Power Attacks Resistance of Cryptographic S-Boxes with Added Error Detection Circuits

Francesco Regazzoni, Thomas Eisenbarth, Johann Grossschadl, Luca Breveglieri, Paolo Ienne, Israel Koren, Christof Paar

Abstract

Many side-channel attacks on implementations of cryptographic algorithms have been developed in recent years demonstrating the ease of extracting the secret key. In response, various schemes to protect cryptographic devices against such attacks have been devised and some implemented in practice. Almost all of these protection schemes target an individual side-channel attack and consequently, it is not obvious whether a scheme for protecting the device against one type of side- channel attacks may make the device more vulnerable to another type of side-channel attacks. We examine in this paper the possibility of such a negative impact for the case where fault detection circuitry is added to a device (to protect it against fault injection attacks) and analyze the resistance of the modified device to power attacks. To simplify the analysis we focus on only one component in the cryptographic device (namely, the S-box in the AES and Kasumi ciphers), and perform power attacks on the original implementation and on a modified implementation with an added parity check circuit. Our results show that the presence of the parity check circuitry has a negative impact on the resistance of the device to power analysis attacks.
Original languageEnglish
Title of host publication22nd IEEE International Symposium on Defect and Fault-Tolerance in VLSI Systems (DFT 2007), 26-28 September 2007, Rome, Italy.
Number of pages9
PublisherIEEE
Publication date22.10.2007
Pages508-516
ISBN (Print)978-0-7695-2885-6
ISBN (Electronic)978-0-7695-2885-4
DOIs
Publication statusPublished - 22.10.2007
Event22nd IEEE International Symposium on Defect and Fault-Tolerance in VLSI Systems (DFT 2007) - Rome, Italy
Duration: 26.09.200728.09.2007

Fingerprint

Dive into the research topics of 'Power Attacks Resistance of Cryptographic S-Boxes with Added Error Detection Circuits'. Together they form a unique fingerprint.

Cite this