introduction to fault attacks
play

Introduction to Fault Attacks Josep Balasch KU Leuven ESAT / COSIC - PowerPoint PPT Presentation

Feb 16, 2024 •291 likes •571 views

Introduction to Fault Attacks Josep Balasch KU Leuven ESAT / COSIC IACR Summer School 2015 Chia Laguna, Sardinia (Italy) 19 October 2015 Introduction to Fault Attacks 19 October 2015 What are fault attacks? Active attacks against

  1. Introduction to Fault Attacks Josep Balasch KU Leuven ESAT / COSIC IACR Summer School 2015 Chia Laguna, Sardinia (Italy) 19 October 2015 Introduction to Fault Attacks 19 October 2015

  2. What are fault attacks?  Active attacks against cryptographic implementations input  Electronic devices are subject to (usually) rare faults  Software  Hardware  Reason: combination of strange events  A fault can cause errors  An errors can be exploited to expose secrets output error Introduction to Fault Attacks 2

  3. History  Single Event Upsets (SEU)  Random bit flips occurring in storage elements 1950s 1960s 1970s 1980s Ground nuclear testing Aerospace industry IBM research anomalies in electronic problems in space effects of alpha particles monitoring equipment electronics: soft-fails on semiconductor electronics [ZL79] Introduction to Fault Attacks 3

  4. From accidental faults to intentional faults  #1: Hacking community vs. DirecTV (late 90s)  PayTV technology, broadcast only  Smart-card based subscription model  Phone line to communicate with provider  Hacking community:  Read/write access to smart cards  Change to unlimited subscription model  Reply from DirecTV  Possibility to update cards through broadcast channel … // booting  Disable hacked cards by inf_loop: inserting an inifinite loop JMP inf_loop … // continue Introduction to Fault Attacks 4

  5. From accidental faults to intentional faults  Reply from the hacker community  Unlooper: device that was able to unlock the card clock generator Smart-card slot … // booting PC interface inf_loop: JMP inf_loop … // continue spike generator Introduction to Fault Attacks 5

  6. From accidental faults to intentional faults  #2: The Bellcore Attack [BDL97]  Target: implementations of RSA with CRT  Main operation: s = m d mod n , where d is private key  Security of RSA: intractability of factoring large integers (n = p·q)  RSA-CRT allows to speed-up computations: s p = m p dP mod p s q = m q dQ mod q s = (((s q -s p ) ·p inv ) mod q)·p + s p  Attack steps: 1. Input m, collect s 2. Input m, inject any fault on s p or s q , collect ŝ 3. Compute gcd(s- ŝ ,n) to factorize RSA modulus  Devastating effects  Today countermeasures extensively studied and deployed Introduction to Fault Attacks 6

  7. The fault attack jungle  The embedded design space PROTOCOLS CRYPTOGRAPHIC PRIMITIVES ARITHMETIC FAULT EXPLOITATION FAULT MODEL FAULT INJECTION RTL: ALU, REGs, MEM LOGIC: Gates, FFs TRANSISTORS [VKS11] Introduction to Fault Attacks 7

  8. The fault model 1. Granularity: how many bits dare affected by the fault? 1. Single bit 2. Few bits 3. Word 2. Modification (aka fault type) 1. Stuck-at, e.g. zero or one 2. Flip 3. Random 3. Control: on the fault location and on timing 1. Precise 2. Loose 3. None 4. Duration or effect of the fault 1. Transient 2. Permanent 3. Destructive Introduction to Fault Attacks 8

  9. Categories of fault injection  Non-invasive  No physical damage to device  Modify working conditions  Moderate knowledge/equipment  Semi-invasive  Chip decapsulation  Milling, etching, cleaning  Affordable equipment src: Dr. Sergei Skobogoratov src: AirClean Systems  Invasive  Establish electrical contact to chip  Modification, destruction, ...  Expensive equipment, e.g. semiconductor diagnostics src: Bridge Technology src: ZEISS Introduction to Fault Attacks 9

  10. Glitches and spikes  Most popular form of non-invasive attacks  Both precise timing control, single or multiple  Clock glitches  Temporal overclocking  Critical path violations [BGV11]  Voltage spikes  Temporal switch to higher (or lower) voltages [KQ07] [SH08] Introduction to Fault Attacks 10

