Confused by Confusion: Systematic Evaluation of DPA Resistance of Various S-boxes
نویسندگان
چکیده
When studying the DPA resistance of S-boxes, the research community is divided in their opinions on what properties should be considered. So far, there exist only a few properties that aim at expressing the resilience of S-boxes to side-channel attacks. Recently, the confusion coefficient property was defined with the intention to characterize the resistance of an S-box. However, there exist no experimental results or methods for creating S-boxes with a “good” confusion coefficient property. In this paper, we employ a novel heuristic technique to generate S-boxes with “better” values of the confusion coefficient in terms of improving their side-channel resistance. We conduct extensive side-channel analysis and detect S-boxes that exhibit previously unseen behavior. For the 4 × 4 size we find S-boxes that belong to optimal classes, but they exhibit linear behavior when running a CPA attack, therefore preventing an attacker from achieving 100% success rate on recovering the key.
منابع مشابه
IC 1204 : Trustworthy Manufacturing and Utilization of Secure Devices
During my visit to FER I worked on several projects that relate to the activities of COST action working groups. More specifically, projects related with groups WG3-Fault attack detection and protection, WG4-Reconfigurable devices for secure functions and WG5-Validation, Evaluation, and Fault Injection. First project deals with the improvements of side channel resistance of nonlinear elements o...
متن کاملEvolving DPA-Resistant Boolean Functions
Boolean functions are important primitives in cryptography. Accordingly, there exist numerous works on the methods of constructions of Boolean functions. However, the property specifying the resistance of Boolean functions against Differential Power Analysis (DPA) attacks was until now scarcely investigated and only for S-boxes. Here, we evolve Boolean functions that have higher resistance to D...
متن کاملDPA Attacks and S-Boxes
For the power consumption model called Hamming weight model, we rewrite DPA attacks in terms of correlation coefficients between two Boolean functions. We exhibit properties of S-boxes (also called (n, m)-functions) relied on DPA attacks. We show that these properties are opposite to the non-linearity criterion and to the propagation criterion. To quantify the resistance of an S-box to DPA atta...
متن کاملHelicobacter pylori in Iran: A systematic review on the antibiotic resistance
Objective(s):Helicobacter pylori (H. pylori) is a pathogenic bacterium that colonizes the stomachs of approximately 50% of the world’s population. Resistance of H. pylori to antibiotics is considered as the main reason for the failure to eradicate this bacterium. The aim of this study was to determine the rate of resistant H. pylori strains to various antimicrobial agents in different areas of ...
متن کاملOptimality and beyond: The case of 4×4 S-boxes
S-boxes with better transparency order are expected to have higher side-channel resistance. For 8×8 Sboxes this is not practical, considering the costs of lookuptable implementations and deterioration of many properties like nonlinearity or delta uniformity. However, if we concentrate on the 4×4 S-box size we can observe that it is possible to obtain S-boxes with better transparency order while...
متن کامل