research-article

A block cipher based pseudo random number generator secure against side-channel key recovery

Authors:

Christophe Petit,

François-Xavier Standaert,

Olivier Pereira,

Moti YungAuthors Info & Claims

ASIACCS '08: Proceedings of the 2008 ACM symposium on Information, computer and communications security

Pages 56 - 65

https://doi.org/10.1145/1368310.1368322

Published: 18 March 2008 Publication History

Abstract

We study the security of a block cipher-based pseudorandom number generator (PRNG), both in the black box world and in the physical world, separately. We first show that the construction is a secure PRNG in the ideal cipher model. Then, we demonstrate its security against a Bayesian side-channel key recovery adversary. As a main result, we show that our construction guarantees that the success rate of the adversary does not increase with the number of physical observations, but in a limited and controlled way. Besides, we observe that, under common assumptions on side-channel attack strategies, increasing the security parameter (typically the block cipher key size) by a polynomial factor involves an increase of a side-channel attack complexity by an exponential factor, making the probability of a successful attack negligible. We believe this work provides a first interesting example of the way the algorithmic design of a cryptographic scheme influences its side-channel resistance.

References

[1]

M. Abdalla, M. Bellare, Increasing the Lifetime of a Key: A Comparative Analysis of the Security of Re-Keying Techniques, in the proceedings of Asiacrypt 2000, Lecture Notes in Computer Science, vol 1976, pp 546--559, Kyoto, Japan, December 2000.

Digital Library

[2]

M. Bellare, J. Kilian, P. Rogaway, The Security of the CBC Message Authentication Code, Journal of Computer Systems, vol 61, num 3, pp 362--399, 2000.

Digital Library

[3]

M. Bellare, T. Kohno, A Theoretical Treatment of Related-Key Attacks: RKA-PRPs, RKA-PRFs, and applications, in the proceedings of Eurocrypt 2003, Lecture Notes in Computer Science, vol 5656, pp 491--506, Warsaw, Poland, May 2003.

Digital Library

[4]

J. Black, P. Rogaway, T. Shrimpton, Black-Box Analysis of the Block-Cipher-Based Hash-Function Constructions from PGV, in the proceedings of Crypto 2002, Lecture Notes in Computer Science, vol 2442, pp 320--335, Santa Barbare, USA, August 2002.

Digital Library

[5]

S. Chari, J. Rao, P. Rohatgi, Template Attacks, in the proceedings of CHES 2002, Lecture Notes in Computer Science, vol 2523, pp 13--28, Redwood City, CA, USA, August 2002.

Digital Library

[6]

FIPS 197, "Advanced Encryption Standard," Federal Information Processing Standard, NIST, U.S. Dept. of Commerce, November 26, 2001.

[7]

O. Goldreich, Foundations of Cryptography, vol 1, Cambridge U. Press, 2001.

Digital Library

[8]

L. Goubin, J. Patarin, DES and Differential Power Analysis, in the proceedings of CHES 1999, Lecture Notes in Computer Science, vol 1717, pp 158--172, Worcester, MA, USA, August 1999.

Digital Library

[9]

B. Köpf, D. Basin, An Information-Theoretic Model for Adaptive Side-Channel Attacks, to appear in the proceedings of ACM CCS 2007.

Digital Library

[10]

M. Luby, C. Rackoff, How to Construct Pseudorandom Permutations from Pseudorandom Functions, SIAM Journal of Computing, vol 17, num 2, pp 373--386, 1988.

Digital Library

[11]

P. Kocher, Design and Validation Strategies for Obtaining Assurance in Countermeasures to Power Analysis and Related Attacks, in the proceedings of the NIST Physical Security Workshop, Honolulu, Hawai, September 2005.

[12]

P. Kocher, Leak Resistant Cryptographic Indexed Key Update, US Patent 6539092.

[13]

S. Mangard, Hardware Countermeasures against DPA - A Statistical Analysis of Their Effectiveness, in the proceedings of CT-RSA 2004, Lecture Notes in Computer Science, vol 2964, pp 222--235, San Francisco, CA, USA, February 2004.

[14]

S. Micali, L. Reyzin, Physically Observable Cryptography, in the proceedings of TCC 2004, LNCS, vol 2951, pp. 278--296, Cambridge, Massachusetts, USA, February 2004.