  11. Glitches and spikes  Effects on program flow  Replacement of instructions (sometimes skipping)  Tampering with loops and conditional statements  Change of program counter  Effects on data flow  Computation errors  Corrupted memory pointers  No bit transitions on data bus [BGV11] Introduction to Fault Attacks 11

  12. Other Non-invasive Methods  Underpowering  Reduce supply voltage  Transient vs. Permanent  Increase propagation delay of combinational logic src:: EMSE [BGVLV12]  Temperature  Device on heating plate  Errors appear for a short window  Low-controlability  Low-frequency [HS13]  Cooling: data retention Introduction to Fault Attacks 12

  13. Optical Fault Injection  Semiconductors are inherently sensitive to light  Effect of optical pulses  Switching a transistor  The chip die needs to be exposed  Semi-invasive method  Example of fault injection setups:  Photo flash in micro-probing station  Laser beam on XY table, with microscope view and camera src: Opto [SA02] Introduction to Fault Attacks 13

  14. Optical Fault Injection  Many configurable parameters [WWM11]  Position (X,Y coordinates)  Wavelength  Spot size [CLFT14]  Energy / Peak power 250 nm 90 nm 1200 nm  Pulse vs. Continuous 9µ x 4µ 3µ x 1.5µ 20µ x 20µ 1µ 1µ 10µ  Repetition rate  ...  Search space grows exponentially !  Many fault models possible src: Dr. Sergei Skobogoratov, Semi-invasive attakcs, page 98 Introduction to Fault Attacks 14

  15. EM Fault Injection  [QS3] Injection of faults via the EM channel  Induction of Eddy current  Camera flash-gun connected to an active probe  Spark-gap transmitter  EM Pulses with micro probes  Effects:  Switching transistors  Critical path violations  (Non-) and semi- invasive approach Introduction to Fault Attacks 15

  16. Back to the PIN example  Assume the function check(…) runs in constant time MAIN FUNCTION … IF check(…) == -1 COUNTER++ ELSE COUNTER = 0 …  Attacker can target the main function with an active attack  “Skip” conditional statement  E.g. by glitches/spikes during condition check  Prevent the counter increase  E.g. by disconnecting power supply  … Introduction to Fault Attacks 16

  17. Differential Fault Analysis  Ask for a cryptographic computation twice  With any input and no fault (reference)  With the same input and fault injection  Infer information about the key from the output differential  Sometimes a single fault injection is enough!  Recall #2: Bellcore attack Introduction to Fault Attacks 17

  18. Fault analysis on block ciphers  DFA – Differential Fault Analysis [BS97]  Similar to classical differential cryptanalysis SB_9 SR_9 MC_9 beginning f f' 00 f' Round 9 2f' f' f' 3f' SB_10 ISB(x 1 +K 1 )+ISB(x 1 +F 1 +K 1 )= F1 F1 2[ISB(x 2 +K 2 )+ISB(x 2 +F 2 +K 2 )] F2 F2 ISB(x 2 +K 2 )+ISB(x 2 +F 2 +K 2 )= ISB(x 3 +K 3 )+ISB(x 3 +F 3 +K 3 ) F3 F3 ISB(x 4 +K 4 )+ISB(x 4 +F 4 +K 4 )= F4 F4 3[ISB(x 2 +K 2 )+ISB(x 2 +F 2 +K 2 )] SR_10  2/3 faulty encryptions, 4 key bytes, 2 16 complexity Introduction to Fault Attacks 18

  19. Fault analysis on block ciphers  CFA – Collision Fault Analysis [H04] plaintext ARK_0 SB_1 ciphertext f f f f 00 ... f f f f f f f f f f f f  Stuck-at fault model assumed, e.g. zero  Target operations in first round(s)  Attack steps: 1. Random plaintext, fault @SB_1: ciphertext Ĉ 2. Random plaintext, no faults: ciphertext C 3. When Ĉ == C, recover key byte: SB(P1 xor K1_11) = 0x00 Introduction to Fault Attacks 19

  20. Fault analysis on block ciphers  IFA – Ineffective Fault Analysis [BS03] [C07] plaintext ARK_0 SB_0 ciphertext 00 f f f f f f f f ... f f f f f f f f  Stuck-at fault model assumed, e.g. zero  Target operations in first round(s) 1. Random plaintext, no faults: ciphertext C 2. Same plaintext, fault @SB_1: ciphertext Ĉ 3. When Ĉ == C, recover key byte: SB(P1 xor K1_11) = 0x00  Differences with CFA:  Larger number of faults, not required to know the ciphertext ! Introduction to Fault Attacks 20

