针对LBlock 算法的踪迹驱动Cache 攻击

doi:10.3969/j.issn.1000-3428.2015.05.028

计算机工程

针对LBlock 算法的踪迹驱动Cache 攻击

朱嘉良^1,2,韦永壮^1,3

(1. 桂林电子科技大学广西信息科学实验中心,广西桂林541004;2. 西安电子科技大学综合业务网理论及关键技术国家重点实验室,西安710071;3. 中国科学院信息工程研究所信息安全国家重点实验室,北京100190)

收稿日期:2014-05-05 出版日期:2015-05-15 发布日期:2015-05-15
作者简介:朱嘉良(1987 - ),男,硕士研究生,主研方向:信息安全;韦永壮,教授、博士。
基金资助:
国家自然科学基金资助项目(61100185)。

Trace Driven Cache Attack on LBlock Algorithm

ZHU Jialiang^1,2,WEI Yongzhuang^1,3

(1. Guangxi Experiment Center of Information Science,Guilin University of Electronic Technology,Guilin 541004,China;2. State Key Laboratory of Integrated Services Networks,Xidian University,Xi’an 710071,China;3. State Key Laboratory of Information Security,Institute of Information Engineering,Chinese Academy of Sciences,Beijing 100190,China)

Received:2014-05-05 Online:2015-05-15 Published:2015-05-15

摘要/Abstract

摘要： LBlock 是一种轻量级分组密码算法,其由于优秀的软硬件实现性能而备受关注。目前针对LBlock 的安全性研究多侧重于抵御传统的数学攻击。缓存(Cache)攻击作为一种旁路攻击技术,已经被证实对密码算法的工程实现具有实际威胁,其中踪迹驱动Cache 攻击分析所需样本少、分析效率高。为此,根据LBlock 的算法结构及密钥输入特点,利用访问Cache 过程中密码泄露的旁路信息,给出针对LBlock 算法的踪迹驱动Cache 攻击。分析结果表明,该攻击选择106 个明文,经过约27. 71次离线加密时间即可成功恢复LBlock 的全部密钥。与LBlock 侧信道立方攻击和具有Feistel 结构的DES 算法踪迹驱动Cache 攻击相比,其攻击效果更明显。

关键词: 微处理器, 分组密码, LBlock 算法, 侧信道攻击, 踪迹驱动Cache 攻击, 时间复杂度, 数据复杂度

Abstract: As a new lightweight block cipher,LBlock cipher receives much attention since its excellent performance on hardware and software platforms. Currently, the secure evaluation on LBlock cipher heavy relies on the traditional mathematical attacks. The cache attack is a type of side channel attacks, and it has actual threat to the secure implementation of ciphers algorithm. In all kinds of Cache attacks,trace driven Cache attack has the advantage of using less samples and having higher efficiency. Based on the structure of the cipher algorithm and the property of its key schedule,this paper proposes a trace driven Cache attack on the LBlock algorithm. This attack recovers the secret key by capturing the leaked information in the process of accessing to the Cache. Analysis result shows that this attack requires a data complexity of about 106 chosen plaintexts,and a time complexity of about 27. 71 encryption operations. Compared with the proposed side channel cube attacks on LBlock and trace driven Cache attack on DES which also has the structure of Feistel,the attack is more favorable.

Key words: microprocessor, block cipher, LBlock algorithm, side channel attack, trace driven Cache attack, time complexity, data complexity

中图分类号:

TP309

朱嘉良,韦永壮. 针对LBlock 算法的踪迹驱动Cache 攻击[J]. 计算机工程.

ZHU Jialiang,WEI Yongzhuang. Trace Driven Cache Attack on LBlock Algorithm[J]. Computer Engineering.

