Quantitative analysis of sliding window attack for the RSA timing channel

被引：1

作者：

Mao B. ^{[1
]}

Mu D. ^{[1
]}

Hu W. ^{[1
,2
]}

Zhang H. ^{[1
]}

Tai Y. ^{[1
]}

Zhang L. ^{[1
,2
]}

机构：

[1] School of Automation, Northwestern Polytechnical Univ., Xi'an

[2] University of California, San Diego, San Diego

来源：

| 1600年 / Science Press卷 / 44期

关键词：

Information leakage; Information theory; Quantitative analysis; Side channel attack; Timing attack;

D O I：

10.3969/j.issn.1001-2400.2017.05.020

中图分类号：

学科分类号：

摘要：

The timing channel residing in RSA hardware implementations imposes a major threat to hardware security. In this work, we propose a sliding window timing attack method with significant improvement in the attack success rate and employ an information theoretic model to quantitatively measure the effectiveness of the proposed attack. Experimental results show that the sliding window attack method increases the attack success rate from 73% to 96% as compared to Kocher's timing attack, which uses a single bit window. Our results also reveal a strong correlation between attack success rates and the mutual information measurements of the key and encryption time. This indicates that information theoretic metrics can serve as an approach for quantifying the effectiveness of the sliding window timing attack method and evaluating timing channel threat of the RSA hardware architecture. © 2017, The Editorial Board of Journal of Xidian University. All right reserved.

引用

页码：114 / 120

页数：6

共 16 条

[1]

Kocher P.C., Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems, Lecture Notes in Computer Science: 1109, pp. 104-113, (1996)

[2]

Schindler W., Exclusive Exponent Blinding Is Not Enough to Prevent Any Timing Attack on RSA, Journal of Cryptographic Engineering, 6, 2, pp. 101-119, (2016)

[3]

Brumley D., Boneh D., Remote Timing Attacks Are Practical, Computer Networks, 48, 5, pp. 701-716, (2005)

[4]

Cui X., Yang J., Ye H., Et al., Optimized Design Method on Elliptic Curve Cryptography, Journal of Xidian University, 42, 1, pp. 69-74, (2015)

[5]

Waugh R., Could a Vulnerable Computer Chip Allow Hackers to Down a Boeing 787? `Back Door' Could Allow Cyber-criminals a Way in

[6]

Adee S., The Hunt for the Kill Switch, IEEE Spectrum, 45, 5, pp. 34-39, (2008)

[7]

Hu W., Mao B., Oberg J., Et al., Detecting Hardware Trojans with Gate-level Information-flow Tracking, Computer, 49, 8, pp. 44-52, (2016)

[8]

Zhang G., Liu Q., Zhang Q., Low Cost and High Performance RO-PUF Design for IP Protection of FPGA Implementations, Journal of Xidian University, 43, 6, pp. 97-102, (2016)

[9]

Oberg J., Meiklejohn S., Sherwood T., Et al., Leveraging Gate-level Properties to Identify Hardware Timing Channels, IEEE Transactions on Computer-aided Design of Integrated Circuits and Systems, 33, 9, pp. 1288-1301, (2014)

[10]

Mu D.J., Hu W., Mao B.L., Et al., A Bottom-up Approach to Verifiable Embedded System Information Flow Security, IET Information Security, 8, 1, pp. 12-17, (2014)

← 1 2 →