期刊论文详细信息
Cryptography
Comparison of Cost of Protection against Differential Power Analysis of Selected Authenticated Ciphers
Diehl, William1 
关键词: cryptography;    authenticated cipher;    field programmable gate array;    power analysis;    side channel attack;    countermeasure;    lightweight;    TVLA;   
DOI  :  10.3390/cryptography2030026
学科分类:工程和技术(综合)
来源: mdpi
PDF
【 摘 要 】

Authenticated ciphers, which combine the cryptographic services of confidentiality, integrity, and authentication into one algorithmic construct, can potentially provide improved security and efficiencies in the processing of sensitive data. However, they are vulnerable to side-channel attacks such as differential power analysis (DPA). Although the Test Vector Leakage Assessment (TVLA) methodology has been used to confirm improved resistance of block ciphers to DPA after application of countermeasures, extension of TVLA to authenticated ciphers is non-trivial, since authenticated ciphers have expanded input and output requirements, complex interfaces, and long test vectors which include protocol necessary to describe authenticated cipher operations. In this research, we upgrade the FOBOS test architecture with capability to perform TVLA on authenticated ciphers. We show that FPGA implementations of the CAESAR Round 3 candidates ACORN, Ascon, CLOC (with AES and TWINE primitives), SILC (with AES, PRESENT, and LED primitives), JAMBU (with AES and SIMON primitives), and Ketje Jr.; as well as AES-GCM, are vulnerable to 1st order DPA. We then use threshold implementations to protect the above cipher implementations against 1st order DPA, and verify the effectiveness of countermeasures using the TVLA methodology. Finally, we compare the unprotected and protected cipher implementations in terms of area, performance (maximum frequency and throughput), throughput-to-area (TP/A) ratio, power, and energy per bit (E/bit). Our results show that ACORN consumes the lowest number of resources, has the highest TP/A ratio, and is the most energy-efficient of all DPA-resistant implementations. However, Ketje Jr. has the highest throughput.

【 授权许可】

CC BY   

【 预 览 】
附件列表
Files Size Format View
RO201904023465776ZK.pdf 3172KB PDF download
  文献评价指标  
  下载次数:12次 浏览次数:26次