[15]

C. E. Shannon, Communication theory of secrecy systems, in Bell Systems Technical Journal, vol 28, num 4, pp 656--715, 1949.

[16]

F.-X. Standaert, T. G. Malkin, M. Yung, A Formal Practice-Oriented Model for the Analysis of Side-Channel Attacks, Version 2.0, Cryptology ePrint Archive, Report 2006/139, 2006.

[17]

F.-X. Standaert, E. Peeters, C. Archambeau, J.-J. Quisquater, Towards Security Limits in Side-Channel Attacks, in the proceedings of CHES 2006, Lecture Notes in Computer Science, vol 4249, pp. 30--45, Yokohama, Japan, October 2006.

Digital Library

[18]

K. Tiri, M. Akmal, I. Verbauwhede, A Dynamic and Differential CMOS Logic with Signal Independent Power Consumption to Withstand Differential Power Analysis on Smart Cards, ESSCIRC 2003.

[19]

A. C. Yao, Theory and Applications of Trapdoor Functions (Extended Abstract), in the proceedings of FOCS 1982, pp. 80--91.

Cited By

Chang DYung M(2023)Midgame Attacks and Defense Against ThemCyber Security, Cryptology, and Machine Learning10.1007/978-3-031-34671-2_33(471-492)Online publication date: 21-Jun-2023
https://doi.org/10.1007/978-3-031-34671-2_33
Kaur PKumar NSingh M(2022)Biometric cryptosystems: a comprehensive surveyMultimedia Tools and Applications10.1007/s11042-022-13817-982:11(16635-16690)Online publication date: 30-Sep-2022
https://doi.org/10.1007/s11042-022-13817-9
Bellizia DBronchain OCassiers GGrosso VGuo CMomin CPereira OPeters TStandaert F(2020)Mode-Level vs. Implementation-Level Physical Security in Symmetric CryptographyAdvances in Cryptology – CRYPTO 202010.1007/978-3-030-56784-2_13(369-400)Online publication date: 17-Aug-2020
https://dl.acm.org/doi/10.1007/978-3-030-56784-2_13
Show More Cited By

Recommendations

Side-Channel Masking with Pseudo-Random Generator
Advances in Cryptology – EUROCRYPT 2020
Abstract
High-order masking countermeasures against side-channel attacks usually require plenty of randomness during their execution. For security against t probes, the classical ISW countermeasure requires random bits, where s is the circuit size. ...
Amplifying side-channel attacks with techniques from block cipher cryptanalysis
CARDIS'06: Proceedings of the 7th IFIP WG 8.8/11.2 international conference on Smart Card Research and Advanced Applications

We introduce the notion of amplified side-channel attacks, i.e. the application of block cipher cryptanalysis techniques to amplify effects exploitable by side-channel attacks. Such an approach is advantageous since it fully exploits the special ...
On side-channel resistant block cipher usage
ISC'10: Proceedings of the 13th international conference on Information security

Based on re-keying techniques by Abdalla, Bellare, and Borst, we consider two black-box secure block cipher based symmetric encryption schemes, which we prove secure in the physically observable cryptography model. They are proven side-channel secure ...

Comments

Information & Contributors

Information

Published In

cover image ACM Conferences

ASIACCS '08: Proceedings of the 2008 ACM symposium on Information, computer and communications security

March 2008

399 pages

ISBN:9781595939791

DOI:10.1145/1368310

Program Chairs:
Masayuki Abe
NTT, Japan
,
Virgil Gligor
University of Maryland

Copyright © 2008 ACM.

Permission to make digital or hard copies of all or part of this work for personal or classroom use is granted without fee provided that copies are not made or distributed for profit or commercial advantage and that copies bear this notice and the full citation on the first page. Copyrights for components of this work owned by others than ACM must be honored. Abstracting with credit is permitted. To copy otherwise, or republish, to post on servers or to redistribute to lists, requires prior specific permission and/or a fee. Request permissions from [email protected]

Sponsors

SIGSAC: ACM Special Interest Group on Security, Audit, and Control

Publisher

Association for Computing Machinery

New York, NY, United States

Publication History

Published: 18 March 2008

Permissions

Request permissions for this article.

