Stammdaten

Titel: Share-slicing: Friend or Foe?
Untertitel:
Kurzfassung:

Masking is a well loved and widely deployed countermeasure against side channel attacks, in particular in software. Under certain assumptions (w.r.t. independence and noise level), masking provably prevents attacks up to a certain security order and leads to a predictable increase in the number of required leakages for successful attacks beyond this order. The noise level in typical processors where software masking is used may not be very high, thus low masking orders are not sufficient for real world security. Higher order masking however comes at a great cost, and therefore a number techniques have been published over the years that make such implementations more efficient via parallelisation in the form of bit or share slicing. We take two highly regarded schemes (ISW and Barthe et al.), and some corresponding open source implementations that make use of share slicing, and discuss their true security on an ARM Cortex-M0 and an ARM Cortex-M3 processor (both from the LPC series). We show that micro-architectural features of the M0 and M3 undermine the independence assumptions made in masking proofs and thus their theoretical guarantees do not translate into practice (even worse it seems unpredictable at which order leaks can be expected). Our results demonstrate how difficult it is to link theoretical security proofs to practical real-world security guarantees.

Schlagworte: Masking; Side-Channel Analysis
Publikationstyp: Beitrag in Proceedings (Autorenschaft)
Art der Veröffentlichung Online Publikation
Erschienen in: IACR Transactions on Cryptographic Hardware and Embedded Systems
IACR Transactions on Cryptographic Hardware and Embedded Systems
zur Publikation
 ( IACR; E. Oswald, S. Gao )
Erscheinungsdatum: 19.11.2019
Titel der Serie: -
Bandnummer: -
Erstveröffentlichung: Ja
Version: -
Seite: S. 152 - 174
Bild der Titelseite: Cover

Identifikatoren

ISBN: -
ISSN: 2569-2925
DOI: http://dx.doi.org/10.13154/tches.v2020.i1.152-174
AC-Nummer: -
Homepage: https://tches.iacr.org/index.php/TCHES/article/view/8396/7780
Open Access
  • Online verfügbar (Open Access)

Zuordnung

Organisation Adresse
Universität Klagenfurt
 
Digital Age Research Center (D!ARC)
Universitätsstraße 65-67
9020  Klagenfurt
Österreich
https://www.aau.at/hda/
zur Organisation
Universitätsstraße 65-67
AT - 9020  Klagenfurt
Fakultät für Technische Wissenschaften
 
Institut für Angewandte Informatik
Universitätsstr. 65-67
A-9020  Klagenfurt
Österreich
  -993705
   ainf@aau.at
https://www.aau.at/angewandte-informatik/
zur Organisation
Universitätsstr. 65-67
AT - A-9020  Klagenfurt

Kategorisierung

Sachgebiete
  • 102016 - IT-Sicherheit
  • 102017 - Kryptologie
Forschungscluster
  • Humans in the Digital Age
Peer Reviewed
  • Ja
Publikationsfokus
  • Science to Science (Qualitätsindikator: I)
Klassifikationsraster der zugeordneten Organisationseinheiten:
Arbeitsgruppen
  • Cybersecurity

Kooperationen

Organisation Adresse
Univerity of Bristol
Tyndall Ave
Großbrit. u. Nordirland
Tyndall Ave
GB  

Beiträge der Publikation

Keine verknüpften Publikationen vorhanden