Design of a Set of Software Tools for Side-Channel Attacks

Alberto Fuentes; Luis Hernández; Agustín Martín; Bernardo Alarcos

doi:10.17648/enig.v1i1.22

Article Tools

Print this article

Indexing metadata

How to cite item

Email this article (Login required)

Email the author (Login required)

Font Size

Open Journal Systems

Language

User

Journal Help

About The Authors

Alberto Fuentes
Departamento de Tratamiento de la Información y Criptograma,Instituto de Tecnologías Físicas y de la Información, Consejo Superior de Investigaciones Científicas, Madrid, España

Alberto Fuentes received his MSc. degree in Computer Science from the KTH Kungliga Tekniska Högskolan, Stockholm, Sweden in 2007. He has been employed by INTA as computer security specialist from 2007 to 2011 evaluating products and systems with Common Criteria and ITSEC standards and from 2011 to 2013 in EADS as common criteria consultant and I+D researcher. He has wide experience in PKI platforms, ad-hoc application or system penetration testing and system vulnerability analysis, and is currently involved in the design and implementation of software tools to carry out side channel attacks to cryptographic devices, pursuing his Ph.D. degree.

Luis Hernández
Departamento de Tratamiento de la Información y Criptografía, Instituto de Tecnologías Físicas y de la Información, Consejo Superior de Investigaciones Científicas, Madrid, España

Luis Hernández obtained his Graduate in Mathematics at the University of Salamanca (Spain) in 1980 and his Ph.D. in Mathematics at the same university in 1992. He is a researcher at the Department of Information Processing and Cryptography (TIC) at the Institute of Physical and Information Technologies (ITEFI), Spanish National Research Council (CSIC) in Madrid (Spain). He has participated in more than 30 research projects. He is author of 9 books, 9 patents, more than 150 papers, more than 100 contributions to workshops and conferences, he has supervised 3 doctoral thesis and has served as referee for different SCI journals and for many international conferences. His current research interests include Cryptography and Cryptanalysis of public key cryptosystems (RSA, ElGamal and Chor-Rivest), Cryptosystems based on elliptic and hyperelliptic curves, Graphic Cryptography, Pseudorandom number generators, Digital signature schemes, Authentication and Identification protocols, Crypto-Biometry, Secret sharing protocols, Side channel attacks, and Number Theory problems. Dr. Hernández belongs to the International Association for Cryptologic Research (IACR).

Agustín Martín
Departamento de Tratamiento de la Información y Criptografía, Instituto de Tecnologías Físicas y de la Información, Consejo Superior de Investigaciones Científicas, Madrid, España

Agustín Martín obtained his Graduate in Physics at the Complutense University of Madrid (Spain) in 1988 and his Ph.D. in Physics at the same university in 1995. He is currently a researcher at the Department of Information Processing and Cryptography (TIC) of the Institute of Physical and Information Technologies (ITEFI), Spanish National Research Council (CSIC), in Madrid. He started his research career dealing with the development of numerical methods in electromagnetics to study the interaction of electromagnetic radiation, especially in the radiofrequency range, with different objects as satellites or biological tissues. His latest research interests are focused on the analysis of possible vulnerabilities of radiofrequency identification systems (RFID) and the study of techniques of physical attacks to cryptographic devices. He has published 20 research papers in international scientific journals and is co-author of a book and more than 60 contributions to peer reviewed workshops and conferences. He has participated in 20 research projects and contracts, has taught several courses and seminars, and is co-author of 3 patents. Dr. Martin is member of the International Association for Cryptologic Research (IACR).

Bernardo Alarcos
Departamento de Automática, Escuela Politécnica Superior, Universidad de Alcalá, Madrid, España

Bernardo Alarcos received his Ph.D. degree in telecommunications from the University of Alcalá, Spain in 2004. He received his M.Sc. degree in Telecommunications Engineering from the UPM, Polytechnic University of Madrid, Madrid, Spain in 1979. Since 1999, he has been employed as an Associate Professor at the Alcalá University. The subject of the thesis was about proposal of security architecture in Programmable Networks. He has participated in more than 5 projects developing activities related with the cybersecurity. Last projects that is working on is about Honeynet services using virtualization. Since 2010, he has been a member of Research Institute for the Police Science (IUICP), in the area of Computer forensics.

