deep learning for embedded security evaluation
play

Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint - PowerPoint PPT Presentation

Nov 02, 2022 •203 likes •932 views

Deep Learning For Embedded Security Evaluation Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint work with Ryad Benadjila, Eleonora Cagli (CEA LETI), C ecile Dumas (CEA LETI), Houssem Maghrebi (UL), Loic Masure (CEA LETI),

  1. Deep Learning For Embedded Security Evaluation Deep Learning For Embedded Security Evaluation Emmanuel PROUFF Joint work with Ryad Benadjila, Eleonora Cagli (CEA LETI), C´ ecile Dumas (CEA LETI), Houssem Maghrebi (UL), Loic Masure (CEA LETI), Thibault Portigliatti (ex SAFRAN), R´ emi Strullu and Adrian Thillard ANSSI (French Network and Information Security Agency) June 17, 2019 June 2019, Summer School, ˇ Sibenik, Croatia | E. Prouff | 0/18

  2. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Probability distribution function (pdf) of Electromagnetic Emanations Cryptographic Processing with a secret k = 1. 1/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  3. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Probability distribution function (pdf) of Electromagnetic Emanations Cryptographic Processing with a secret k = 1. 1/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  4. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Probability distribution function (pdf) of Electromagnetic Emanations Cryptographic Processing with a secret k = 2. 1/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  5. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Probability distribution function (pdf) of Electromagnetic Emanations Cryptographic Processing with a secret k = 3. 1/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  6. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Probability distribution function (pdf) of Electromagnetic Emanations Cryptographic Processing with a secret k = 4. 1/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  7. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Context: Target Device Clone Device 2/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  8. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Context: Target Device Clone Device [On Clone Device] For every k estimate the pdf of − → X | K = k . k = 1 k = 2 k = 3 k = 4 2/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  9. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Context: Target Device Clone Device [On Clone Device] For every k estimate the pdf of − → X | K = k . k = 1 k = 2 k = 3 k = 4 2/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  10. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Context: Target Device Clone Device [On Clone Device] For every k estimate the pdf of − → X | K = k . k = 1 k = 2 k = 3 k = 4 [On Target Device] Estimate the pdf of − → X . k = ? 2/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  11. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Context: Target Device Clone Device [On Clone Device] For every k estimate the pdf of − → X | K = k . k = 1 k = 2 k = 3 k = 4 [On Target Device] Estimate the pdf of − → X . k = ? [Key-recovery] Compare the pdf estimations. 2/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  12. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � X 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  13. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  14. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] Template Attacks Profiling phase (using profiling traces under known Z ) Attack phase ( N attack traces � x i , e.g. with known plaintexts p i ) Log-likelihood score for each key hypothesis k N log Pr[ � � d k = X = � x i | Z = f ( p i , k )] i =1 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  15. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] Template Attacks Profiling phase (using profiling traces under known Z ) ◮ estimate Pr[ � X | Z = z ] by simple distributions for each value of z Attack phase ( N attack traces � x i , e.g. with known plaintexts p i ) Log-likelihood score for each key hypothesis k N � log Pr[ � d k = X = � x i | Z = f ( p i , k )] i =1 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  16. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] Template Attacks Profiling phase (using profiling traces under known Z ) ◮ estimate Pr[ � X | Z = z ] for each value of z Attack phase ( N attack traces � x i , e.g. with known plaintexts p i ) ◮ Log-likelihood score for each key hypothesis k N � log Pr[ � d k = X = � x i | Z = f ( p i , k )] i =1 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  17. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] Template Attacks Profiling phase (using profiling traces under known Z ) ◮ mandatory dimensionality reduction ◮ estimate Pr[ � X | Z = z ] for each value of z Attack phase ( N attack traces � x i , e.g. with known plaintexts p i ) ◮ Log-likelihood score for each key hypothesis k N � log Pr[ � d k = X = � x i | Z = f ( p i , k )] i =1 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  18. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Illustration| Template Attacks| Side Channel Attacks (Classical Approach) Notations � X observation of the device behaviour P public input of the processing Z target (a cryptographic sensitive variable Z = f ( P, K )) Goal: make inference over Z , observing � Pr[ Z | � X X ] Template Attacks Profiling phase (using profiling traces under known Z ) ◮ manage de-synchronization problem ◮ mandatory dimensionality reduction ◮ estimate Pr[ ε ( ˜ X ) | Z = z ] for each value of z Attack phase ( N attack traces � x i , e.g. with known plaintexts p i ) ◮ Log-likelihood score for each key hypothesis k N � log Pr[ ε ( ˜ d k = X ) = ε ( ˜ x i ) | Z = f ( p i , k )] i =1 3/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  19. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Defensive Mechanisms Misaligning Countermeasures Random Delays, Clock Jittering, ... + In theory: assume to be insufficient to provide security In practice: one of the main issues for evaluators = ⇒ Need for efficient resynchronization techniques 4/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  20. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Defensive Mechanisms Misaligning Countermeasures Random Delays, Clock Jittering, ... + In theory: assume to be insufficient to provide security In practice: one of the main issues for evaluators = ⇒ Need for efficient resynchronization techniques Masking Countermeasure Each key-dependent internal state element is randomly split into 2 shares The crypto algorithm is adapted to always manipulate shares at � = times The adversary needs to recover information on the two shares to recover K = ⇒ Need for efficient Methods to recover tuple of leakage samples that jointly depend on the target secret 4/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