  21. Countermeasures You cannot prevent the adversary from trying to mount an attack  But you can try to make it more difficult !  Typical countermeasures against fault attacks:  Hardening hardware:  "Hide" sensitive parts of the chip:  glue logic, bus scrambling, memory encryption, ...  metal layers (passive shielding)  Add filters and/or security sensors:  power, clock  light, temperature, wire mesh (active shielding) Introduction to Fault Attacks 21

  22. Countermeasures  Hardening computations:  Information redundancy  Addition of parities, linear codes  Ring embeddings  Infective computations  Hiding countermeasures  Branchless implementations  Parallel execution or inverse execution ... but second-order fault attacks are possible Introduction to Fault Attacks 22

  23. Conclusions  Fault attacks are a very powerful tool  Specialized equipment available to wider class of adversaries  There is no 100% protection  With enough resources and time, attacks can be mounted  Arms-race attacks vs. countermeasures Introduction to Fault Attacks 23

Recommend

Statistical Ineffective Fault Attacks on Masked AES with Fault Countermeasures Christoph

Statistical Ineffective Fault Attacks on Masked AES with Fault Countermeasures Christoph

Statistical Ineffective Fault Attacks on Masked AES with Fault Countermeasures Christoph Dobraunig, Maria Eichlseder, Hannes Gross, Stefan Mangard, Florian Mendel, Robert Primas ASIACRYPT 2018 IAIK - Graz University of Technology www.tugraz.at

1.01k views • 78 slides
Fault Attacks on Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics,

Fault Attacks on Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics,

Fault Attacks on Supersingular Isogeny Cryptosystems Yan Bo Ti Department of Mathematics, University of Auckland PQCrypto 2017, 26th of June 1/15 Outline 1 Preliminaries Introduction Supersingular isogenies SSI cryptosystems 2 Fault attack

379 views • 33 slides
Fault Attacks and Countermeasures Michael Hutter Summer School on Design and Security of

Fault Attacks and Countermeasures Michael Hutter Summer School on Design and Security of

Introduction Threats Setups Attacks Countermeasures Conclusion 1 / 31 Fault Attacks and Countermeasures Michael Hutter Summer School on Design and Security of Cryptographic Algorithms and Devices for Real-World Applications Sibenik,

849 views • 31 slides
JUST ONE FAULT Persistent Fault Analysis on Block Ciphers Shivam Bhasin Temasek Labs @ NTU ASK

JUST ONE FAULT Persistent Fault Analysis on Block Ciphers Shivam Bhasin Temasek Labs @ NTU ASK

JUST ONE FAULT Persistent Fault Analysis on Block Ciphers Shivam Bhasin Temasek Labs @ NTU ASK 2018, Kolkata, India 15 Nov 2018 Table of Contents 1. Introduction to Fault Attacks 2. Persistent Fault Analysis (PFA) 3. PFA on Fault

588 views • 19 slides
Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France

Cache attacks: From side channels to fault attacks Clmentine Maurice CNRS, Rennes, France November 16, 2017 Cryptacus Workshop, Nijmegen, Netherlands the attacker only needs unprivileged execution on the victims machine

1.99k views • 164 slides
Using Modular Extension to Provably Protect Edwards Curves Against Fault Attacks Margaux

Using Modular Extension to Provably Protect Edwards Curves Against Fault Attacks Margaux

Using Modular Extension to Provably Protect Edwards Curves Against Fault Attacks Margaux Dugardin, Sylvain Guilley, Martin Moreau, Zakaria Najm, Pablo Rauzy PROOFS 2016 - Santa Barbara, CA Introduction Eve Communications Alice Bob Channel

726 views • 60 slides
Fault Attacks Made Easy: Differential Fault Analysis Automation on Assembly Code Jakub Breier,

Fault Attacks Made Easy: Differential Fault Analysis Automation on Assembly Code Jakub Breier,

Fault Attacks Made Easy: Differential Fault Analysis Automation on Assembly Code Jakub Breier, Xiaolu Hou and Yang Liu 10 September 2018 1 / 25 Table of Contents Background and Motivation 1 Overview of DATAC DFA Automation Tool for

727 views • 25 slides
Presence of Fault Attacks Robert Schilling 1,2 , Mario Werner 1 , Stefan Mangard 1 1 Graz