Journal Content
Browse

Notifications

Design of a Set of Software Tools for Side-Channel Attacks

Alberto Fuentes, Luis Hernández, Agustín Martín, Bernardo Alarcos

Abstract

This contribution presents the design and the first experimental results of a set of software tools to carry out side- channel attacks against cryptographic devices, especially smartcards. To this aim, the main attacks of this class are commented, with special emphasis in power analysis attacks. The final objective is to make this set of tools available to the scientific community, so that it can be improved and enlarged according to particular needs.

Keywords

Side channels; Cryptography; Software tools; Security

Full Text:

PDF (Español (España))

References

O. Aciiçmez, J.P. Seifert, and Ç.K. Koç, “Predicting secret keys via branch prediction”, Lecture Notes in Comput. Sci., vol. 4377, pp. 225- 242, 2007.

R. Anderson, M. Bond, J. Clulow, and S. Skorobogatov. “Cryptographic processors-A survey”. Proc. IEEE, vol. 94, 2, pp. 357-369, feb. 2006.

D. Boneh, R.A. DeMillo, and R.J. Lipton, “On the importance of checking cryptographic protocols for faults”, Lecture Notes in Comput. Sci., vol. 1233, pp. 37-51, 1997.

E. Brier, C. Clavier, and F. Olivier, “Correlation power analysis with a leakage model”, Lecture Notes in Comput. Sci., vol. 3156, pp. 16-29, 2004.

B. Chor and R.L. Rivest, “A knapsack-type public key cryptosystem based on arithmetic in finite fields”, IEEE Transactions on Information Theory, vol. 34, pp. 901-909, 1988.

J. Daemen and J. Rijmen, “The Design of Rijndael: AES-The Advanced Encryption Standard”, Springer Verlag, Berlín, Germany, 2002.

T. ElGamal, “A public key cryptosystem and a signature scheme based on discrete logarithms”, IEEE Transactions on Information Theory, vol. 31, pp. 469-472, 1985.

A. Fúster Sabater, L. Hernández Encinas, A Martín Muñoz, F. Montoya Vitini, and J. Muñoz Masqué, “Criptografía, protección de datos y aplicaciones. Una guía para estudiantes y profesionales”, RA-MA, Madrid, Spain, 2012.

D. Hankerson, A.J. Menezes, and S. Vanstone, “Guide to elliptic curve cryptography”, Springer, New York, NY, USA, 2004.

J. Kelsey, B. Schneier, D. Wagner, and C. Hall, “Side channel cryptanalysis of product ciphers”, J. Comput. Secur., vol. 8, 2,3, pp. 141- 158, 2000.

A. Kerckhoffs. “La cryptographie militaire”. Journal des sciences militaires, vol. IX, pp. 1-2, 5-38, 161-191, 1883.

P.C. Kocher, “Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems”, Lecture Notes in Comput. Sci., vol. 1109, pp. 104-113, 1996.

P.C. Kocher, J. Jaffe, and B. Jun, “Differential power analysis”, Lecture Notes in Comput. Sci., vol. 1666, pp. 388-397, 1999.

S. Mangard, E. Oswald, and T. Popp, “Power analysis attacks: Revealing the secrets of smart cards”, Advances in Information Security, Springer Science+Business Media, NY, USA, 2007.

A.J. Menezes, P.C. van Oorschot, and S.A. Vanstone, “Handbook of Applied Cryptography”, CRC Press, Inc., Boca Raton, FL, USA, 1997.

J.-J. Quisquater and D. Samyde, “ElectroMagnetic Analysis (EMA): Measures and counter-measures for smart cards”, Lecture Notes in Comput. Sci., vol. 2140, pp. 200-210, 2001.

R. L. Rivest, A. Shamir, and L. Adleman, “A method for obtaining digital signatures and public-key cryptosystems”, Communications of the ACM, vol. 21, 2, pp. 120-126, 1978.

S.P. Skorobogatov, “Semi-invasive attacks-A new approach to hardware security analysis”, PhD thesis, University of Cambridge, Darwin College, UK, 2005.

DOI: https://doi.org/10.17648/enig.v1i1.22