the full decapsulation implementation.

Download Full-text

Power Noise Measurements of Cryptographic VLSI Circuits Regarding Side-Channel Information Leakage

IEICE Transactions on Electronics ◽

10.1587/transele.e97.c.272 ◽

2014 ◽

Vol E97.C (4) ◽

pp. 272-279 ◽

Cited By ~ 2

Author(s):

Daisuke FUJIMOTO ◽

Noriyuki MIURA ◽

Makoto NAGATA ◽

Yuichi HAYASHI ◽

Naofumi HOMMA ◽

...

Keyword(s):

Information Leakage ◽

Vlsi Circuits ◽

Side Channel ◽

Noise Measurements ◽

Channel Information ◽

Power Noise

Download Full-text

Information theoretic analysis of side channel information leakage in FCFS schedulers

2011 IEEE International Symposium on Information Theory Proceedings ◽

10.1109/isit.2011.6033737 ◽

2011 ◽

Cited By ~ 11

Author(s):

Xun Gong ◽

Negar Kiyavash ◽

Parv Venkitasubramaniam

Keyword(s):

Information Leakage ◽

Side Channel ◽

Theoretic Analysis ◽

Information Theoretic ◽

Channel Information

Download Full-text

Information Theoretic Security for Broadcasting of Two Encrypted Sources under Side-Channel Attacks †

Entropy ◽

10.3390/e21080781 ◽

2019 ◽

Vol 21 (8) ◽

pp. 781

Author(s):

Bagus Santoso ◽

Yasutada Oohama

Keyword(s):

Secure Communication ◽

Side Information ◽

Physical Phenomenon ◽

Sufficient Conditions ◽

Information Leakage ◽

Side Channel ◽

Side Channel Attacks ◽

Additional Information ◽

Side Channels ◽

Secret Keys

In this paper, we propose a theoretical framework to analyze the secure communication problem for broadcasting two encrypted sources in the presence of an adversary which launches side-channel attacks. The adversary is not only allowed to eavesdrop the ciphertexts in the public communication channel, but is also allowed to gather additional information on the secret keys via the side-channels, physical phenomenon leaked by the encryption devices during the encryption process, such as the fluctuations of power consumption, heat, or electromagnetic radiation generated by the encryption devices. Based on our framework, we propose a countermeasure against such adversary by using the post-encryption-compression (PEC) paradigm, in the case of one-time-pad encryption. We implement the PEC paradigm using affine encoders constructed from linear encoders and derive the explicit the sufficient conditions to attain the exponential decay of the information leakage as the block lengths of encrypted sources become large. One interesting feature of the proposed countermeasure is that its performance is independent from the type of side information leaked by the encryption devices.

Download Full-text