摘要： 分析新型高速缓冲存储器(Cache)旁路攻击技术，给出一种Cache旁路攻击方法。针对S盒操作使用查找表处理的数据加密标准(DES)算法实现，通过获取DES加密过程中前2轮加密运算对应的Cache命中信息，结合数学分析方法，可以有效地缩小DES密钥搜索空间。对Cache存储器行为和数学分析攻击进行仿真实现的结果显示，通过26个选择明文，大约耗费230次离线DES加密时间成功地恢复了DES密钥。给出了防御Cache攻击的基本对策。

关键词: 旁路攻击, 高速缓冲存储器, 数据加密标准, S盒

Abstract: This paper presents a new type of side channel attack based on Cache behaviors. For the implementation of Data Encryption Standard(DES) which takes the operations of looking up tables, with the assistant of mathematical analysis, the search area of the secret key can be reduced effectively by discovering the Cache hit information during the first 2 rounds of DES. The result from the experiment of Cache behaviors-based attack simulation shows that the DES key can be recovered with 26 chosen-plaintexts in 230 times off-line DES encryption. Several countermeasures for attack of this type are introduced.

Key words: side channel attack, Cache, Data Encryption Standard(DES), S-box

中图分类号: 

• TN918