A First-Order Chosen-Plaintext DPA Attack on the Third Round of DES

Reparaz, Oscar; Gierlichs, Benedikt

doi:10.1007/978-3-319-75208-2_3

Oscar Reparaz^15,16 &
Benedikt Gierlichs¹⁵

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 10728))

Included in the following conference series:

International Conference on Smart Card Research and Advanced Applications

953 Accesses

Abstract

DPA attacks usually exhibit a “divide-and-conquer” property: the adversary needs to enumerate only a small space of the key (a key sub-space) when performing the DPA attack. This is achieved trivially in the outer rounds of a cryptographic implementation since intermediates depend on only few key bits. In the inner rounds, however, intermediates depend on too many key bits to make DPA practical or even to pose an advantage over cryptanalysis. For this reason, DPA countermeasures may be deployed only to outer rounds if performance or efficiency are critical. This paper shows a DPA attack exploiting leakage from the third round of a Feistel cipher, such as DES. We require the ability of fixing inputs, but we do not place any special restriction on the leakage model. The complexity of the attack is that of two to three DPA attacks on the first round of DES plus some minimal differential cryptanalysis.

This is a preview of subscription content, log in via an institution to check access.

Access this chapter

Log in via an institution

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Institutional subscriptions

References

Biryukov, A., Khovratovich, D.: Two new techniques of side-channel cryptanalysis. In: Paillier and Verbauwhede [PV07], pp. 195–208
Google Scholar
Davies, D.W., Murphy, S.: Pairs and triplets of DES S-boxes. J. Cryptol. 8(1), 1–25 (1995)
Article MATH Google Scholar
Dodis, Y., Pietrzak, K.: Leakage-resilient pseudorandom functions and side-channel attacks on Feistel networks. In: Rabin, T. (ed.) CRYPTO 2010. LNCS, vol. 6223, pp. 21–40. Springer, Heidelberg (2010). https://doi.org/10.1007/978-3-642-14623-7_2
Chapter Google Scholar
Handschuh, H., Preneel, B.: Blind differential cryptanalysis for enhanced power attacks. In: Biham, E., Youssef, A.M. (eds.) SAC 2006. LNCS, vol. 4356, pp. 163–173. Springer, Heidelberg (2007). https://doi.org/10.1007/978-3-540-74462-7_12
Chapter Google Scholar
Jaffe, J.: A first-order DPA attack against AES in counter mode with unknown initial counter. In: Paillier and Verbauwhede [PV07], pp. 1–13
Google Scholar
Kocher, P., Jaffe, J., Jun, B.: Differential power analysis. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 388–397. Springer, Heidelberg (1999). https://doi.org/10.1007/3-540-48405-1_25
Google Scholar
Kim, J., Lee, Y., Lee, S.: DES with any reduced masked rounds is not secure against side-channel attacks. Comput. Math. Appl. 60(2), 347–354 (2010)
Article MathSciNet MATH Google Scholar
Kunz-Jacques, S., Muller, F., Valette, F.: The Davies-Murphy power attack. In: Lee, P.J. (ed.) ASIACRYPT 2004. LNCS, vol. 3329, pp. 451–467. Springer, Heidelberg (2004). https://doi.org/10.1007/978-3-540-30539-2_32
Chapter Google Scholar
Kocher, P.C.: Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol. 1109, pp. 104–113. Springer, Heidelberg (1996). https://doi.org/10.1007/3-540-68697-5_9
Google Scholar
Paillier, P., Verbauwhede, I. (eds.): CHES 2007. LNCS, vol. 4727. Springer, Heidelberg (2007). https://doi.org/10.1007/978-3-540-74735-2
MATH Google Scholar

Download references

Acknowledgments

The authors wish to thank the anonymous reviewers for their insightful comments. This work was supported in part by the Research Council KU Leuven: C16/15/058. In addition, this work was supported by the Flemish Government, FWO G.00130.13N, FWO G.0876.14N and Thresholds G0842.13; by the Hercules Foundation AKUL/11/19; and through the Cathedral ERC Advanced Grant 695305. Oscar Reparaz is Postdoctoral Fellow of the Fund for Scientific Research - Flanders (FWO). Benedikt Gierlichs is Postdoctoral Fellow of the Fund for Scientific Research - Flanders (FWO).

Author information

Authors and Affiliations

imec-COSIC, KU Leuven, Leuven, Belgium
Oscar Reparaz & Benedikt Gierlichs
Square, Inc., San Francisco, USA
Oscar Reparaz

Authors

Oscar Reparaz
View author publications
You can also search for this author in PubMed Google Scholar
Benedikt Gierlichs
View author publications
You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Benedikt Gierlichs .

Editor information

Editors and Affiliations

University of Lübeck and WPI, Lübeck, Germany
Thomas Eisenbarth
Gemalto, La Ciotat, France
Yannick Teglia

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Reparaz, O., Gierlichs, B. (2018). A First-Order Chosen-Plaintext DPA Attack on the Third Round of DES. In: Eisenbarth, T., Teglia, Y. (eds) Smart Card Research and Advanced Applications. CARDIS 2017. Lecture Notes in Computer Science(), vol 10728. Springer, Cham. https://doi.org/10.1007/978-3-319-75208-2_3

Download citation

DOI: https://doi.org/10.1007/978-3-319-75208-2_3
Published: 26 January 2018
Publisher Name: Springer, Cham
Print ISBN: 978-3-319-75207-5
Online ISBN: 978-3-319-75208-2
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics