Countermeasures against physical security attacks on ICs utilizing on-chip wideband ADCs

2022 ◽  
Author(s):  
Takuji Miki ◽  
Makoto Nagata
Keyword(s):  
Active Fault ◽  
Fault Injection ◽  
Side Channel ◽  
Security Attacks ◽  
Input Buffer ◽  
Analog To Digital ◽  
Side Channel Analysis ◽  
Measurement Results ◽  
Channel Analysis ◽  
On Chip

Abstract Cryptographic ICs on edge devices for internet-of-things (IoT) applications are exposed to an adversary and threatened by malicious side channel analysis. On-chip analog monitoring by sensor circuits embedded inside the chips is one of the possible countermeasures against such attacks. An on-chip monitor circuit consisting of a successive approximation register (SAR) analog-to-digital converter (ADC) and an input buffer acquires a wideband signal, which enables to detects an irregular noise due to an active fault injection and a passive side channel leakage analysis. In this paper, several countermeasures against security attacks utilizing wideband on-chip monitors are reviewed. Each technique is implemented on a prototype chip, and the measurement results prove they can effectively detect and diagnose the security attacks.

scholarly journals Detecting Faults in Inner-Product Masking Scheme - IPM-FD: IPM with Fault Detection

10.29007/fv2n ◽  
2019 ◽  
Author(s):  
Wei Cheng ◽  
Claude Carlet ◽  
Kouassi Goli ◽  
Jean-Luc Danger ◽  
Sylvain Guilley
Keyword(s):  
Fault Detection ◽  
Fault Injection ◽  
Inner Product ◽  
Side Channel ◽  
Embedded Devices ◽  
Side Channel Analysis ◽  
Injection Attacks ◽  
Word Level ◽  
Channel Analysis ◽  
Fault Injection Attacks

Side-channel analysis and fault injection attacks are two typical threats to cryptographic implementations, especially in modern embedded devices. Thus there is an insistent demand for dual side-channel and fault injection protections. As it is known, masking scheme is a kind of provable countermeasures against side-channel attacks. Recently, inner product masking (IPM) was proposed as a promising higher-order masking scheme against side-channel analysis, but not for fault injection attacks. In this paper, we devise a new masking scheme named IPM-FD. It is built on IPM, which enables fault detection. This novel masking scheme has three properties: the security orders in the word-level probing model, bit-level probing model, and the number of detected faults. IPM-FD is proven secure both in the word-level and in the bit-level probing models, and allows for end-to-end fault detection against fault injection attacks.Furthermore, we illustrate its security order by linking it to one defining parameters of linear code, and show its implementation cost by applying IPM-FD to AES-128.

scholarly journals Side-Channel Analysis of the Xilinx Zynq UltraScale+ Encryption Engine

2020 ◽  
pp. 279-304
Author(s):  
Benjamin Hettwer ◽  
Sebastien Leger ◽  
Daniel Fennes ◽  
Stefan Gehrer ◽  
Tim Güneysu
Keyword(s):  
Autonomous Driving ◽  
Side Channel ◽  
Secret Key ◽  
Side Channel Analysis ◽  
Rolling Parameter ◽  
Flexible System ◽  
Computing Platform ◽  
Channel Analysis ◽  
Power Leakage ◽  
On Chip

The Xilinx Zynq UltraScale+ (ZU+) is a powerful and flexible System-on- Chip (SoC) computing platform for next generation applications such as autonomous driving or industrial Internet-of-Things (IoT) based on 16 nm production technology. The devices are equipped with a secure boot mechanism in order to provide confidentiality, integrity, and authenticity of the configuration files that are loaded during power-up. This includes a dedicated encryption engine which features a protocol-based countermeasure against passive Side-Channel Attacks (SCAs) called key rolling. The mechanism ensures that the same key is used only for a certain number of data blocks that has to be defined by the user. However, a suitable choice for the key rolling parameter depends on the power leakage behavior of the chip and is not published by the manufacturer. To close this gap, this paper presents the first publicly known side-channel analysis of the ZU+ encryption unit. We conduct a black-box reverse engineering of the internal hardware architecture of the encryption engine using Electromagnetic (EM) measurements from a decoupling capacitor of the power supply. Then, we illustrate a sophisticated methodology that involves the first five rounds of an AES encryption to attack the 256-bit secret key. We apply the elaborated attack strategy using several new Deep Learning (DL)-based evaluation methods for cryptographic implementations. Even though we are unable to recover all bytes of the secret key, the experimental results still allow us to provide concrete recommendations for the key rolling parameter under realistic conditions. This eventually helps to configure the secure boot mechanism of the ZU+ and similar devices appropriately.

Sign in / Sign up

Export Citation Format

Share Document