- Pierre Belgarric17,19,
- Shivam Bhasin17,
- Nicolas Bruneau17,20,
- Jean-Luc Danger17,21,
- Nicolas Debande17,22,
- Sylvain Guilley17,21,
- Annelie Heuser17,
- Zakaria Najm17 &
- …
- Olivier Rioul18,23
Part of the book series:Lecture Notes in Computer Science ((LNSC,volume 8419))
Included in the following conference series:
1491Accesses
Abstract
Second-order side-channel attacks are used to break first-order masking protections. A practical reason which often limits the efficiency of second-order attacks is the temporal localisation of the leaking samples. Several pairs of leakage samples must be combined which means high computational power. For second-order attacks, the computational complexity is quadratic. At CHES ’04, Waddle and Wagner introduced attacks with complexity\(\mathcal {O}(n \log _2 n)\) on traces collected from ahardware cryptographic implementation, where\(n\) is the window size, by working on traces auto-correlation. Nonetheless, the two samples must belong to the same window which is (normally) not the case forsoftware implementations. In this article, we introduce preprocessing tools that improve the efficiency of bi-variate attacks (while keeping a complexity of\(\mathcal {O}(n \log _2 n)\)), even if the two samples that leak are far away one from the other (as in software). We put forward two main improvements. Firstly, we introduce a method to avoid losing the phase information. Next, we empirically notice that keeping the analysis in the frequency domain can be beneficial for the attack. We apply these attacks in practice on real measurements, publicly available under the DPA Contest v4, to evaluate the proposed techniques. An attack using a window as large as 4000 points is able to reveal the key in only 3000 traces.
This work is partially funded by ANR/JST project SPACES:https://spaces.enst.fr/.
Nicolas Debande – This work has been conducted while Nicolas Debande was with Morpho, Osny, France.
Annelie Heuser – Google European fellow in the field of privacy and is partially founded by this fellowship.
This is a preview of subscription content,log in via an institution to check access.
Access this chapter
Subscribe and save
- Get 10 units per month
- Download Article/Chapter or eBook
- 1 Unit = 1 Article or 1 Chapter
- Cancel anytime
Buy Now
- Chapter
- JPY 3498
- Price includes VAT (Japan)
- eBook
- JPY 5491
- Price includes VAT (Japan)
- Softcover Book
- JPY 6864
- Price includes VAT (Japan)
Tax calculation will be finalised at checkout
Purchases are for personal use only
Similar content being viewed by others
Notes
- 1.
Three or four frequencies are especially leaky, which is much less than the tens of leakages dates in the time domain – cf. Fig. 2.
References
Brier, E., Clavier, C., Olivier, F.: Correlation power analysis with a leakage model. In: Joye, M., Quisquater, J.-J. (eds.) CHES 2004. LNCS, vol. 3156, pp. 16–29. Springer, Heidelberg (2004)
Clavier, C., Feix, B., Gagnerot, G., Roussellet, M., Verneuil, V.: Improved collision-correlation power analysis on first order protected AES. In: Preneel, B., Takagi, T. (eds.) CHES 2011. LNCS, vol. 6917, pp. 49–62. Springer, Heidelberg (2011)
Coron, J.-S., Kizhvatov, I.: Analysis and improvement of the random delay countermeasure of CHES 2009. In: Mangard, S., Standaert, F.-X. (eds.) CHES 2010. LNCS, vol. 6225, pp. 95–109. Springer, Heidelberg (2010)
Dabosville, G., Doget, J., Prouff, E.: A new second-order side channel attack based on linear regression. IEEE Trans. Comput.62(8), 1629–1640 (2013)
Frigo, M., Johnson, S.G.: The design and implementation of FFTW3. Proc. IEEE93(2), 216–231 (2005). doi:10.1109/JPROC.2004.840301
Goubin, L., Patarin, J.: DES and differential power analysis. In: Koç, Ç.K., Paar, C. (eds.) CHES 1999. LNCS, vol. 1717, pp. 158–172. Springer, Heidelberg (1999)
