Leveling the risks of timing attacks based on permutation decoding

Research on Access Driven Cache Timing Attacks Against Camellia

Chinese Journal of Computers ◽

10.3724/sp.j.1016.2010.01153 ◽

2010 ◽

Vol 33 (7) ◽

pp. 1153-1164

Author(s):

Xin-Jie ZHAO ◽

Tao WANG ◽

Yuan-Yuan ZHENG

Keyword(s):

Timing Attacks

Download Full-text

Timing attacks and local timing attacks against Barrett’s modular multiplication algorithm

Journal of Cryptographic Engineering ◽

10.1007/s13389-020-00254-3 ◽

2021 ◽

Author(s):

Johannes Mittmann ◽

Werner Schindler

Keyword(s):

Side Channel ◽

Modular Exponentiation ◽

Modular Multiplication ◽

Multiplication Algorithm ◽

Diffie Hellman ◽

Mathematical Difficulties ◽

Execution Times ◽

Stochastic Properties ◽

Timing Attacks ◽

Theoretical Results

AbstractMontgomery’s and Barrett’s modular multiplication algorithms are widely used in modular exponentiation algorithms, e.g. to compute RSA or ECC operations. While Montgomery’s multiplication algorithm has been studied extensively in the literature and many side-channel attacks have been detected, to our best knowledge no thorough analysis exists for Barrett’s multiplication algorithm. This article closes this gap. For both Montgomery’s and Barrett’s multiplication algorithm, differences of the execution times are caused by conditional integer subtractions, so-called extra reductions. Barrett’s multiplication algorithm allows even two extra reductions, and this feature increases the mathematical difficulties significantly. We formulate and analyse a two-dimensional Markov process, from which we deduce relevant stochastic properties of Barrett’s multiplication algorithm within modular exponentiation algorithms. This allows to transfer the timing attacks and local timing attacks (where a second side-channel attack exhibits the execution times of the particular modular squarings and multiplications) on Montgomery’s multiplication algorithm to attacks on Barrett’s algorithm. However, there are also differences. Barrett’s multiplication algorithm requires additional attack substeps, and the attack efficiency is much more sensitive to variations of the parameters. We treat timing attacks on RSA with CRT, on RSA without CRT, and on Diffie–Hellman, as well as local timing attacks against these algorithms in the presence of basis blinding. Experiments confirm our theoretical results.

Download Full-text

Timing Attacks on Error Correcting Codes in Post-Quantum Schemes

Proceedings of ACM Workshop on Theory of Implementation Security Workshop - TIS'19 ◽

10.1145/3338467.3358948 ◽

2019 ◽

Cited By ~ 4

Author(s):

Jan-Pieter D'Anvers ◽

Marcel Tiepelt ◽

Frederik Vercauteren ◽

Ingrid Verbauwhede

Keyword(s):

Error Correcting Codes ◽

Timing Attacks

Download Full-text

Security Assessment of Heterogeneous SoC-FPGA: On the Practicality of Cache Timing Attacks

10.1109/vlsi-soc53125.2021.9607012 ◽

2021 ◽

Author(s):

Lilian Bossuet ◽

El Mehdi Benhani

Keyword(s):

Security Assessment ◽

Timing Attacks

Download Full-text

Securing NoCs Against Timing Attacks with Non-Interference Based Adaptive Routing

2018 Twelfth IEEE/ACM International Symposium on Networks-on-Chip (NOCS) ◽

10.1109/nocs.2018.8512166 ◽

2018 ◽

Cited By ~ 4

Author(s):

Travis H. Boraten ◽

Avinash K. Kodi

Keyword(s):

Adaptive Routing ◽

Timing Attacks

Download Full-text

Codes from multipartite graphs and minimal permutation decoding sets

Discrete Mathematics Algorithms and Applications ◽

10.1142/s1793830915500603 ◽

2015 ◽

Vol 07 (04) ◽

pp. 1550060

Author(s):

P. Seneviratne

Keyword(s):

Automorphism Group ◽

Error Correcting Code ◽

Binary Codes ◽

Hard Problem ◽

Complete Multipartite Graph ◽

Decoding Algorithm ◽

Permutation Decoding ◽

Multipartite Graphs ◽

Multipartite Graph ◽

Complete Multipartite

Permutation decoding method developed by MacWilliams and described in [Permutation decoding of systematic codes, Bell Syst. Tech. J. 43 (1964) 485–505] is a decoding technique that uses a subset of the automorphism group of the code called a PD-set. The complexity of the permutation decoding algorithm depends on the size of the PD-set and finding a minimal PD-set for an error correcting code is a hard problem. In this paper we examine binary codes from the complete-multipartite graph [Formula: see text] and find PD-sets for all values of [Formula: see text] and [Formula: see text]. Further we show that these PD-sets are minimal when [Formula: see text] is odd and [Formula: see text].

Download Full-text

End-to-end automated cache-timing attack driven by Machine Learning

10.29007/nwj8 ◽

2019 ◽

Cited By ~ 1

Author(s):

Sebastien Carré ◽

Victor Dyseryn ◽

Adrien Facon ◽

Sylvain Guilley ◽

Thomas Perianin

Keyword(s):

Neural Network ◽

Language Processing ◽

Relevant Information ◽

Security Threats ◽

Cache Memories ◽

Function Calls ◽

Timing Data ◽

Timing Attack ◽

End To End ◽

Timing Attacks

Cache timing attacks are serious security threats that exploit cache memories to steal secret information.We believe that the identification of a sequence of operations from a set of cache-timing data measurements is not a trivial step when building an attack. We present a recurrent neural network model able to automatically retrieve a sequence of function calls from cache-timings. Inspired from natural language processing, our model is able to learn on partially labelled data. We use the model to unfold an end-to-end automated attack on OpenSSL ECDSA on the secp256k1 curve. Contrary to most research, we did not need human processing of the traces to retrieve relevant information.

Download Full-text