  21. Learning| Countermeasures| Machine Learning| Building a Community| Conclusions| Introduction| Convolutional Neural Networks| Training of Models| Motivating Conclusions 5/18 Emmanuel PROUFF - ANSSI / Invited Talk PANDA 2018

Recommend

Deep-Learning Oriented Smart Sensing for the Next Generation of Embedded Applications Manuele

Deep-Learning Oriented Smart Sensing for the Next Generation of Embedded Applications Manuele

Deep-Learning Oriented Smart Sensing for the Next Generation of Embedded Applications Manuele Rusci, Francesco Conti , Alessandro Capotondi, Luca Benini Energy-Efficient Embedded Systems Laboratory Dipartimento di Ingegneria dellEnergia

630 views • 15 slides
ACCELERATE DEEP LEARNING WITH NVIDIA'S DEEP LEARNING PLATFORM | STEPHEN JONES | GTC16 DEEP

ACCELERATE DEEP LEARNING WITH NVIDIA'S DEEP LEARNING PLATFORM | STEPHEN JONES | GTC16 DEEP

ACCELERATE DEEP LEARNING WITH NVIDIA'S DEEP LEARNING PLATFORM | STEPHEN JONES | GTC16 DEEP LEARNING EVERYWHERE INTERNET & CLOUD MEDICINE & BIOLOGY MEDIA & ENTERTAINMENT SECURITY & DEFENSE AUTONOMOUS MACHINES Image

307 views • 26 slides
Deep Learning on GPUs March 2016 What is Deep Learning? GPUs and DL AGENDA DL in practice

Deep Learning on GPUs March 2016 What is Deep Learning? GPUs and DL AGENDA DL in practice

Deep Learning on GPUs March 2016 What is Deep Learning? GPUs and DL AGENDA DL in practice Scaling up DL 2 What is Deep Learning? 3 DEEP LEARNING EVERYWHERE INTERNET & CLOUD MEDICINE & BIOLOGY SECURITY & DEFENSE MEDIA &

1.45k views • 39 slides
Evaluation of Deep Learning Evaluation of Deep Learning Models for Network Models for Network

Evaluation of Deep Learning Evaluation of Deep Learning Models for Network Models for Network

Evaluation of Deep Learning Evaluation of Deep Learning Models for Network Models for Network Performance Prediction for Performance Prediction for Scientific Facilities Scientific Facilities Makiya Nakashima: Texas A&M

438 views • 16 slides
Efficient Deep Feature Learning and Extraction via StochasticNets Mohammad Javad Shafiee,

Efficient Deep Feature Learning and Extraction via StochasticNets Mohammad Javad Shafiee,

Efficient Deep Feature Learning and Extraction via StochasticNets Mohammad Javad Shafiee, Parthipan Siva Paul Fieguth and Alexander Wong. Presentation by Ivan Slobozhan Embedded devices and DNN Low-power CPU Custom embedded CPU not

419 views • 19 slides
The Embedded Learning Library The Embedded Learning Library (ELL) Cross-compiler for AI

The Embedded Learning Library The Embedded Learning Library (ELL) Cross-compiler for AI

The Embedded Learning Library The Embedded Learning Library (ELL) Cross-compiler for AI pipelines, specialized for resource constrained target platforms T arget ELL AI Machine Pipeline Code https://github.com/Microsoft/ELL The Embedded

