A DFA Attack on White-Box Implementations of AES with External Encodings

被引:7
作者
Amadori, Alessandro [1 ]
Michiels, Wil [1 ,2 ]
Roelse, Peter [3 ]
机构
[1] Eindhoven Univ Technol, Dept Math & Comp Sci, Eindhoven, Netherlands
[2] NXP Semicond, Eindhoven, Netherlands
[3] Irdeto BV, Hoofddorp, Netherlands
来源
SELECTED AREAS IN CRYPTOGRAPHY - SAC 2019 | 2020年 / 11959卷
关键词
White-box cryptography; AES; Differential fault analysis;
D O I
10.1007/978-3-030-38471-5_24
中图分类号
TP [自动化技术、计算机技术];
学科分类号
0812 ;
摘要
Attacks based on DFA are an important threat to the security of white-box AES implementations. DFA typically requires that the output of AES is known. The use of external encodings that obfuscate this output is therefore a straightforward and well-known measure against such attacks. This paper presents a new DFA attack on a class of white-box implementations of AES that use a specific type of external encoding on the output. The expected work factor of the new attack is dominated by 232 executions of the white-box implementation.
引用
收藏
页码:591 / 617
页数:27
相关论文
共 18 条
[1]  
[Anonymous], 2001, FIPS PUB
[2]  
[Anonymous], 1986, Introduction to Finite Fields and Their Applications
[3]   White-Box AES Implementation Revisited [J].
Baek, Chung Hun ;
Cheon, Jung Hee ;
Hong, Hyunsook .
JOURNAL OF COMMUNICATIONS AND NETWORKS, 2016, 18 (03) :273-287
[4]  
Banik S, 2017, IACR T SYMMETRIC CRY, V2017, P307, DOI 10.13154/tosc.v2017.i1.307-328
[5]  
Biham E, 1997, LECT NOTES COMPUT SC, V1294, P513
[6]  
Billet O, 2005, LECT NOTES COMPUT SC, V3357, P227
[7]  
Biryukov A, 2018, LECT NOTES COMPUT SC, V11273, P373, DOI 10.1007/978-3-030-03329-3_13
[8]   Differential Computation Analysis: Hiding Your White-Box Designs is Not Enough [J].
Bos, Joppe W. ;
Hubain, Charles ;
Michiels, Wil ;
Teuwen, Philippe .
CRYPTOGRAPHIC HARDWARE AND EMBEDDED SYSTEMS - CHES 2016, 2016, 9813 :215-236
[9]  
Chow S, 2003, LECT NOTES COMPUT SC, V2595, P250
[10]  
Collberg C., 1997, COMPUTER SCI TECHNIC, V148
12