Homological Fault Attack on AES Block Cipher and Its Countermeasures

  • Ning Shang
  • Jinpeng Zhang
  • Yaoling Ding
  • Caisen Chen
  • An WangEmail author
Conference paper
Part of the Advances in Intelligent Systems and Computing book series (AISC, volume 1143)


As the physical security of hardware systems becomes more and more serious, a large number of physical attacks and countermeasures against on-chip cryptographic algorithms are proposed. Clock glitch injection is an easy-to-implement and effective fault type. This paper presents a novel clock glitch-based fault attack on hardware-implemented encryption algorithm called homological fault attack (HFA). It allows us to attack with coarse-grained clock glitches and can extract the key only by the plaintext and whether the encryption result is correct. At the same time, this paper carries out HFA experiment on AES-128 encryption algorithm implemented on FPGA in the real physical environment. Experimental results show that HFA can be used for serial and parallel implementation of AES hardware implementation. And this method can be easily extended to attack other block encryption algorithms.


Homological fault attack Clock glitch Hardware security 



This work is supported by National Natural Science Foundation of China (Nos. 61872040, U1836101), National Cryptography Development Fund (No. MMJJ20170201), Foundation of Science and Technology on Information Assurance Laboratory (No. KJ-17-009).


  1. 1.
    Endo, S., Sugawara, T., Homma, N., Aoki, T., Satoh, A.: An on-chip glitchy-clock generator for testing fault injection attacks. J. Cryptogr. Eng. 1(4), 265–270 (2011)CrossRefGoogle Scholar
  2. 2.
    Li, Y., Sakiyama, K., Batina, L., Nakatsu, D., Ohta, K.: Power Variance Analysis breaks a masked ASIC implementation of AES. In: Proceedings of the Conference on Design, Automation and Test in Europe, pp. 1059–1064 (2010)Google Scholar
  3. 3.
    Li, Y., Sakiyama, K., Gomisawa, S., Fukunaga, T., Takahashi, J., Ohta, K.: Fault sensitivity analysis. In: International Workshop on Cryptographic Hardware and Embedded Systems, pp. 320–334. Springer, Berlin, Heidelberg (2010)Google Scholar
  4. 4.
    Li, Y., Nakatsu, D., Li, Q., Ohta, K., Sakiyama, K.: Clockwise collision analysis-overlooked side-channel leakage inside your measurements. IACR Cryptol. eprint Arch. 579 (2011)Google Scholar
  5. 5.
    Moradi, A., Mischke, O., Paar, C., Li, Y., Ohta, K., Sakiyama, K. On the power of fault sensitivity analysis and collision side-channel attacks in a combined setting. In: International Workshop on Cryptographic Hardware and Embedded Systems, pp. 292–311. Springer, Berlin, Heidelberg (2011)Google Scholar
  6. 6.
    Sakamoto, H., Li, Y., Ohta, K., Sakiyama, K. Fault sensitivity analysis against elliptic curve cryptosystems. In: 2011 Workshop on Fault Diagnosis and Tolerance in Cryptography, pp. 11–20. IEEE (2011)Google Scholar
  7. 7.
    Li, Y., Ohta, K., Sakiyama, K.: An extension of fault sensitivity analysis based on clockwise collision. In International Conference on Information Security and Cryptology, pp. 46–59. Springer, Berlin, Heidelberg (2012)Google Scholar
  8. 8.
    Li, Y., Endo, S., Debande, N., Homma, N., Aoki, T., Le, T.H., Sakiyama, K.: Exploring the relations between fault sensitivity and power consumption. In: International Workshop on Constructive Side-Channel Analysis and Secure Design, pp. 137–153. Springer, Berlin, Heidelberg (2013)Google Scholar
  9. 9.
    Schellenberg, F., Finkeldey, M., Gerhardt, N., Hofmann, M., Moradi, A., Paar, C.: Large laser spots and fault sensitivity analysis. In: 2016 IEEE International Symposium on Hardware Oriented Security and Trust, pp. 203–208. IEEE (2016)Google Scholar
  10. 10.
    Wang, A., Chen, M., Wang, Z., Wang, X.: Fault rate analysis: breaking masked AES hardware implementations efficiently. IEEE Trans. Circuits Syst. II Express Briefs 60(8), 517–521 (2013)CrossRefGoogle Scholar
  11. 11.
    Korkikian, R., Pelissier, S., Naccache, D.: Blind fault attack against SPN ciphers. In: Workshop on Fault Diagnosis and Tolerance in Cryptography, pp. 94–103. IEEE (2014)Google Scholar
  12. 12.
    Li, Y., Chen, M., Liu, Z., Wang, J.: Reduction in the number of fault injections for blind fault attack on SPN block ciphers. ACM Trans. Embed. Comput. Syst. 16(2), 55 (2017)CrossRefGoogle Scholar
  13. 13.
    Liu, Y., Zhang, J., Wei, L., Yuan, F., Xu, Q.: DERA: yet another differential fault attack on cryptographic devices based on error rate analysis. In: Proceedings of the 52nd Annual Design Automation Conference, p. 31. ACM (2015)Google Scholar
  14. 14.
    Ren, Y., Wang, A., Wu, L.: Transient-steady effect attack on block ciphers. In: International Workshop on Cryptographic Hardware and Embedded Systems, pp. 433–450. Springer, Berlin, Heidelberg (2015)Google Scholar
  15. 15.
    Roy, I., Rebeiro, C., Hazra, A., Bhunia, S.: Safari: automatic synthesis of fault-attack resistant block cipher implementations. IEEE Trans. Comput.-Aided Des. Integr. Circuits Syst. (2019)Google Scholar

Copyright information

© Springer Nature Singapore Pte Ltd. 2021

Authors and Affiliations

  • Ning Shang
    • 1
  • Jinpeng Zhang
    • 1
  • Yaoling Ding
    • 1
  • Caisen Chen
    • 2
  • An Wang
    • 1
    • 3
    Email author
  1. 1.School of Computer ScienceBeijing Institute of TechnologyBeijingChina
  2. 2.Military Exercise and Training Center, Army Academy of Armored ForcesBeijingChina
  3. 3.State Key Laboratory of Information SecurityInstitute of Information Engineering, Chinese Academy of SciencesBeijingChina

Personalised recommendations