Hartley., R.V.L.: A more symmetrical Fourier analysis applied to transmission problems. Proc. IRE30(3), 144–150 (1942)
Mateos, E., Gebotys, C.H.: A new correlation frequency analysis of the side channel. In: Proceedings of the 5th Workshop on Embedded Systems Security, WESS ’10, pp. 4:1–4:8, ACM, New York (2010)
Moradi, A., Mischke, O.: On the simplicity of converting leakages from multivariate to univariate. In: Bertoni, G., Coron, J.-S. (eds.) CHES 2013. LNCS, vol. 8086, pp. 1–20. Springer, Heidelberg (2013)
Moradi, A., Mischke, O., Eisenbarth, T.: Correlation-enhanced power analysis collision attack. In: Mangard, S., Standaert, F.-X. (eds.) CHES 2010. LNCS, vol. 6225, pp. 125–139. Springer, Heidelberg (2010)
Oswald, E., Mangard, S., Herbst, C., Tillich, S.: Practical second-order DPA attacks for masked smart card implementations of block ciphers. In: Pointcheval, D. (ed.) CT-RSA 2006. LNCS, vol. 3860, pp. 192–207. Springer, Heidelberg (2006)
Prouff, E., Rivain, M., Bevan, R.: Statistical analysis of second order differential power analysis. IEEE Trans. Comput.58(6), 799–811 (2009)
Reparaz, O., Gierlichs, B., Verbauwhede, I.: Selecting time samples for multivariate DPA attacks. In: Prouff, E., Schaumont, P. (eds.) CHES 2012. LNCS, vol. 7428, pp. 155–174. Springer, Heidelberg (2012)
TELECOM ParisTech SEN Research Group. DPA Contest, 4th edn. (2013–2014).http://www.DPAcontest.org/v4/
Waddle, J., Wagner, D.: Towards efficient second-order power analysis. In: Joye, M., Quisquater, J.-J. (eds.) CHES 2004. LNCS, vol. 3156, pp. 1–15. Springer, Heidelberg (2004)
Author information
Authors and Affiliations
TELECOM-ParisTech, Crypto Group, Paris, France
Pierre Belgarric, Shivam Bhasin, Nicolas Bruneau, Jean-Luc Danger, Nicolas Debande, Sylvain Guilley, Annelie Heuser & Zakaria Najm
TELECOM-ParisTech, Digital Communications Group, Paris, France
Olivier Rioul
Orange Labs, Applied Cryptography Group, Issy-les-Moulineaux, France
Pierre Belgarric
STMicroelectronics, AST Division, Rousset, France
Nicolas Bruneau
Secure-IC S.A.S., Rennes, France
Jean-Luc Danger & Sylvain Guilley
SERMA ITSEF, Pessac, France
Nicolas Debande
École Polytechnique, Palaiseau, France
Olivier Rioul
- Pierre Belgarric
You can also search for this author inPubMed Google Scholar
- Shivam Bhasin
You can also search for this author inPubMed Google Scholar
- Nicolas Bruneau
You can also search for this author inPubMed Google Scholar
- Jean-Luc Danger
You can also search for this author inPubMed Google Scholar
- Nicolas Debande
You can also search for this author inPubMed Google Scholar
- Sylvain Guilley
You can also search for this author inPubMed Google Scholar
- Annelie Heuser
You can also search for this author inPubMed Google Scholar
- Zakaria Najm
You can also search for this author inPubMed Google Scholar
- Olivier Rioul
You can also search for this author inPubMed Google Scholar
Corresponding author
Correspondence toNicolas Bruneau.
Editor information
Editors and Affiliations
EURECOM, Biot, France
Aurélien Francillon
Cryptography Research Inc., San Francisco, California, USA
Pankaj Rohatgi
Rights and permissions
Copyright information
© 2014 Springer International Publishing Switzerland
About this paper
Cite this paper
Belgarric, P.et al. (2014). Time-Frequency Analysis for Second-Order Attacks. In: Francillon, A., Rohatgi, P. (eds) Smart Card Research and Advanced Applications. CARDIS 2013. Lecture Notes in Computer Science(), vol 8419. Springer, Cham. https://doi.org/10.1007/978-3-319-08302-5_8
Download citation
Published:
Publisher Name:Springer, Cham
Print ISBN:978-3-319-08301-8
Online ISBN:978-3-319-08302-5
eBook Packages:Computer ScienceComputer Science (R0)
Share this paper
Anyone you share the following link with will be able to read this content:
Sorry, a shareable link is not currently available for this article.
Provided by the Springer Nature SharedIt content-sharing initiative