Presence of Fault Attacks Robert Schilling 1,2 , Mario Werner 1 , Stefan Mangard 1 1 Graz

Securing Conditional Branches in the Presence of Fault Attacks Robert Schilling 1,2 , Mario Werner 1 , Stefan Mangard 1 1 Graz University of Technology, 2 Know-Center GmbH March 22, 2018 Overview Introduction to control-flow integrity and

702 views • 33 slides
Defeating TLS client authentication using fault attacks Who are we ? R&D dept. @

Defeating TLS client authentication using fault attacks Who are we ? R&D dept. @

Defeating TLS client authentication using fault attacks Who are we ? R&D dept. @ Security Evaluation Kudelski Security Lab @ Kudelski IoT Embedded systems Hardware attacks security research Glitch / EM Reverse

889 views • 51 slides
Fault Attacks on Elliptic Curve Cryptosystems Marc Joye Thomson Security Labs

Fault Attacks on Elliptic Curve Cryptosystems Marc Joye Thomson Security Labs

Fault Attacks on Elliptic Curve Cryptosystems Marc Joye Thomson Security Labs marc.joye@thomson.net CryptoPuces 2009 Porquerolles, June 26, 2009 Outline Elliptic Curve Cryptography Inducing Faults Fault Attacks Countermeasures

363 views • 24 slides
Its Not My Fault 1915: rotor machines: (electro-)mechanical - On Fault Attacks on

Its Not My Fault 1915: rotor machines: (electro-)mechanical - On Fault Attacks on

Its Not My Fault Bart Preneel FDTC12 9 September 2011 Symmetric crypto history 101 http://www.ecrypt.eu.org pre-1915: manual encryption or simple devices Its Not My Fault 1915: rotor machines: (electro-)mechanical - On

296 views • 6 slides
New Bleichenbacher Records: Fault Attacks on qDSA Signatures CHES 2018 Akira Takahashi 1 Mehdi

New Bleichenbacher Records: Fault Attacks on qDSA Signatures CHES 2018 Akira Takahashi 1 Mehdi

New Bleichenbacher Records: Fault Attacks on qDSA Signatures CHES 2018 Akira Takahashi 1 Mehdi Tibouchi 1 , 2 Masayuki Abe 1 , 2 September 12, 2018 1 Kyoto University 2 NTT Secure Platform Laboratories 1 Outline Introduction Contribution 1.

1.89k views • 81 slides
Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova,

Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova,

Threshold Implementations (Efficient TI on AES) Begl Bilgin, Benedikt Gierlichs, Svetla Nikova, Ventzislav Nikov, and Vincent Rijmen Introduction Physical Attacks Active Passive (Fault Attacks) (Observing Attacks) Side Channel Attacks

644 views • 45 slides
Introduction to Physical Attacks Arnaud Tisserand CNRS, Lab-STICC 25th October 2018 Summary

Introduction to Physical Attacks Arnaud Tisserand CNRS, Lab-STICC 25th October 2018 Summary

Introduction to Physical Attacks Arnaud Tisserand CNRS, Lab-STICC 25th October 2018 Summary Introduction Side Channel Attacks Fault Injection Attacks Conclusion and References Arnaud Tisserand. CNRS Lab-STICC. Introduction

993 views • 56 slides
Statistical Fault Attacks Revisited Application to Authenticated Encryption C. Dobraunig, M.

Statistical Fault Attacks Revisited Application to Authenticated Encryption C. Dobraunig, M.

Statistical Fault Attacks Revisited Application to Authenticated Encryption C. Dobraunig, M. Eichlseder, T. Korak, V. Lomn e, F. Mendel ASK 2016 The research leading to these results has received funding from the European Unions Horizon

551 views • 26 slides
Practical validation of several fault attacks against the Miller algorithm Nadia El Mrabet 1 ,

Practical validation of several fault attacks against the Miller algorithm Nadia El Mrabet 1 ,

Practical validation of several fault attacks against the Miller algorithm Nadia El Mrabet 1 , Jacques Fournier 2 , Louis Goubin 3 , Ronan Lashermes 2 , 3 , Marie Paindavoine 4 , 5 . 1 - LIASD, Paris 8, France. 2 - CEA Tech, DPACA/LSAS, Gardanne,

