TWC: Medium: Collaborative: A Unified Statistics-Based Framework for Side-Channel Attack Analysis and Security Evaluation of Cryptosystems

TWC:媒介:协作:基于统计的统一框架,用于密码系统的侧通道攻击分析和安全评估

基本信息

  • 批准号:
    1314655
  • 负责人:
  • 金额:
    $ 52.21万
  • 依托单位:
  • 依托单位国家:
    美国
  • 项目类别:
    Standard Grant
  • 财政年份:
    2013
  • 资助国家:
    美国
  • 起止时间:
    2013-07-01 至 2017-06-30
  • 项目状态:
    已结题

项目摘要

Side-channel attack (SCA) has shown to be a serious implementation attack to many cryptosystems. Practical countermeasures only mitigate the vulnerability to some extent. Considerable research efforts on leakage-resilient cryptography have so far not led to practical leakage-resilient implementations. One hindering reason is the lack of commonly accepted and sound metrics, standards, and evaluation procedures to measure and evaluate the vulnerability/resilience of cryptosystems to various side-channel attacks. Accurate modeling of side channels, however, is one of the open problems in applied crypto research. This project aims to close the gap between SCA theories and practices by formalizing a general framework for side-channel attack analysis and security evaluation of cryptosystems. The proposed framework quantifies the effect of algorithmic and implementation characteristics on the success rate of the theoretically strongest maximum likelihood attack, revealing system-inherent SCA-related parameters for security improvement. The framework will extract maximum leakage from the observed measurement data in the black-box scenario, often the realistic situation for adversaries. State-of-the-art statistical methods are employed in the framework to precisely analyze and evaluate the overall side-channel leakage. This holistic framework will significantly alleviate the burden of security system architects, software developers, and hardware designers in their quest to build SCA security into systems they design, so as to ultimately yield provably secure hardware.
侧信道攻击(SCA)是一种严重的密码实现攻击。实际对策只能在一定程度上减轻脆弱性。到目前为止,对泄漏弹性密码学的大量研究工作还没有导致实际的泄漏弹性实现。一个阻碍的原因是缺乏普遍接受的和健全的指标,标准和评估程序来衡量和评估各种侧信道攻击的脆弱性/弹性的密码系统。然而,侧信道的精确建模是应用密码学研究中的公开问题之一。该项目旨在通过形式化密码系统侧通道攻击分析和安全评估的通用框架来缩小SCA理论与实践之间的差距。该框架量化了算法和实现特性对理论上最强的最大似然攻击成功率的影响,揭示了系统固有的SCA相关参数,以提高安全性。该框架将从黑箱场景中观察到的测量数据中提取最大泄漏,通常是对手的现实情况。该框架采用了最先进的统计方法来精确分析和评估整体侧通道泄漏。这个整体框架将大大减轻安全系统架构师、软件开发人员和硬件设计人员在寻求将SCA安全性构建到他们设计的系统中的负担,从而最终产生可证明安全的硬件。

项目成果

期刊论文数量(0)
专著数量(0)
科研奖励数量(0)
会议论文数量(0)
专利数量(0)

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

数据更新时间:{{ journalArticles.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ monograph.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ sciAawards.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ conferencePapers.updateTime }}

{{ item.title }}
  • 作者:
    {{ item.author }}

数据更新时间:{{ patent.updateTime }}

Yunsi Fei其他文献

Orchestrating Horizontal Parallelism and Vertical Instruction Packing of Programs to Improve System Overall Efficiency
编排程序的水平并行性和垂直指令打包,以提高系统整体效率
  • DOI:
    10.1109/tc.2009.41
  • 发表时间:
    2009
  • 期刊:
  • 影响因子:
    3.7
  • 作者:
    Hai Lin;Yunsi Fei
  • 通讯作者:
    Yunsi Fei
Towards secure cryptographic software implementation against side-channel power analysis attacks
针对侧信道功率分析攻击的安全加密软件实施
DeepStrike: Remotely-Guided Fault Injection Attacks on DNN Accelerator in Cloud-FPGA
DeepStrike:对 Cloud-FPGA 中的 DNN 加速器进行远程引导故障注入攻击
A novel multi-objective instruction synthesis flow for application-specific instruction set processors
用于特定应用指令集处理器的新颖的多目标指令合成流程
  • DOI:
    10.1145/1785481.1785576
  • 发表时间:
    2010
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Hai Lin;Yunsi Fei
  • 通讯作者:
    Yunsi Fei
Register file partitioning and recompilation for register file power reduction
寄存器文件分区和重新编译以降低寄存器文件功耗
  • DOI:
    10.1145/1754405.1754409
  • 发表时间:
    2010
  • 期刊:
  • 影响因子:
    0
  • 作者:
    Xuan Guan;Yunsi Fei
  • 通讯作者:
    Yunsi Fei

