Leakage Aware Design Automation (LADA): Tools & Techniques for Software Crypto Implementations

泄漏感知设计自动化 (LADA)：工具

• 批准号: EP/N011635/1
• 负责人: Daniel Page
• 金额: $ 146.64万
• 依托单位: University of Bristol
• 依托单位国家: 英国
• 项目类别: Research Grant
• 财政年份: 2016
• 资助国家: 英国
• 起止时间: 2016 至 无数据
• 项目状态: 已结题
• 来源: https://gtr.ukri.org/projects?ref=EP%2FN011635%2F1
• 关键词: Leakage; Aware; Design; Automation; LADA

Information leakage via side channels is a widely recognised threat to cyber security: in particular small devices are known to leak information via physical channels (power consumption, electromagnetic radiation, and timing behaviour). Side channel leakage provides skilled adversaries with information about otherwise secret internal variables, which can ultimately lead to complete security breaches in the form of secret key (or data) recovery. For small embedded devices, which feature architectures of limited complexity (i.e. a small number of pipeline stages, few data and/or address buses), the nature of the leakages can be appropriately modelled using statistical tools such as regression analysis or by estimating (multivariate) normal distributions. Our research hypothesis is that one can make meaningful statements about the leakage behaviour of new implementations on such devices by utilising a priori derived (instruction level) leakage models. Aiming to allow engineers with limited domain-specific knowledge to do just this, and hence improve the quality of software they develop, our overarching goal is: based on the development of a suitable instruction-level leakage model (for a device) plus specification of cryptographic primitives, we will explore techniques that allow sound assessment of leakage-related attacks on associated implementations without the need for a fully equipped side channel lab.

通过侧通道的信息泄漏是对网络安全的广泛认可的威胁：特别是已知小型设备通过物理通道（功耗，电磁辐射和定时行为）泄漏信息。侧信道泄漏为熟练的攻击者提供了有关秘密内部变量的信息，这最终可能导致以密钥（或数据）恢复形式的完全安全漏洞。对于小型嵌入式设备，其特征在于有限复杂性的架构（即，少量的流水线级，很少的数据和/或地址总线），泄漏的性质可以使用统计工具（如回归分析）或通过估计（多变量）正态分布来适当地建模。我们的研究假设是，人们可以通过利用先验推导（指令级）泄漏模型对这些设备上的新实现的泄漏行为做出有意义的陈述。为了让有限的特定领域知识的工程师能够做到这一点，从而提高他们开发的软件质量，我们的首要目标是：根据适当的预防一级渗漏模型的发展，（对于设备）加上密码原语的规范，我们会研究各种技术，以便对渗漏情况作出可靠的评估，相关的攻击，而不需要一个设备齐全的侧信道实验室。

项目成果

Compact, Scalable, and Efficient Discrete Gaussian Samplers for Lattice-Based Cryptography

• DOI: 10.1109/iscas.2018.8351009
• 发表时间: 2018-05
• 期刊: 2018 IEEE International Symposium on Circuits and Systems (ISCAS)
• 作者: A. Khalid;James Howe;C. Rafferty;F. Regazzoni;Máire O’Neill

Lightweight Hardware Implementation of R-LWE Lattice-Based Cryptography

• DOI: 10.1109/apccas.2018.8605630
• 发表时间: 2018-10
• 期刊: 2018 IEEE Asia Pacific Conference on Circuits and Systems (APCCAS)
• 作者: Sailong Fan;Weiqiang Liu;James Howe;A. Khalid;Máire O’Neill

Fault Attack Countermeasures for Error Samplers in Lattice-Based Cryptography

• DOI: 10.1109/iscas.2019.8702794
• 发表时间: 2019-02
• 期刊: 2019 IEEE International Symposium on Circuits and Systems (ISCAS)
• 作者: James Howe;A. Khalid;Marco Martinoli;F. Regazzoni;E. Oswald

Exploring Parallelism to Improve the Performance of FrodoKEM in Hardware

• DOI: 10.1007/s13389-021-00258-7
• 发表时间: 2021-03
• 期刊: Journal of Cryptographic Engineering
• 影响因子: 1.9
• 作者: James Howe;Marco Martinoli;E. Oswald;F. Regazzoni

Smart Card Research and Advanced Applications - 17th International Conference, CARDIS 2018, Montpellier, France, November 12-14, 2018, Revised Selected Papers

智能卡研究和高级应用 - 第 17 届国际会议，CARDIS 2018，法国蒙彼利埃，2018 年 11 月 12-14 日，修订后的精选论文

• DOI: 10.1007/978-3-030-15462-2_2
• 发表时间: 2019
• 作者: Green J