Defeating Embedded Cryptographic Protocols by Combining Second-Order with Brute Force

Side-channel analysis is a well-known and efficient hardware technique to recover embedded secrets in microprocessors. Countermeasures relying on random masking have been proven to be sound protections against such threats and are usually added to protect sensitive intermediate data during the algorithm process. However, SecondOrder Side-Channel Analysis have proven to allow secret key recovery in the presence of random masking. In [4] an attack was introduced which exploits the information exchange at the cryptographic protocol level in order to disclose the secret key of the ISO/IEC 9797-1 MAC algorithm 3 using DES operations. A countermeasure suggestion was for a mask to be applied at the protocol level in order to protect all secret data. This paper extends the attack idea previously published to second order attacks on masked implementations of the ISO/IEC 9797-1 MAC algorithm 3 and shows that securing against such attacks must be done with care.