700+ Attacks Published on Smart Cards: The Need for a Systematic Counter Strategy
Recent literature surveys showed that in excess of 700 papers have been published on attacks (or countermeasures thereto) on embedded devices and smart cards, in particular. Most of these attacks fall into one of three classes, (hardware) reverse engineering, fault attacks, and side–channel attacks. Not included here are pure software attacks. Each year another 50–100 papers are being added to this stack and hence it is becoming a necessity to find new ways to cope with new attacks found during the design of secure smart cards, be it on the hardware or the software side, or during their deployment phase. This paper explores possible solutions to this issue.
KeywordsSmart card attack risk management certification
Unable to display preview. Download preview PDF.
- 1.Common Criteria for Smart Cards, http://www.commoncriteriaportal.org/
- 2.Tarnovsky, C.: Hacking the Smartcard Chip. In: Blackhat Conference, February 2-3 (2010), http://www.blackhat.com/html/bh-dc-10/bh-dc-10-briefings.html
- 3.Nohl, K., Tarnovsky, C.: Reviving Smart Card Analysis. In: Blackhat Conference, August 3-4 (2011), http://www.blackhat.com/html/bh-us-11/bh-us-11-briefings.html
- 4.Schobert, M.: http://www.degate.org/
- 5.Boneh, D., DeMillo, R.A., Lipton, R.J.: On the Importance of Checking Cryptographic Protocols for Faults. In: Fumy, W. (ed.) EUROCRYPT 1997. LNCS, vol. 1233, pp. 37–51. Springer, Heidelberg (1997)Google Scholar
- 6.Loubet-Moundi, P., Olivier, F., Vigilant, D.: Static Fault Attack on Hardware DES Registers, http://eprint.iacr.org/2011/531.pdf