https://www.ecice06.com/CN/Y2015/V41/I5/153

参考文献

参考文献 [ 1 ]　Bogdanov A, Kundsen L R, Leander G, et al. PRESENT:An Ultra-lightweight Block Cipher [ C ] / / Proceedings of the 9th International Workshop on Cryptographic Hardware and Embedded Systems. Berlin, Germany:Springer-Verlag,2007:450-466. [ 2 ]　Hong D,Sung J,Hong S,et al. HIGHT:A New Block Cipher Suitable for Low-resource Device [ C ] / / Proceedings of the 8th International Workshop on Cryptographic Hardware and Embedded Systems. Berlin, Germany:Springer-Verlag,2006:46-59. [ 3 ]　de Cannière C,Dunkelman O,Kneevi M. KATAN and KTANTAN———A Family of Small and Efficient Hardware-oriented Block Ciphers [C] / / Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems. Berlin, Germany: Springer-Verlag,2009:272-288. [ 4 ]　Wu Wuling, Zhang Lei. LBlock: A Lightweight Block Cipher [ C ]/ / Proceedings of the 9th International Conference on Applied Cryptography and Network Security. Berlin,Germany:Springer-Verlag,2011:327-344. [ 5 ]　Liu Shusheng, Zheng Gong, Wang Libin. Improved Related-key Differential Attacks on Reduced-round LBlock [ C ] / / Proceedings of the 14th International Conference on Information and Communications Security. Berlin,Germany:Springer-Verlag,2012:58-69. [ 6 ]　Boura C,Minier M,Naya-Plasencia M,et al. Improved Impossible Differential Attacks Against Round-reduced LBlock [ DB / OL]. (2014-04-22). http:/ / eprint. iacr. org / 2014/ 279. pdf. [ 7 ]　詹英杰,关　杰,丁　林,等. 对简化版LBlock 算法的相关密钥不可能差分攻击[J]. 电子与信息学报, 2012,34(9):2161-2166. [ 8 ]　Kocher P, Jaffe J, Jun B. Differential Power Analysis[ C] / / Proceedings of the 19th Annual International Cryptology Conference. Berlin, Germany: Springer- Verlag,1999:388-397. [ 9 ]　Page D. Theoretical Use of Cache Memory as a Cryptanalytic Side-channel [ DB / OL ]. (2002-11-11). http:/ / eprint. iacr. org / 2002/ 169. pdf. [10]　Acli mez O,Ko C K. Trace-driven Cache Attacks on AES [C] / / Proceedings of the 8th International Conference on Information and Communications Security. Berlin, Germany:Springer-Verlag,2006:112-121. [11]　Bonneau J. Robust Final-round Cache-trace Attacks Against AES [EB / OL]. (2006-10-29). http:/ / eprint. iacr. org / 2006/ 374. pdf. [12]　Jeong K,Lee C, Lim J I. Improved Differential Fault Analysis on Lightweight Block Cipher LBlock for Wireless Sensor Networks [ J ]. Journal of Wireless Communications and Networking,2013,151(1):1-9. [13]　Li Zhenqi, Zhang Bin, Yao Yuan, et al. Cube Cryptanalysis of LBlock with Noisy Leakage [ C ] / / Proceedings of the 15th International Conference on Information Security and Cryptology. Berlin,Germany: Springer-Verlag,2012:141-155. [14]　彭昌勇,祝跃飞,顾纯祥,等. 1 ~ 5 轮LBlock 的多项式表示及完全性分析[J]. 计算机工程,2012,38(9): 155-157. [15]　U. S. Department of Commerce / Nation INstitute of Standards and Technology. FIPS 46-3-1977Data Encryption Standard[S]. National Institute of Standards and Technology,1977. [16]　张　鹏,邓高明,赵　强,等. 基于Cache 行为的旁路攻击[J]. 计算机工程,2008,34(21):20-22. 编辑　金胡考

[1]	赵秉宇, 王柳生, 张美玲, 郑东. 针对重用掩码AES算法的随机明文碰撞攻击[J]. 计算机工程, 2022, 48(6): 139-145,153.
[2]	包致婷, 柯俊明, 杨铮, 龙华, 黄东. 适用于PLC的时间基一次性密码方案[J]. 计算机工程, 2021, 47(8): 149-156.
[3]	纪文桃, 李媛媛, 秦宝东. 基于决策树的SM4分组密码工作模式识别[J]. 计算机工程, 2021, 47(8): 157-161,169.
[4]	孙家异, 韦永壮. 轻量级分组密码算法DoT的模板攻击[J]. 计算机工程, 2021, 47(3): 155-159,165.
[5]	王俊年, 朱斌, 于文新, 王皖, 胡钒梁. 基于深度学习LSTM的侧信道分析[J]. 计算机工程, 2021, 47(10): 140-146.
[6]	信文倩, 孙兵, 李超. LiCi算法的基于比特积分攻击[J]. 计算机工程, 2020, 46(7): 136-142.
[7]	何卓桁, 刘志勇, 李璐, 李长明, 张琳. 异构文本数据转换中XML解析方法对比研究[J]. 计算机工程, 2020, 46(7): 286-293,299.
[8]	孙志勇, 季新生, 游伟, 李英乐. 一种基于冗余跳变的虚拟机动态迁移方法[J]. 计算机工程, 2020, 46(2): 21-27,34.
[9]	朱文锋, 王琴, 郭筝, 刘军荣. 针对分组密码的攻击方法研究[J]. 计算机工程, 2020, 46(1): 102-107,113.
[10]	石淑英, 何骏. GRANULE算法的不可能差分分析[J]. 计算机工程, 2019, 45(10): 134-138.
[11]	张佩,张文英. QARMA算法的相关密钥不可能差分攻击[J]. 计算机工程, 2019, 45(1): 91-95.
[12]	王思翔,张磊,段晓毅,崔琦,高献伟. 基于希尔伯特黄变换滤波预处理的相关性能量分析攻击[J]. 计算机工程, 2018, 44(7): 160-165,171.
[13]	赵志洲,路畅,何震瀛,王晓阳. 一种高效的文本区间热词查询算法[J]. 计算机工程, 2018, 44(2): 17-23,30.
[14]	曹道通,李敬文,文飞. 图的Smarandachely邻点可区别边染色算法[J]. 计算机工程, 2017, 43(9): 228-233,239.
[15]	凌杭,吴震,杜之波,王敏,饶金涛. 基于汉明重的EPCBC代数侧信道攻击[J]. 计算机工程, 2017, 43(8): 156-160,168.

选择文件类型/文献管理软件名称

选择包含的内容

针对LBlock 算法的踪迹驱动Cache 攻击

Trace Driven Cache Attack on LBlock Algorithm

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价

模态框（Modal）标题

选择文件类型/文献管理软件名称

选择包含的内容

针对LBlock 算法的踪迹驱动Cache 攻击

Trace Driven Cache Attack on LBlock Algorithm

PDF

可视化

被引次数

摘要/Abstract

引用本文

使用本文

参考文献

相关文章 15

编辑推荐

Metrics

本文评价