446 views • 22 slides
EXPERIMENTAL EVALUATION OF TWO SOFTWARE COUNTERMEASURES AGAINST FAULT ATTACKS Nicolas Moro 1,3 ,

EXPERIMENTAL EVALUATION OF TWO SOFTWARE COUNTERMEASURES AGAINST FAULT ATTACKS Nicolas Moro 1,3 ,

EXPERIMENTAL EVALUATION OF TWO SOFTWARE COUNTERMEASURES AGAINST FAULT ATTACKS Nicolas Moro 1,3 , Karine Heydemann 3 , Amine Dehbaoui 2 , Bruno Robisson 1 , Emmanuelle Encrenaz 3 1 CEA Commissariat lEnergie Atomique et aux Energies

679 views • 22 slides
The Temperature Side Channel and Heating Fault Attacks Michael Hutter and J orn-Marc Schmidt

The Temperature Side Channel and Heating Fault Attacks Michael Hutter and J orn-Marc Schmidt

Introduction SCA Faults Remanence Conclusions 1 / 24 The Temperature Side Channel and Heating Fault Attacks Michael Hutter and J orn-Marc Schmidt Michael Hutter and J orn-Marc Schmidt CARDIS 2013, November 27-29, 2013 Introduction

687 views • 24 slides
Overview Introduction and basic concept ECE 753: FAULT-TOLERANT Fault model and fault

Overview Introduction and basic concept ECE 753: FAULT-TOLERANT Fault model and fault

4/1/2014 Overview Introduction and basic concept ECE 753: FAULT-TOLERANT Fault model and fault coverage COMPUTING Checkpointing and backward error recovery (rollback) Kewal K.Saluja General principles General principles

259 views • 3 slides
FAULT ATTACKS ON TWO SOFTWARE COUNTERMEASURES Nicolas Moro 1,3 , Karine Heydemann 3 , Amine

FAULT ATTACKS ON TWO SOFTWARE COUNTERMEASURES Nicolas Moro 1,3 , Karine Heydemann 3 , Amine

FAULT ATTACKS ON TWO SOFTWARE COUNTERMEASURES Nicolas Moro 1,3 , Karine Heydemann 3 , Amine Dehbaoui 2 , Bruno Robisson 1 , Emmanuelle Encrenaz 3 1 CEA Commissariat lEnergie Atomique et aux Energies Alternatives 2 ENSM.SE Ecole Nationale

456 views • 22 slides
Statistical Fault Attacks on Nonce-Based Authenticated Encryption Schemes C. Dobraunig 1 , M.

Statistical Fault Attacks on Nonce-Based Authenticated Encryption Schemes C. Dobraunig 1 , M.

Statistical Fault Attacks on Nonce-Based Authenticated Encryption Schemes C. Dobraunig 1 , M. Eichlseder 1 , T. Korak 1 , V. Lomn e 2 , F. Mendel 1 AsiaCrypt 2016 1 Graz University of Technology, Austria 2 ANSSI, Paris, France

602 views • 27 slides
SoC, why should we care about Fault Injection Attacks ? Guillaume BOUFFARD (

SoC, why should we care about Fault Injection Attacks ? Guillaume BOUFFARD (

SoC, why should we care about Fault Injection Attacks ? Guillaume BOUFFARD ( guillaume.boufgard@ssi.gouv.fr ) David EL-BAZE ( david.elbaze@ssi.gouv.fr ) with the help of Thomas TROUCHKINE Agence nationale de la scurit des systmes

525 views • 28 slides
On the Need of Randomness in Fault Attack Countermeasures Application to AES Victor LOMNE 1 ,

On the Need of Randomness in Fault Attack Countermeasures Application to AES Victor LOMNE 1 ,

Physical Attacks New Attacks on Classical Countermeasures Extended Countermeasures On the Need of Randomness in Fault Attack Countermeasures Application to AES Victor LOMNE 1 , Thomas ROCHE 1 , Adrian THILLARD 1 1 ANSSI (French Network and

358 views • 25 slides
Summary Introduction & Cryptographic Background Hardware Support for Physical Security

Summary Introduction & Cryptographic Background Hardware Support for Physical Security

Summary Introduction & Cryptographic Background Hardware Support for Physical Security Side Channel Attacks Arnaud Tisserand Fault Injection Attacks CNRS, Lab-STICC laboratory CRiSIS 2017, Dinard, France Protections Examples

266 views • 15 slides

More recommend