NaSCA: Nano-Scale Side-Channel Analysis - Physical Security for Next-Generation CMOS ICs

NaSCA：纳米级侧通道分析 - 下一代 CMOS IC 的物理安全

• 批准号: 271752544
• 负责人: Professor Dr. Amir Moradi
• 金额: --
• 依托单位: Profilbereich Cybersicherheit (CYSEC)
• 依托单位国家: 德国
• 项目类别: Research Grants
• 财政年份: 2016
• 资助国家: 德国
• 起止时间: 2015-12-31 至 2020-12-31
• 项目状态: 已结题
• 来源: https://gepris.dfg.de/gepris/projekt/271752544?language=en
• 关键词: NaSCA; Nano; Scale; Side; Channel

Currently we are being surrounded by an ever-growing number of cyber-physical systems e.g., electronic toll collection, traffic management, electronic payments, smart homes etc. Although this offers many benefits, the embedded security-enabled devices are in control of legitimate users, who can play the role of an adversary. It enables serious risks with respect to system security, not only due to the flaws of crypto algorithms. Also, the implementation attacks, as serious threats for pervasive applications, can turn a theoretically-robust system into a completely-broken setup. As demonstrated by numerous side-channel analysis (SCA) attacks, securing ubiquitous systems is a must as well as a non-trivial task. Interestingly, the SCA community offers a large toolbox of advanced countermeasures for protecting the crypto devices against such physical attacks. The power analysis countermeasures have been designed based on the principle of dynamic power consumption. However, by fast technology shrinking static power consumption of nano-scale CMOS circuits is becoming a major concern. Hence, the known countermeasures have serious shortcomings when static power consumption is considered by an SCA adversary. In the near future the cryptographic devices, equipped with theoretically-sound countermeasures, will fail to provide the desired level of protection as their security is provable excluding the concept of static power. Indeed, the result of our preliminary study in this area, where we examined the SCA vulnerability of FPGA platforms through static power, supports this statement. Nevertheless, it would be a great benefit to develop protection solutions considering both dynamic and static power. We believe that this is possible, at least to a certain extent, by carefully re-designing, extending, and composing the known countermeasures. In this project we will investigate SCA through static power for FPGA and ASIC platforms. We will analyze the efficiency of the known countermeasures to protect crypto devices (e.g., an AES coprocessor) against static power analysis attacks. Based on this, countermeasures will be (re-)designed to match the certain requirements resulting in more robust schemes with enhanced functionality. We will develop dedicated and provably-secure countermeasures (for FPGA and ASIC platforms) based on the result of our practical analyses. The fabricated ASIC samples and the FPGA modules will be practically evaluated to ensure the robustness of our developed countermeasures. Hence, an interdisciplinary effort based on applied cryptography and cryptographic engineering is required to cope with these challenges.In contrast to our approach, previous works usually deal with solely dynamic power side channel, use heuristic physical security techniques or basic obfuscation schemes, and lack sound proof to prove the security. In fact, resistance against SCA attacks through static power has barely been considered by the SCA community.

目前，我们正被越来越多的网络物理系统所包围，例如电子收费、交通管理、电子支付、智能家居等。尽管这提供了很多好处，但嵌入式安全设备受到合法用户的控制，合法用户可以扮演对手的角色。它会给系统安全带来严重风险，这不仅仅是因为加密算法的缺陷。此外，实施攻击作为普遍应用程序的严重威胁，可以将理论上稳健的系统变成完全损坏的设置。正如众多旁道分析 (SCA) 攻击所证明的那样，保护无处不在的系统是一项必须的任务，也是一项艰巨的任务。有趣的是，SCA 社区提供了一个包含高级对策的大型工具箱，用于保护加密设备免受此类物理攻击。基于动态功耗原理设计了功耗分析对策。然而，通过快速技术缩小纳米级 CMOS 电路的静态功耗正成为一个主要问题。因此，当 SCA 对手考虑静态功耗时，已知的对策具有严重的缺点。在不久的将来，配备了理论上合理的对策的加密设备将无法提供所需的保护级别，因为它们的安全性已得到证明，不包括静态功率的概念。事实上，我们在该领域的初步研究结果（我们通过静态功耗检查了 FPGA 平台的 SCA 漏洞）支持了这一说法。尽管如此，开发同时考虑动态和静态功耗的保护解决方案将是一个巨大的好处。我们相信，通过仔细地重新设计、扩展和组合已知的对策，至少在一定程度上这是可能的。在这个项目中，我们将通过 FPGA 和 ASIC 平台的静态电源研究 SCA。我们将分析已知对策的效率，以保护加密设备（例如 AES 协处理器）免受静态功耗分析攻击。在此基础上，将（重新）设计对策以满足某些要求，从而产生具有增强功能的更稳健的方案。我们将根据实际分析的结果，开发专用且可证明安全的对策（针对 FPGA 和 ASIC 平台）。所制造的 ASIC 样品和 FPGA 模块将进行实际评估，以确保我们开发的对策的稳健性。因此，需要基于应用密码学和密码工程的跨学科努力来应对这些挑战。与我们的方法相反，以前的工作通常仅处理动态功率侧信道，使用启发式物理安全技术或基本混淆方案，并且缺乏可靠的证据来证明安全性。事实上，SCA社区几乎没有考虑过通过静态电源抵抗SCA攻击。

项目成果

The Risk of Outsourcing: Hidden SCA Trojans in Third-Party IP-Cores Threaten Cryptographic ICs

• DOI: 10.1109/ets48528.2020.9131594
• 发表时间: 2020-05
• 期刊: 2020 IEEE European Test Symposium (ETS)
• 作者: David Knichel;Thorben Moos;A. Moradi

Static Power Side-Channel Analysis—An Investigation of Measurement Factors

静态功率侧信道分析——测量因素的研究

• DOI: 10.1109/tvlsi.2019.2948141
• 发表时间: 2020
• 期刊: IEEE Transactions on Very Large Scale Integration (VLSI) Systems
• 影响因子: 2.8
• 作者: T. Moos;A. Moradi;B. Richter
• 通讯作者: B. Richter

On the Easiness of Turning Higher-Order Leakages into First-Order

• DOI: 10.1007/978-3-319-64647-3_10
• 发表时间: 2017-04
• 作者: Thorben Moos;A. Moradi

Static Power SCA of Sub-100 nm CMOS ASICs and the Insecurity of Masking Schemes in Low-Noise Environments

低于 100 nm CMOS ASIC 的静态功耗 SCA 以及低噪声环境中掩蔽方案的不安全性

• DOI: 10.13154/tches.v2019.i3.202-232
• 发表时间: 2019
• 期刊: IACR Trans. Cryptogr. Hardw. Embed. Syst.
• 作者: T. Moos

Static power side-channel analysis of a threshold implementation prototype chip

阈值实现原型芯片的静态功耗侧信道分析

• DOI: 10.23919/date.2017.7927198
• 发表时间: 2017
• 期刊: Design, Automation & Test in Europe Conference & Exhibition (DATE), 2017
• 作者: T. Moos;A. Moradi;B. Richter
• 通讯作者: B. Richter