针对分组密码的攻击方法研究

doi:10.19678/j.issn.1000-3428.0053229

计算机工程 ›› 2020, Vol. 46 ›› Issue (1): 102-107,113. doi: 10.19678/j.issn.1000-3428.0053229

针对分组密码的攻击方法研究

朱文锋¹, 王琴¹, 郭筝^1,2, 刘军荣^1,2

1. 上海交通大学微电子学院, 上海 200240;
2. 智巡密码(上海)检测技术有限公司, 上海 201100

收稿日期:2018-11-23 修回日期:2019-02-20 出版日期:2020-01-15 发布日期:2019-03-05
作者简介:朱文锋(1994-),男,硕士研究生,主研方向为旁路攻击方法、硬件木马检测;王琴,副教授、博士;郭筝、刘军荣,博士。
基金资助:
国家自然科学基金"针对S芯片验证模块引脚信息的自动分析技术"（U1536103）；上海市闵行区中小企业技术创新计划"基于区块链技术的金融业务平台"（2018MH110）。

Research on Attacks Method for Block Ciphers

ZHU Wenfeng¹, WANG Qin¹, GUO Zheng^1,2, LIU Junrong^1,2

1. School of Microelectronics, Shanghai Jiao Tong University, Shanghai 200240, China;
2. Zhixun Cipher(Shanghai) Detection Technology Co., Ltd., Shanghai 201100, China

Received:2018-11-23 Revised:2019-02-20 Online:2020-01-15 Published:2019-03-05

摘要/Abstract

摘要： 为提升旁路攻击对分组密码算法硬件实现电路的攻击效果，增大正确密钥与错误密钥间的区分度，提出一种针对分组密码的旁路攻击方法。结合差分功耗分析（DPA）攻击和零值攻击的特点，通过分类来利用尽可能多的功耗分量，以攻击出全部密钥。在FPGA上实现AES硬件电路并进行实验，结果表明，在20万条全随机明文曲线中，该方法恢复出了全部密钥，相比DPA攻击方法，其正确密钥与错误密钥间的区分度更大。

关键词: 旁路攻击方法, 硬件实现, 分组密码算法, 组合逻辑功耗, 信噪比

Abstract: In order to improve the effect of Side Channel Attacks(SCAs) on the hardware implementation of block cipher algorithm,and increase the discrimination between correct keys and wrong keys,this paper proposes a SCAs method for block ciphers.This method combines the characteristics of Differential Power Analysis(DPA) attack and zero-value attack,and utilizes as many power components as possible through classification,thus obtaining all keys by attacking.Then,the AES hardware circuit is implemented on the FPGA and experiments are carried out.The results show that the proposed method successfully recovers all keys in 200,000 full random plaintext curves.Besides,the correct keys and wrong keys are more distinguishable in this method than those in the DPA attack method.

Key words: Side Channel Attacks(SCAs) method, hardware implementation, block cipher algorithm, combinational logic power, Signal to Noise Ratio(SNR)

中图分类号:

TP393.08

朱文锋, 王琴, 郭筝, 刘军荣. 针对分组密码的攻击方法研究[J]. 计算机工程, 2020, 46(1): 102-107,113.

ZHU Wenfeng, WANG Qin, GUO Zheng, LIU Junrong. Research on Attacks Method for Block Ciphers[J]. Computer Engineering, 2020, 46(1): 102-107,113.

