Security for Internet of Things with Low Energy and Low Power Consumption (GreenSec)

低能耗、低功耗物联网安全（GreenSec）

• 批准号: 393207943
• 负责人: Professor Dr. Amir Moradi
• 金额: --
• 依托单位: Lehrstuhl Kryptologie und IT-Sicherheit
• 依托单位国家: 德国
• 项目类别: Research Grants
• 财政年份: 2017
• 资助国家: 德国
• 起止时间: 2016-12-31 至 2022-12-31
• 项目状态: 已结题
• 来源: https://gepris.dfg.de/gepris/projekt/393207943?language=en
• 关键词: Security; Internet; Things; Low; Energy

Digital embedded systems are becoming integrated into our daily life. Many of such systems are tied with security and privacy concepts, e.g., electronic payments, smart homes, electronic toll collection and smart phones. A majority of them as portable devices, which are carried by us in a daily base, can be categorized into two groups: i) battery-operated ones, and ii) contactless passive ones. Battery life is obviously amongst the major issues of the first group, the same as proximity of the second group. Hence, low-energy designs are essential for the battery-operated applications, and low-power designs for the contactless in-field applications. Interestingly, the crypto community offers a large toolbox of advanced algorithms to achieve a strong level of security. The cryptographic primitives have been designed based on the principle cryptanalyses. However, very limited attention has been paid with respect to the energy and power consumption of their implementations leading to the fact that most of the current cryptographic solutions are not truly suitable for low-power and low-energy applications. Further, such security-enabled devices, that are in hand and control of the legitimate users, can be operated in hostile environments. Hence, the implementation attacks, as serious threats for pervasive applications, can turn a theoretically-robust system into a completely-broken setup. As demonstrated by numerous side-channel analysis (SCA) attacks, securing ubiquitous systems is a must as well as a non-trivial task. Although several SCA countermeasures have already been developed and introduced, almost none of them focuses on the power and energy overheads. In fact, resistance against SCA attacks with low-power and/or low-energy feature has barely been considered by the side-channel community. In short, most of the cryptographic devices, equipped with sound SCA countermeasures, fail to fulfill the requirements to be a part of a low-power (or low-energy) system. Indeed, the result of our preliminary study in this area supports this statement, where we examined the latency and power consumption of SCA-protected implementation of low-latency ciphers. Nevertheless, it would be a great benefit to develop cryptographic primitives as well as protection solutions considering low-energy and low-power features. In this project we will investigate power and energy consumption of cryptographic primitives and SCA countermeasures for ASIC platforms. Based on this, cryptographic algorithms as well as SCA countermeasures will be (re-)designed to match the certain requirements resulting in cryptographically-robust and SCA-resistant schemes with limited power and energy consumption. We will develop dedicated and provably-Secure SCA countermeasures (for ASIC platforms) based on the result of our practical analyses. Hence, an interdisciplinary effort based on symmetric cryptography and cryptographic engineering is required to cope with these challenges.

数字嵌入式系统正逐渐融入我们的日常生活。许多这样的系统都与安全和隐私概念联系在一起，例如电子支付、智能家居、电子收费和智能电话。它们中的大多数是我们日常携带的便携式设备，可以分为两类：i)电池供电的，ii)非接触式被动设备。电池寿命显然是第一组的主要问题之一，第二组的问题也是如此。因此，低功耗设计对于电池供电的应用和非接触式现场应用的低功耗设计至关重要。有趣的是，加密社区提供了一个大型的高级算法工具箱，以实现强大的安全性。根据密码分析原理设计了密码原语。然而，对其实现的能量和功耗的关注非常有限，导致当前大多数加密解决方案并不真正适合低功耗和低能耗应用。此外，合法用户掌握并控制的这种启用了安全功能的设备可以在敌对环境中操作。因此，作为普遍应用程序的严重威胁，实现攻击可以将理论上健壮的系统变成一个完全崩溃的设置。正如许多侧信道分析（SCA）攻击所证明的那样，保护无处不在的系统是必须的，也是一项重要的任务。尽管已经开发并引入了几个SCA对策，但几乎没有一个关注电力和能源开销。事实上，侧信道社区很少考虑使用低功耗和/或低功耗特性抵抗SCA攻击。简而言之，大多数配备了完善的SCA对策的加密设备都无法满足作为低功耗（或低能耗）系统一部分的要求。实际上，我们在这一领域的初步研究结果支持这种说法，我们检查了低延迟密码的sca保护实现的延迟和功耗。然而，考虑到低能耗和低功耗特性，开发加密原语以及保护解决方案将是一个很大的好处。在这个项目中，我们将研究加密原语的功耗和能耗以及ASIC平台的SCA对策。在此基础上，加密算法以及SCA对策将被（重新）设计以匹配某些要求，从而在有限的功率和能耗下产生加密鲁棒性和抗SCA的方案。我们将根据实际分析的结果开发专用且可证明安全的SCA对策（用于ASIC平台）。因此，需要基于对称密码学和密码工程的跨学科努力来应对这些挑战。