638 views • 36 slides
Data Generation and Evaluation Using Deep Learning Ye Ji An a , Ji Hun Park a , So Hun Yun a , Man

Data Generation and Evaluation Using Deep Learning Ye Ji An a , Ji Hun Park a , So Hun Yun a , Man

Transactions of the Korean Nuclear Society Virtual Spring Meeting July 9-10, 2020 Data Generation and Evaluation Using Deep Learning Ye Ji An a , Ji Hun Park a , So Hun Yun a , Man Gyun Na a a Department of Nuclear Engineering, Chosun

314 views • 4 slides
WITH TECHNOLOGY FACE ATTRIBUTES NETWORK CAMERA WH WHAT AT IS IS DE DEEP EP LEARNING

WITH TECHNOLOGY FACE ATTRIBUTES NETWORK CAMERA WH WHAT AT IS IS DE DEEP EP LEARNING

EPHRAIM SECURITY WITH TECHNOLOGY FACE ATTRIBUTES NETWORK CAMERA WH WHAT AT IS IS DE DEEP EP LEARNING EARNING Artificial Intelligence Machine Learning Deep Learning DEEP COOPERATION BETWEEN EPHRAIM AI & INTEL CPU/FPGA

569 views • 29 slides
Machine Learning and Embedded Security Farinaz Koushanfar Professor and Henry Booker Faculty

Machine Learning and Embedded Security Farinaz Koushanfar Professor and Henry Booker Faculty

Machine Learning and Embedded Security Farinaz Koushanfar Professor and Henry Booker Faculty Scholar Founder and Co-Director, Center for Machine-Integrated & Security (MICS) University of California San Diego Big data and automation

998 views • 54 slides
Deep Learning Inference on Embedded Devices: Fixed-Point vs Posit Seyed Hamed Fatemi Langroudi,

Deep Learning Inference on Embedded Devices: Fixed-Point vs Posit Seyed Hamed Fatemi Langroudi,

Deep Learning Inference on Embedded Devices: Fixed-Point vs Posit Seyed Hamed Fatemi Langroudi, Tej Pandit, Dhireesha Kudithipudi Neuromorphic AI Lab Department of Computer Engineering Rochester Institute of Technology EMC 2 Workshop, March 25,

940 views • 16 slides
IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying

IT Security Evaluation Why do we need security evaluation To provide a basis for specifying security expectations To verify that a computer product/system fulfills the requirements imposed on it To establish a metric for the degree

535 views • 19 slides
embedded security October 2015 The Old Model (simplified view) Embedded Security Benedikt

embedded security October 2015 The Old Model (simplified view) Embedded Security Benedikt

embedded security October 2015 The Old Model (simplified view) Embedded Security Benedikt Gierlichs KU Leuven, COSIC IACR Summer school 2015 Chia Laguna, Italy Attack on channel between communicating parties Encryption and

412 views • 6 slides
Co-Evaluation of Pattern Matching Algorithms on IoT Devices with Embedded GPUs Charalampos

Co-Evaluation of Pattern Matching Algorithms on IoT Devices with Embedded GPUs Charalampos

Co-Evaluation of Pattern Matching Algorithms on IoT Devices with Embedded GPUs Charalampos Stylianopoulos Simon Kindstrm Magnus Almgren Olaf Landsiedel Marina Papatriantafilou Distributed Computing and Systems Motivation IoT security

908 views • 31 slides
Hao Su July 6, 2017 Outline Overview of 3D deep learning 3D deep learning algorithms

Hao Su July 6, 2017 Outline Overview of 3D deep learning 3D deep learning algorithms

Deep 3D Representation Learning for Visual Computing Hao Su July 6, 2017 Outline Overview of 3D deep learning 3D deep learning algorithms Conclusion 2 Outline Overview of 3D deep learning Background 3D deep learning tasks 3D deep

1.66k views • 122 slides
A Tour of Machine Learning Security Florian Tramr CISPA August 6 th 2018 The Deep Learning

A Tour of Machine Learning Security Florian Tramr CISPA August 6 th 2018 The Deep Learning

A Tour of Machine Learning Security Florian Tramr CISPA August 6 th 2018 The Deep Learning Revolution First they came for images The Deep Learning Revolution And then everything else The ML Revolution Including things that likely