http://www.ecice06.com/CN/Y2020/V46/I1/102

图/表 7

20200115110312

20200115110315

20200115110317

20200115110320

20200115110324

20200115110328

20200115110331

参考文献

[1] LI Lang.Research on power analysis attacks and defense issues of block ciphers chip[D].Changsha:Hunan University,2010.(in Chinese) 李浪.分组密码芯片功耗攻击与防御问题研究[D].长沙:湖南大学,2010.
[2] YANG Jing.Differential power analysis and countermeasures on ultra-lightweight block cipher——PRESENT[D].Chengdu:Southwest Jiaotong University,2013.(in Chinese) 杨静.超轻量级密码PRESENT的差分功耗攻击及其防护[D].成都:西南交通大学,2013.
[3] GU Xingyuan.Research on resistance to side channel attack in software implemented cryptographic system[D].Shanghai:Shanghai Jiao Tong University,2013.(in Chinese) 顾星远.软件实现的密码系统的旁路攻击防护研究[D].上海:上海交通大学,2013.
[4] KOCHER P,JAFFE J,JUN B.Differential power analysis[C]//Proceedings of the 19th Annual Inter-national Cryptology Conference on Advances in Cryptology.Berlin,Germany:Springer,1999:388-397.
[5] HUANG Luyun.Principle and simulation of differential power analysis attack based on AES encryption device[J].Information Technology,2013(12):170-173.(in Chinese) 黄露昀.AES加密设备的差分能量攻击原理与仿真[J].信息技术,2013(12):170-173.
[6] LI Peizhi.The research on template attack for block cipher chips[D].Zhengzhou:PLA University of Information Engineering,2013.(in Chinese) 李佩之.分组密码芯片模板攻击关键技术研究[D].郑州:解放军信息工程大学,2013.
[7] BRIER E,CLAVIER C,OLIVIER F.Correlation power analysis with a leakage model[C]//Proceedings of the 6th International Workshop on Cryptographic Hardware and Embedded Systems.Washington D.C.,USA:IEEE Press,2004:11-13.
[8] WHITNALL C,OSWALD E,FRANÇOIS-XAVIER S.The myth of generic DPA…and the magic of learning[EB/OL].[2018-11-05].https://eprint.iacr.org/2012/256.pdf.
[9] HOSPODAR G,GIERLICHS B,MULDER E D,et al.Machine learning in side-channel analysis:a first study[J].Journal of Cryptographic Engineering,2011,1(4):293-302.
[10] LERMAN L,MEDEIROS S F,VESHCHIKOV N,et al.Semi-supervised template attack[C]//Proceedings of the 4th International Conference on Constructive Side-Channel Analysis and Secure Design.Berlin,Germany:Springer,2013:256-263.
[11] LERMAN L,BONTEMPI G,MARKOWITCH O.A machine learning approach against a masked AES[J].Journal of Cryptographic Engineering,2015,5(2):123-139.
[12] CHEN Zhimin.Side channel power analysis on secure integrated circuits and countermeasures[D].Shanghai:Shanghai Jiao Tong University,2006.(in Chinese) 陈志敏.安全芯片旁路功耗分析及抗攻击措施[D].上海:上海交通大学,2006.
[13] MANGARD S,OSWALD E,POPP T.Power analysis attacks[EB/OL].[2018-11-05].http://www.springerlink.com/content/g01q1k.
[14] MANGARD S,OSWALD E,POPP T.Energy analysis attack[M].Translated by FENG Dengguo,ZHOU Yongbin,LIU Jiye.Beijing:Science Press,2010.(in Chinese) MANGARD S,OSWALD E,POPP T.能量分析攻击[M].冯登国,周永彬,刘继业,译.北京:科学出版社,2010.
[15] WANG Yunfeng.Research on chaos based cryptography and key technologies[D].Hangzhou:Zhejiang University,2006.(in Chinese) 王云峰.基于混沌的密码算法及关键技术研究[D].杭州:浙江大学,2006.
[16] MAO Jinliang.Design and implementation of dynamic clock-gating management strategy[D].Nanjing:Southeast Uni-versity,2014.(in Chinese)茅锦亮.动态时钟门控管理策略的设计与实现[D].南京:东南大学,2014.
[17] LE Daheng.Research on circuit-level design against power analysis attack for cryptographic chip[D].Changsha:National University of Defense Science and Technology,2011.(in Chinese)乐大珩.抗功耗攻击的密码芯片电路级防护关键技术研究[D].长沙:国防科技大学,2011.
[18] HAN Xueyang.Improved correlation energy analysis attack based on preprocessing energy trace[D].Jinan:Shandong University,2016.(in Chinese)韩学洋.基于预处理能量迹的改进相关能量分析攻击[D].济南:山东大学,2016.
[19] CHU Jie,DING Guoliang,DENG Gaoming,et al.Design and realization of differential power analysis for DES[J].Journal of Chinese Computer Systems,2007,28(11):2070-2073.(in Chinese)褚杰,丁国良,邓高明,等.DES差分功耗分析攻击设计与实现[J].小型微型计算机系统,2007,28(11):2070-2073.
[20] WANG Pengjun,HAO Lipeng,ZHANG Yuejun.Design of AES subbyte module of anti-zero value power attack and its VLSI implementation[J].Acta Electronica Sinica,2012,40(11):2183-2187.(in Chinese)汪鹏君,郝李鹏,张跃军.防御零值功耗攻击的AES SubByte模块设计及其VLSI实现[J].电子学报,2012,40(11):2183-2187.
[21] LU Langru,KUANG Youhua,YANG Qianghao,et al.How to implement AES by using FPGA[J].Computer and Communications,2001,19(5):14-17.(in Chinese)陆浪如,匡友华,杨强浩,等.AES算法的FPGA实现[J].交通信息与安全,2001,19(5):14-17.

