Skip to main content
SpringerLink
Log in

Another SPA Key Recovery Against Random Order Countermeasures for AES Key Expansion

  • Conference paper
  • First Online:
Cloud Computing and Security (ICCCS 2016)

Part of the book series: Lecture Notes in Computer Science ((LNISA,volume 10039))

Included in the following conference series:

  • 1353 Accesses

Abstract

To increase the resistance against power analysis, random order countermeasure applied to AES key expansion was proposed and evaluated by Clavier et al. in CHES 2014. The proposed column-wise random order countermeasure showed certain resistance when the power consumption of the key expansion part is used for key recovery. For further evaluation, Clavier et al. analyzed the improvement of key recovery attack using fault injection as additional information. As for the acceleration of the key recovery, this work argues that extracting power information of AES state is more preferred than performing fault injections for practical attackers. This work comprehensively evaluates the random order countermeasure assuming the attackers use the power consumptions of AES state to accelerate the key recovery. We studied the relationship between key recovery result and the amount of information from AES state via both theoretical analysis and key recovery simulations. The results (a) demonstrate a set of effective key extractions with no fault injections and (b) discover the most cost-effective attack is extracting Hamming weight of 12 bytes for 2 AES executions, whose key extraction averagely finishes in 1 min.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution
Chapter
USD 29.95
Price excludes VAT (USA)
  • Available as PDF
  • Read on any device
  • Instant download
  • Own it forever
eBook
USD 39.99
Price excludes VAT (USA)
  • Available as EPUB and PDF
  • Read on any device
  • Instant download
  • Own it forever
Softcover Book
USD 54.99
Price excludes VAT (USA)
  • Compact, lightweight edition
  • Dispatched in 3 to 5 business days
  • Free shipping worldwide - see info

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

  1. Goodwin, J., Wilson, P.R.: Advanced encryption standard (AES) implementation with increased DPA resistance and low overhead. In: IEEE International Symposium on Circuits and Systems, ISCAS 2008, pp. 3286–3289. IEEE (2008)

    Google Scholar 

  2. Piret, G., Quisquater, J.-J.: A differential fault attack technique against SPN structures, with application to the AES and KHAZAD. In: Walter, C.D., Koç, Ç.K., Paar, C. (eds.) CHES 2003. LNCS, vol. 2779, pp. 77–88. Springer, Heidelberg (2003)

    Chapter  Google Scholar 

  3. National Institute of Standards and Technology: Advanced Encryption Standard. NIST FIPS PUB 197 (2001)

    Google Scholar 

  4. Kocher, P., Jaffe, J., Jun, B.: Differential power analysis. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 388–397. Springer, Heidelberg (1999). doi:10.1007/3-540-48405-1_25

    Chapter  Google Scholar 

  5. Brier, E., Clavier, C., Olivier, F.: Correlation power analysis with a leakage model. In: Joye, M., Quisquater, J.-J. (eds.) CHES 2004. LNCS, vol. 3156, pp. 16–29. Springer, Heidelberg (2004). doi:10.1007/978-3-540-28632-5_2

    Chapter  Google Scholar 

  6. Herbst, C., Oswald, E., Mangard, S.: An AES smart card implementation resistant to power analysis attacks. In: Zhou, J., Yung, M., Bao, F. (eds.) ACNS 2006. LNCS, vol. 3989, pp. 239–252. Springer, Heidelberg (2006)

    Chapter  Google Scholar 

  7. Chari, S., Rao, J.R., Rohatgi, P.: Template attacks. In: Kaliski, B.S., Koç, K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 13–28. Springer, Heidelberg (2003). doi:10.1007/3-540-36400-5_3

    Chapter  Google Scholar 

  8. Gierlichs, B., Batina, L., Tuyls, P., Preneel, B.: Mutual information analysis. In: Oswald, E., Rohatgi, P. (eds.) CHES 2008. LNCS, vol. 5154, pp. 426–442. Springer, Heidelberg (2008). doi:10.1007/978-3-540-85053-3_27

