针对LBlock算法BBC编码方式的功耗分析与防护

doi:10.13868/j.cnki.jcr.000176

摘要
图/表
参考文献(12)
相关文章 (2)

全文: PDF (3499 KB) HTML (1 KB)
输出: BibTeX | EndNote (RIS)

摘要

本随着无线射频识别芯片和无线传感网络等微型计算设备的快速发展, 轻量级分组密码得到广泛应用, 其安全性也越来越受到重视. 功耗分析攻击是一种常见的侧信道分析技术, 给密码芯片产品带来巨大的威胁. 本文选取我国自主知识产权的LBlock密码算法作为研究对象, 以智能IC卡作为实验平台, 探讨了LBlock密码算法的平衡比特编码方式(BBC)的安全性, 发现其在对抗功耗分析攻击方面仍存在缺陷. 首先, 通过分析BBC编码方式下的LBlock密码算法, 找到有效的攻击位置, 然后通过采集该位置的能量迹依据汉明重量模型构造模板, 运用模板攻击逐步将密钥恢复出来. 通过实验验证了本文提出的模板攻击方法的有效性. 此外, 本文提出了一种关于LBlock密码算法的针对侧信道攻击的掩码级防护方法, 并通过实验证明了此方法确实能有效抵抗一阶功耗分析攻击, 然后通过程序大小、内存占用和加密时间这三个指标来对未加掩码和加掩码两种方式进行对比, 结果是各项指标均在合理范围之内.

	服务

	把本文推荐给朋友
	加入我的书架
	加入引用管理器
	E-mail Alert
	RSS
	作者相关文章
	关明扬
	于国瑞
	向贻锡
	谈兆年
	张国双
	王安

关键词 ： LBlock算法, 模板攻击, 功耗分析攻击, 掩码防护, 汉明重量

Abstract：

With the rapid development of the RFID chip, wireless sensor networks and other micro computing equipment, lightweight block ciphers are widely used and their security attracted more and more attention. Power Analysis, which brings huge threats to Cipher Chips, is a common technique in side channel analysis. This paper analyses LBlock cipher algorithm in intelligent IC cards, discusses the security of Bitwisely Balanced encoding (short for BBC) and finds some security flaw under the Power Analysis attack. First, through the analysis of the LBlock cryptography algorithm in BBC, we found effective attack position and through acquiring the trace that in that position to reconstruct the templates according to the hamming weight model structure, use the template attack to recover the key step by step. Second, through the experiment, this paper proves the effectiveness of the template attack methods proposed in this paper. In addition, this paper proposes a kind of mask level protection method of side channel attack about LBlock algorithm. Experiments show that this method can effectively resist first-order power analysis attack. Then we compared masked and unmasked LBlock algorithm with respect to three indicators: program file size, storage and encryption time. The results show that these three indicators are in a reasonable range.

Key words： LBlock template attack power analysis mask protection Hamming weight

收稿日期: 2016-07-17 出版日期: 2017-03-22

基金资助:国家自然科学基金项目(61402252,61402536); 北京市自然科学基金项目(4162053); 信息保障技术重点实验室开放基金(KJ-15-005); 北京理工大学青年教师学术启动计划

通讯作者: 王安, E-mail: wanganl@bit.edu.cn

引用本文:

关明扬, 于国瑞, 向贻锡, 谈兆年, 张国双, 王安. 针对LBlock算法BBC编码方式的功耗分析与防护[J]. 密码学报, 2017, 4(3): 218-228.
GUAN M Y, YU G R, XIANG Y X, TAN Z N, ZHANG G S, WANG A. Power Analysis and Protection on BBC encoding LBlock Decryption Algorithm. Journal of Cryptologic Research, 2017, 4(3): 218-228.

链接本文:

http://www.jcr.cacrnet.org.cn:8080/mmxb/CN/10.13868/j.cnki.jcr.000176 或 http://www.jcr.cacrnet.org.cn:8080/mmxb/CN/Y2017/V4/I3/218

\bibitem{1} WU W, ZHANG L. LBlock: a lightweight block cipher[C]. In: Applied Cryptography and Network Security. Springer Berlin Heidelberg, 2011: 327–344.
\bibitem{2} BOGDANOV A, KNUDSEN L R, LEANDER G, et al. PRESENT: An ultra-lightweight block cipher[C]. In: Cryptographic Hardware and Embedded Systems—CHES 2007. Springer Berlin Heidelberg, 2007: 450–466.
\bibitem{3} HUANG Y H, GUO J S, LUO W. Related-key impossible differential attacks on Lblock[J]. Chinese Journal of Electronics, 2015(10): 1948–1953.
\bibitem{4} ZHAN Y J, GUAN J, DING L, et al. Related-key impossible differential attack on reduced round LBlock[J]. Journal of Electronics \& Information Technology, 2012(9): 2161–2166.
\bibitem{5} LUO F, ZHOU X G, OU Q Y. Cryptanalysis of the LBlock using multiple zero-correlation linear approximations[J]. Journal of Xidian University(Natural Science), 2014(5): 173–179.
\bibitem{6} XUE H, ZHAO X J, WANG X J. Algebraic side-channel attack on LBlock[J]. Journal of Huazhong University of Science \& Technology, 2013, 41(6): 56–59.
\bibitem{7} ZHAO L, NISHIDE T, SAKURAI K. Differential fault analysis of full LBlock[J]. Constructive Side-Channel Analysis and Secure Design, 2012: 135–150.
\bibitem{8} ISLAM S, AFZAL M, RASHDI A. On the security of LBlock against the cube attack and side channel cube attack[C]. In: International Conference on Availability, Reliability, and Security. Springer, Berlin, Heidelberg, 2013: 105–121.
\bibitem{9} HAN Y, ZHOU Y, LIU J. Securing lightweight block cipher against power analysis attacks[J]. Future Wireless Networks and Information Systems, 2012, 143: 379–390.
\bibitem{10} KOCHER P, JAFFE J, JUN B. Differential power analysis[C]. In: Advances in Cryptology—CRYPTO 1999. Springer Berlin Herdelberg, 1999: 388–397.
\bibitem{11} SERVANT V, DEBANDE N, MAGHREBI H, et al. Study of a novel software constant weight implementation[C]. In: International Conference on Smart Card Research and Advanced Applications. Springer, Cham, 2014: 35–48.
\bibitem{12} CHEN C, EISENBARTH T, SHAHVERDI A, et al. Balanced encoding to mitigate power analysis: a case study[C]. In: International Conference on Smart Card Research and Advanced Applications. Springer International Publishing, 2014: 49–63.