Yunsi Fei的其他文献

{{ item.title }}
{{ item.translation_title }}
  • DOI:
    {{ item.doi }}
  • 发表时间:
    {{ item.publish_year }}
  • 期刊:
  • 影响因子:
    {{ item.factor }}
  • 作者:
    {{ item.authors }}
  • 通讯作者:
    {{ item.author }}

{{ truncateString('Yunsi Fei', 18)}}的其他基金

EAGER: Side Channels Go Deep - Leveraging Deep Learning for Side-channel Analysis and Protection
EAGER:侧信道深入——利用深度学习进行侧信道分析和保护
  • 批准号:
    2212010
  • 财政年份:
    2022
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
SaTC: CORE: Medium: Protecting Confidentiality and Integrity of Deep Neural Networks against Side-Channel and Fault Attacks
SaTC:核心:中:保护深度神经网络的机密性和完整性免受侧通道和故障攻击
  • 批准号:
    1929300
  • 财政年份:
    2019
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
Phase I IUCRC Northeastern University: Center for Hardware and Embedded System Security and Trust (CHEST)
第一阶段IUCRC东北大学:硬件和嵌入式系统安全与信任中心(CHEST)
  • 批准号:
    1916762
  • 财政年份:
    2019
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Continuing Grant
Planning IUCRC Northeastern University: Center for Hardware and Embedded System Security and Trust (CHEST)
规划 IUCCRC 东北大学:硬件和嵌入式系统安全与信任中心 (CHEST)
  • 批准号:
    1747748
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Automating Countermeasures and Security Evaluation Against Software Side-channel Attacks
TWC:中:针对软件旁路攻击的自动化对策和安全评估
  • 批准号:
    1563697
  • 财政年份:
    2016
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Continuing Grant
MRI: Development of a Testbed for Side Channel Analysis and Security Evaluation (TeSCASE)
MRI:开发侧通道分析和安全评估测试台 (TeSCASE)
  • 批准号:
    1337854
  • 财政年份:
    2013
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
A Multi-level/multi-faceted Framework for Energy-efficient Application-Specific Instruction Set Processor Synthesis
节能型专用指令集处理器综合的多层次/多方面框架
  • 批准号:
    0541102
  • 财政年份:
    2006
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Continuing Grant

相似海外基金

TWC SBE: Medium: Collaborative: Brain Hacking: Assessing Psychological and Computational Vulnerabilities in Brain-based Biometrics
TWC SBE:媒介:协作:大脑黑客:评估基于大脑的生物识别技术中的心理和计算漏洞
  • 批准号:
    1840790
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Continuing Grant
TWC SBE: Medium: Collaborative: Building a Privacy-Preserving Social Networking Platform from a Technological and Sociological Perspective
TWC SBE:媒介:协作:从技术和社会学角度构建保护隐私的社交网络平台
  • 批准号:
    1855391
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: Systems, Tools, and Techniques for Executing, Managing, and Securing SGX Programs
TWC:媒介:协作:用于执行、管理和保护 SGX 程序的系统、工具和技术
  • 批准号:
    1834213
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: Black-Box Evaluation of Cryptographic Entropy at Scale
TWC:媒介:协作:大规模密码熵的黑盒评估
  • 批准号:
    1937622
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: Efficient Repair of Learning Systems via Machine Unlearning
TWC:媒介:协作:通过机器取消学习有效修复学习系统
  • 批准号:
    1854000
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: Seal: Secure Engine for AnaLytics - From Secure Similarity Search to Secure Data Analytics
TWC:媒介:协作:Seal:AnaLytics 的安全引擎 - 从安全相似性搜索到安全数据分析
  • 批准号:
    1929901
  • 财政年份:
    2018
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: TTP Option: Medium: Collaborative: MALDIVES: Developing a Comprehensive Understanding of Malware Delivery Mechanisms
TWC:TTP 选项:中:协作:马尔代夫:全面了解恶意软件传播机制
  • 批准号:
    1748127
  • 财政年份:
    2017
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC SBE: Medium: Collaborative: Dollars for Hertz: Making Trustworthy Spectrum Sharing Technically and Economically Viable
TWC SBE:媒介:协作:赫兹美元:使值得信赖的频谱共享在技术上和经济上可行
  • 批准号:
    1801986
  • 财政年份:
    2017
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: New Protocols and Systems for RAM-Based Secure Computation
TWC:媒介:协作:基于 RAM 的安全计算的新协议和系统
  • 批准号:
    1562888
  • 财政年份:
    2016
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
TWC: Medium: Collaborative: Systems, Tools, and Techniques for Executing, Managing, and Securing SGX Programs
TWC:媒介:协作:用于执行、管理和保护 SGX 程序的系统、工具和技术
  • 批准号:
    1563848
  • 财政年份:
    2016
  • 资助金额:
    $ 52.21万
  • 项目类别:
    Standard Grant
{{ showInfoDetail.title }}

作者:{{ showInfoDetail.author }}

知道了