选择文件类型/文献管理软件名称

选择包含的内容

针对分组密码的攻击方法研究

Research on Attacks Method for Block Ciphers

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 7

参考文献

相关文章 15

编辑推荐

Metrics

本文评价

[1]	廖俊帆, 顾益军, 张培晶, 廖茜. 端到端说话人辨认的对抗样本应用比较研究[J]. 计算机工程, 2021, 47(6): 132-141.
[2]	信文倩, 孙兵, 李超. LiCi算法的基于比特积分攻击[J]. 计算机工程, 2020, 46(7): 136-142.
[3]	李建岐, 黄毕尧, 杨婷婷, 吴玉成. 230 MHz电力专属频段频谱认知技术研究[J]. 计算机工程, 2020, 46(7): 173-178.
[4]	梁猛, 史晓霜. 基于二阶Newton插值的莫尔条纹消除算法[J]. 计算机工程, 2020, 46(5): 259-266.
[5]	李翠然, 张闻博, 吕安琪. 高铁山地场景下的车地无线信道建模[J]. 计算机工程, 2020, 46(5): 224-229,239.
[6]	李康, 张鲁飞, 张新伟, 郁龚健, 刘家航, 吴东, 柴志雷. 基于FPGA集群的脉冲神经网络仿真器设计[J]. 计算机工程, 2020, 46(10): 201-209.
[7]	张文坤,汪西原,宋佳乾. 基于分数阶微分差与高斯曲率滤波的边缘检测算法[J]. 计算机工程, 2019, 45(2): 213-219.
[8]	夏文涛, 潘森杉, 王良民. 一种面向RFID的超轻量级流密码算法[J]. 计算机工程, 2019, 45(10): 144-149.
[9]	王涛,周志刚,李茂. 以用户为中心的基站与波束自适应选择算法[J]. 计算机工程, 2019, 45(1): 50-54.
[10]	崔佰会,高戈,姜林. 基于神经网络的AVS-P10开环模式选择算法优化[J]. 计算机工程, 2018, 44(9): 256-262.
[11]	杨牧,陈长兴,凌云飞,林兴,王晓东. 基于自适应阈值的数据链协作抗干扰方法[J]. 计算机工程, 2018, 44(10): 101-106.
[12]	陆敏俊,王慈. 基于相关性的JPEG高压缩图像峰值信噪比盲估计[J]. 计算机工程, 2017, 43(8): 253-257.
[13]	蔡军,李飞,张毅. 基于听觉掩蔽效应的语音增强算法[J]. 计算机工程, 2017, 43(7): 288-292,297.
[14]	段晓毅,佘高健,高献伟,何斯曼,崔琦,王思翔,毛泽宇. 基于小波包的AES相关功耗分析攻击[J]. 计算机工程, 2017, 43(6): 84-91.
[15]	秦冬冬,陈志军,闫学勤. 多层阈值函数下的小波图像去噪[J]. 计算机工程, 2017, 43(6): 202-206.

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

针对分组密码的攻击方法研究

Research on Attacks Method for Block Ciphers

RichHTML

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

图/表 7

参考文献

相关文章 15

编辑推荐

Metrics

本文评价