    Chapter  Google Scholar 

  9. Clavier, C., Marion, D., Wurcker, A.: Simple power analysis on AES key expansion revisited. In: Batina, L., Robshaw, M. (eds.) CHES 2014. LNCS, vol. 8731, pp. 279–297. Springer, Heidelberg (2014). doi:10.1007/978-3-662-44709-3_16

    Google Scholar 

  10. Mayer-Sommer, R.: Smartly analyzing the simplicity and the power of simple power analysis on smartcards. In: Koç, Ç.K., Paar, C. (eds.) CHES 2000. LNCS, vol. 1965, pp. 78–92. Springer, Heidelberg (2000). doi:10.1007/3-540-44499-8_6

    Chapter  Google Scholar 

  11. Biham, E., Shamir, A.: Power analysis of the key scheduling of the AES candidates. In: Proceedings of the Second AES Candidate Conference, pp. 115–121 (1999)

    Google Scholar 

  12. Messerges, T.S., Dabbish, E.A., Sloan, R.H.: Investigations of power analysis attacks on smartcards. Smartcard 99, 151–161 (1999)

    MATH  Google Scholar 

  13. Mangard, S.: A simple power-analysis (SPA) attack on implementations of the AES key expansion. In: Lee, P.J., Lim, C.H. (eds.) ICISC 2002. LNCS, vol. 2587, pp. 343–358. Springer, Heidelberg (2003). doi:10.1007/3-540-36552-4_24

    Chapter  Google Scholar 

  14. VanLaven, J., Brehob, M., Compton, K.J.: A computationally feasible SPA attack on AES via optimized search. In: Sasaki, R., Qing, S., Okamoto, E., Yoshiura, H. (eds.) Security and Privacy in the Age of Ubiquitous Computing, pp. 577–588. Springer, Berlin (2005)

    Chapter  Google Scholar 

  15. Ali, S.S., Mukhopadhyay, D.: A differential fault analysis on AES key schedule using single fault. In: 2011 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC), pp. 35–42. IEEE (2011)

    Google Scholar 

Download references

Acknowledgments

This work is supported by Chinese Postdoctoral Science Foundation (No. 2015M581795), Jiangsu Province Postdoctoral Science Foundation (No. 1501014A), and Foundation of Graduate Innovation Center in NUAA (kfjj20151609).

Author information

Authors and Affiliations

  1. College of Computer Science and Technology, Nanjing University of Aeronautics and Astronautics, Nanjing, China

    Mengting Chen, Yang Li & Jian Wang

  2. Collaborative Innovation Center of Novel Software Technology and Industrialization, Nanjing, China

    Mengting Chen, Yang Li & Jian Wang

Authors
  1. Mengting Chen
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Yang Li
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Jian Wang
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Yang Li .

Editor information

Editors and Affiliations

  1. University of Information Science and Technology, Nanjing, China

    Xingming Sun

  2. Michigan State University , EAST LANSING, Michigan, USA

    Alex Liu

  3. National Dong Hwa University , Shoufeng, Taiwan

    Han-Chieh Chao

  4. Purdue University , West Lafayette, Indiana, USA

    Elisa Bertino

Rights and permissions

Reprints and permissions

Copyright information

© 2016 Springer International Publishing AG

About this paper

Cite this paper

Chen, M., Li, Y., Wang, J. (2016). Another SPA Key Recovery Against Random Order Countermeasures for AES Key Expansion. In: Sun, X., Liu, A., Chao, HC., Bertino, E. (eds) Cloud Computing and Security. ICCCS 2016. Lecture Notes in Computer Science(), vol 10039. Springer, Cham. https://doi.org/10.1007/978-3-319-48671-0_29

Download citation

  • DOI: https://doi.org/10.1007/978-3-319-48671-0_29

  • Published:

  • Publisher Name: Springer, Cham

  • Print ISBN: 978-3-319-48670-3

  • Online ISBN: 978-3-319-48671-0

  • eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics

Search

Navigation