Cache Based Power Analysis Attacks on AES

Fournier, Jacques; Tunstall, Michael

doi:10.1007/11780656_2

Cache Based Power Analysis Attacks on AES

Jacques Fournier^18,19 &
Michael Tunstall²⁰

Conference paper

828 Accesses
12 Citations

Part of the book series: Lecture Notes in Computer Science ((LNSC,volume 4058))

Abstract

This paper describes possible attacks against software implementations of AES running on processors with cache mechanisms, particularly in the case of smart cards. These attacks are based on side-channel information gained by observing cache hits and misses in the current drawn by the smart card. Two different attacks are described. The first is a combination of ideas proposed in [2] and [11] to produce an attack that only requires the manipulation of the plain text and the observation of the current. The second is an attack based on specific implementations of the xtime function [10]. These attacks are shown to also work against algorithms using Boolean data masking techniques as a DPA countermeasure.

This is a preview of subscription content, log in via an institution.

Chapter: USD 29.95; Price excludes VAT (USA)

eBook: USD 39.99; Price excludes VAT (USA)

Softcover Book: USD 54.99; Price excludes VAT (USA)

Tax calculation will be finalised at checkout

Purchases are for personal use only

Learn about institutional subscriptions

Preview

Unable to display preview. Download preview PDF.

References

Akkar, M.-L., Giraud, C.: An implementation of DES and AES, secure against some attacks. In: Koç, Ç.K., Naccache, D., Paar, C. (eds.) CHES 2001. LNCS, vol. 2162, pp. 309–318. Springer, Heidelberg (2001)
Chapter Google Scholar
Bernstein, D.J.: Cache timing attacks on AES (2004), http://cr.yp.to/antiforgery/cachetiming-20050414.pdf
Bertoni, G., Zaccaria, V., Breveglieri, L., Monchiero, M., Palermo, G.: AES power attack based on induced cache miss and countermeasures. In: International Symposium on Information Technology: Coding and Computing – ITCC 2005, pp. 586–591. IEEE Computer Society Press, Los Alamitos (2005)
Google Scholar
Clavier, C., Coron, J.-S., Dabbous, N.: Differential power analysis in the presence of hardware countermeasures. In: Paar, C., Koç, Ç.K. (eds.) CHES 2000. LNCS, vol. 1965, pp. 252–263. Springer, Heidelberg (2000)
Chapter Google Scholar
Hennessy, J.L., Patterson, D.A.: Computer Architecture: A Quantitative Approach. Morgan Kaufmann, San Francisco (2003)
Google Scholar
Kocher, P.C., Jaffe, J., Jun, B.: Differential power analysis. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 388–397. Springer, Heidelberg (1999)
Google Scholar
Messerges, T.S.: Power Analysis Attacks and Countermeasures for Cryptographic Algorithms. PhD thesis, University of Illinois, Chicago (2000)
Google Scholar
MIPS-Technologies. SmartMIPS ASE, http://www.mips.com/content/Products/
MIPS-Technologies. MIPS^TMarchitecture for programmers, vol. I: Introduction to the MIPS32^TMarchitecture. Technical Report MD00082, Revision 0.95 (March 2001)
Google Scholar
National Institute of Standards and Technology. Advanced encryption standard (AES) (FIPS–197) (2001)
Google Scholar
Osvik, D.A., Shamir, A., Tromer, E.: Cache attacks and countermeasures: The case of AES. In: Pointcheval, D. (ed.) CT-RSA 2006. LNCS, vol. 3860, pp. 1–20. Springer, Heidelberg (2006)
Chapter Google Scholar
Page, D.: Theoretical use of cache memory as a cryptanalytic side–channel. Cryptology ePrint Archive, Report 2002/169 (2002), http://eprint.iacr.org/
Page, D.: Defending against cache based side-channel attacks. Information Security Technical Report 8(1), 30–44 (2003)
Article Google Scholar
Rao, J.R., Rohatgi, P., Scherzer, H., Tinguely, S.: Partitioning attacks: or how to rapidly clone some gsm cards. In: Proceedings of the IEEE Symposium on Security and Privacy, pp. 31–41 (2002)
Google Scholar
Infineon Technologies AG Secure and Mobile Solutions Security Group. Security & chip cards ICs SLE88Cx4000P, preliminary short product information 04.03 (2003)
Google Scholar
Tsunoo, Y., Saito, T., Suzaki, T., Shigeri, M., Miyauchi, H.: Cryptanalysis of DES implemented on computers with cache. In: Walter, C.D., Koç, Ç.K., Paar, C. (eds.) CHES 2003. LNCS, vol. 2779, pp. 62–76. Springer, Heidelberg (2003)
Chapter Google Scholar

Download references

Author information

Authors and Affiliations

Computer Laboratory, University of Cambridge, JJ Thomson Avenue, Cambridge, CB3 0FD, UK
Jacques Fournier
Security Technologies Department, Gemplus Card International, Avenue des Jujubiers, La Ciotat, F-13705, France
Jacques Fournier
Smart Card Centre, Information Security Group, Royal Holloway, University of London, Egham, Surrey, TW20 0EX, UK
Michael Tunstall

Authors

Jacques Fournier
View author publications
You can also search for this author in PubMed Google Scholar
Michael Tunstall
View author publications
You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

School of Information Technology, Deakin University,
Lynn Margaret Batten
Department of Computer Science, University of Calgary, T2N 1N4, Calgary,
Reihaneh Safavi-Naini

Rights and permissions

Reprints and permissions

Copyright information

About this paper

Cite this paper

Fournier, J., Tunstall, M. (2006). Cache Based Power Analysis Attacks on AES. In: Batten, L.M., Safavi-Naini, R. (eds) Information Security and Privacy. ACISP 2006. Lecture Notes in Computer Science, vol 4058. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11780656_2

Download citation

DOI: https://doi.org/10.1007/11780656_2
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-35458-1
Online ISBN: 978-3-540-35459-8
eBook Packages: Computer ScienceComputer Science (R0)

Publish with us

Policies and ethics