Request Permissions

Check for updates

Qualifiers

Research-article

Conference

Asia CCS '08

Sponsor:

SIGSAC

Asia CCS '08: Asia CCS'08 ACM Symposium on Information, Computer and Communications Security

March 18 - 20, 2008

Tokyo, Japan

Acceptance Rates

Overall Acceptance Rate 418 of 2,322 submissions, 18%

Contributors

Other Metrics

View Article Metrics

Bibliometrics & Citations

Bibliometrics

Article Metrics

52
Total Citations
View Citations
699
Total Downloads

Downloads (Last 12 months)9
Downloads (Last 6 weeks)1

Reflects downloads up to 25 Jan 2025

Other Metrics

View Author Metrics

Citations

Cited By

Chang DYung M(2023)Midgame Attacks and Defense Against ThemCyber Security, Cryptology, and Machine Learning10.1007/978-3-031-34671-2_33(471-492)Online publication date: 21-Jun-2023
https://doi.org/10.1007/978-3-031-34671-2_33
Kaur PKumar NSingh M(2022)Biometric cryptosystems: a comprehensive surveyMultimedia Tools and Applications10.1007/s11042-022-13817-982:11(16635-16690)Online publication date: 30-Sep-2022
https://doi.org/10.1007/s11042-022-13817-9
Bellizia DBronchain OCassiers GGrosso VGuo CMomin CPereira OPeters TStandaert F(2020)Mode-Level vs. Implementation-Level Physical Security in Symmetric CryptographyAdvances in Cryptology – CRYPTO 202010.1007/978-3-030-56784-2_13(369-400)Online publication date: 17-Aug-2020
https://dl.acm.org/doi/10.1007/978-3-030-56784-2_13
Akbarzadeh-Sherbaf KAbdoli BSafari SVahabie A(2018)A Scalable FPGA Architecture for Randomly Connected Networks of Hodgkin-Huxley NeuronsFrontiers in Neuroscience10.3389/fnins.2018.0069812Online publication date: 9-Oct-2018
https://doi.org/10.3389/fnins.2018.00698
Zvyagina MSkvortsov VSkitev A(2018)Side-channel analysis resistant implementation of GOST R 34.12-20152018 IEEE Conference of Russian Young Researchers in Electrical and Electronic Engineering (EIConRus)10.1109/EIConRus.2018.8317118(404-406)Online publication date: Jan-2018
https://doi.org/10.1109/EIConRus.2018.8317118
Vaishnav AOrdaz JKoch D(2017)A security library for FPGA interlays2017 27th International Conference on Field Programmable Logic and Applications (FPL)10.23919/FPL.2017.8056817(1-4)Online publication date: Sep-2017
https://doi.org/10.23919/FPL.2017.8056817
Dariz LSelvatici MRuggeri MCostantino GMartinelli F(2017)Trade-off analysis of safety and security in CAN bus communication2017 5th IEEE International Conference on Models and Technologies for Intelligent Transportation Systems (MT-ITS)10.1109/MTITS.2017.8005670(226-231)Online publication date: Jun-2017
https://doi.org/10.1109/MTITS.2017.8005670
Fahrnberger G(2017)A Detailed View on SecureString 3.0Advances in Computing Applications10.1007/978-981-10-2630-0_7(97-121)Online publication date: 20-Jan-2017
https://doi.org/10.1007/978-981-10-2630-0_7
Chakraborty SAlawatugoda JPandu Rangan C(2017)Leakage-Resilient Non-interactive Key Exchange in the Continuous-Memory Leakage SettingProvable Security10.1007/978-3-319-68637-0_10(167-187)Online publication date: 17-Oct-2017
https://doi.org/10.1007/978-3-319-68637-0_10
Unterstein FHeyszl JDe Santis FSpecht R(2017)Dissecting Leakage Resilient PRFs with Multivariate Localized EM AttacksConstructive Side-Channel Analysis and Secure Design10.1007/978-3-319-64647-3_3(34-49)Online publication date: 29-Jul-2017
https://doi.org/10.1007/978-3-319-64647-3_3
Show More Cited By

View Options

Login options

Check if you have access through your login credentials or your institution to get full access on this article.

Full Access

Get this Publication

View options

PDF

View or Download as a PDF file.

eReader

View online with eReader.

Figures

Tables

Media

View Table of Conten