971 views • 45 slides
Realistic Evaluation of Deep Semi-Supervised Learning Algorithms Avital Oliver* Augustus Odena*

Realistic Evaluation of Deep Semi-Supervised Learning Algorithms Avital Oliver* Augustus Odena*

Realistic Evaluation of Deep Semi-Supervised Learning Algorithms Avital Oliver* Augustus Odena* Colin Raffel* Ekin Dogus Cubuk Ian Goodfellow vs. Error rates for our reimplementation of different semi-supervised learning methods. Reported

212 views • 17 slides
The Unspoken Problems With Machine Learning in Security Noa Weiss Hi! AI & Machine Learning

The Unspoken Problems With Machine Learning in Security Noa Weiss Hi! AI & Machine Learning

The Unspoken Problems With Machine Learning in Security Noa Weiss Hi! AI & Machine Learning Consultant Playing with data for over a decade Risk and Security PayPal, Armis 2 Hi! Deep Voice foundation Leader of

554 views • 54 slides
Reproducibility and Replicability in Deep Reinforcement Learning (and Other Deep Learning

Reproducibility and Replicability in Deep Reinforcement Learning (and Other Deep Learning

Reproducibility and Replicability in Deep Reinforcement Learning (and Other Deep Learning Methods) Peter Henderson Statistical Society of Canada Annual Meeting 2018 Contributors Riashat Islam Phil Bachman Doina Precup David Meger Joelle

850 views • 37 slides
Efficient Communication Library for Large-Scale Deep Learning Mar 26, 2018 Minsik Cho

Efficient Communication Library for Large-Scale Deep Learning Mar 26, 2018 Minsik Cho

IBM Research AI Efficient Communication Library for Large-Scale Deep Learning Mar 26, 2018 Minsik Cho (minsikcho@us.ibm.com) Deep Learning changing Our Life Automotive/transportation Medicine and Biology Security/public safety Consumer Web,

342 views • 19 slides
DEEP LEARNING DEMYSTIFIED Will Ramey Director, Developer Programs NVIDIA Corporation

DEEP LEARNING DEMYSTIFIED Will Ramey Director, Developer Programs NVIDIA Corporation

DEEP LEARNING DEMYSTIFIED Will Ramey Director, Developer Programs NVIDIA Corporation DEFINITIONS DEEP LEARNING IS SWEEPING ACROSS INDUSTRIES Internet Services Medicine Media & Entertainment Security & Defense Autonomous Machines

532 views • 24 slides
How to build privacy and security into deep learning models Yishay Carmiel @YishayCarmiel The

How to build privacy and security into deep learning models Yishay Carmiel @YishayCarmiel The

How to build privacy and security into deep learning models Yishay Carmiel @YishayCarmiel The evolution of AI AI has evolved a lot over the last few years Speech Recognition Computer Vision Machine Translation Natural Language Processing

939 views • 54 slides
Image Classification with DIGITS NVIDIA Deep Learning Institute 1 DEEP LEARNING INSTITUTE DLI

Image Classification with DIGITS NVIDIA Deep Learning Institute 1 DEEP LEARNING INSTITUTE DLI

Image Classification with DIGITS NVIDIA Deep Learning Institute 1 DEEP LEARNING INSTITUTE DLI Mission Helping people solve challenging problems using AI and deep learning. Developers, data scientists and engineers Self-driving cars,

1.44k views • 72 slides
Deep Neural Networks and Deep Reinforcement Learning Deep Learning, Goodfellow, Bengio and

Deep Neural Networks and Deep Reinforcement Learning Deep Learning, Goodfellow, Bengio and

Deep Neural Networks and Deep Reinforcement Learning Deep Neural Networks and Deep Reinforcement Learning Deep Learning, Goodfellow, Bengio and Courville [chapt. 6,7,8]; AIMA [sect. 21.1-21.3]; Sutton and Barto, Reinforcement Learning: an

527 views • 35 slides
Natural Language Processing with Deep Learning CS224N The Future of Deep Learning + NLP Kevin

Natural Language Processing with Deep Learning CS224N The Future of Deep Learning + NLP Kevin

Natural Language Processing with Deep Learning CS224N The Future of Deep Learning + NLP Kevin Clark Deep Learning for NLP 5 years ago No Seq2Seq No Attention No large-scale QA/reading comprehension datasets No TensorFlow or

1.41k views • 92 slides

More recommend