An Information Theoretic Perspective on the Differential Fault Analysis against AES
نویسندگان
چکیده
Differential Fault Analysis against AES has been actively studied these years. Based on similar assumptions of the fault injection, different DFA attacks against AES have been proposed. However, it is difficult to understand how different attack results are obtained for the same fault injection. It is also difficult to understand the relationship between similar assumptions of fault injection and the corresponding attack results. This paper reviews the previous DFA attacks against AES based on the information theory, and gives a general and easy understanding of DFA attacks against AES. We apply the similar analysis on DFA attacks on AES-192 and AES-256, and we propose the attack procedures to reach the theoretical minimal number of fault injections.
منابع مشابه
An Information Theoretic Perspective on the Di erential Fault Analysis against AES
Di erential Fault Analysis (DFA) against AES has been actively studied these years. Based on similar assumptions of the fault injection, di erent DFA attacks against AES have been proposed. However, it is di cult to understand how di erent attack results are obtained for the same assumption of fault injection. It is also di cult to understand the relationship between similar assumptions of faul...
متن کاملOn the Optimality of Differential Fault Analyses on CLEFIA
Differential Fault Analysis is a powerful cryptanalytic tool to reveal secret keys of cryptographic algorithms. By corrupting the computation of an algorithm, an attacker gets additional information about the secret key. In 2012, several Differential Fault Analyses on the AES cipher were analyzed from an informationtheoretic perspective. This analysis exposed whether or not the leaked informati...
متن کاملA Generalized Method of Differential Fault Attack Against AES Cryptosystem
Abstract. In this paper we describe two differential fault attack techniques against Advanced Encryption Standard (AES). We propose two models for fault occurrence; we could find all 128 bits of key using one of them and only 6 faulty ciphertexts. We need approximately 1500 faulty ciphertexts to discover the key with the other fault model. Union of these models covers all faults that can occur ...
متن کاملA Differential Fault Attack Technique against SPN Structures, with Application to the AES and KHAZAD
In this paper we describe a differential fault attack technique working against Substitution-Permutation Networks, and requiring very few faulty ciphertexts. The fault model used is realistic, as we consider random faults affecting bytes (faults affecting one only bit are much harder to induce). We implemented our attack on a PC for both the AES and KHAZAD. We are able to break the AES-128 with...
متن کاملProvably Secure Concurrent Error Detection Against Differential Fault Analysis
Differential fault analysis (DFA) poses a significant threat to Advanced Encryption Standard (AES). It has been demonstrated that DFA can use only a single faulty ciphertext to reveal the secret key of AES in an average of 230 computation. Traditionally, concurrent error detection (CED) is used to protect AES against DFA. However, we emphasize that conventional CED assumes a uniform distributio...
متن کاملذخیره در منابع من
با ذخیره ی این منبع در منابع من، دسترسی به آن را برای استفاده های بعدی آسان تر کنید
برای دانلود متن کامل این مقاله و بیش از 32 میلیون مقاله دیگر ابتدا ثبت نام کنید
ثبت ناماگر عضو سایت هستید لطفا وارد حساب کاربری خود شوید
ورودعنوان ژورنال:
- IACR Cryptology ePrint Archive
دوره 2010 شماره
صفحات -
تاریخ انتشار 2010