leakage resilient masking schemes
play

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University - PowerPoint PPT Presentation

Feb 25, 2024 •116 likes •631 views

Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1 Modern cryptography Until 1970s: Design crypto algorithm secure against one attack Find attack C Find attack B Crypto Crypto algorithm A algorithm B secure against

  1. Leakage Resilient Masking Schemes Sebastian Faust Ruhr University Bochum 1

  2. Modern cryptography Until 1970s: Design crypto algorithm secure against one attack Find attack C Find attack B Crypto Crypto … algorithm A algorithm B secure against attack B secure against attack A Cat and mouse game between designer and attacker Modern crypto: Stop cat-and-mouse game Find attack B Main tool: security proofs ¡ Secure against all attacks within a model ¡ 2

  3. Black-box Model Adversaries in Black-box Model Key Attack algorithm Crypto algorithms ¡ ¡ Provable secure in black-box model ≈ unbreakable? 3 3

  4. oken No! C o! Crypto rypto im imple plementa ntations tions g get br t brok Smart Cards broken by side-channel attacks Much more efficient than traditional attacks on the algorithm Adversaries in Black-box Model Key Attack algorithm Crypto Crypto algorithms implementation May reveal secret key k Side-channel attacks Power analysis exploits leakage Weaknesses outside of Black-box Model 4 4

  5. The Problem Cat and mouse game at implementation level Find weakness Find weakness Crypto Crypto … implementation A implementation B Goal of leakage resilient crypto Extend the Black-box model Design algorithms with better security at implementation-level 5

  6. Rest of this talk: Example for using proofs to design better countermeasures 6

  7. Masking countermeasure 7

  8. Masking countermeasure Masking 8

  9. Important countermeasure Masking : ¡Protect ¡all ¡intermediate ¡values ¡of ¡computa4on ¡ with ¡randomized ¡encoding ¡ Enc ¡ Protected Crypto algorithm ¡ algorithms Computes ¡algorithm ¡ Descrip4on ¡as, ¡ ¡ Harder ¡to ¡exploit ¡leakage ¡ on ¡ encoded ¡values ¡ e.g., ¡circuit ¡ from ¡protected ¡algorithm ¡ Circuit ¡compiler ¡(think ¡of ¡it ¡as ¡ fabrica4on ¡of ¡the ¡chip) ¡ Two ¡ingredients ¡of ¡a ¡masking ¡scheme ¡ Robust ¡encoding ¡func4on ¡ K ¡ Enc(K) ¡ Leaks ¡less ¡about ¡ K ¡ 9

  10. Important countermeasure Masking : ¡Protect ¡all ¡intermediate ¡values ¡of ¡computa4on ¡ with ¡randomized ¡encoding ¡ Enc ¡ Protected Crypto algorithm ¡ algorithms Computes ¡algorithm ¡ Descrip4on ¡as, ¡ ¡ Harder ¡to ¡exploit ¡leakage ¡ on ¡ encoded ¡values ¡ e.g., ¡circuit ¡ from ¡protected ¡algorithm ¡ Two ¡ingredients ¡of ¡a ¡masking ¡scheme ¡ Robust ¡encoding ¡func4on ¡ Opera4ons ¡compu4ng ¡with ¡encoded ¡values ¡ Enc(X) ¡ Compute ¡on ¡encoded ¡values ¡ Enc(X*Y) ¡ Enc(Y) ¡ 10

  11. Masking countermeasure Security definition 11

  12. What does security mean? Adversary learns no more than by black-box access In other words: leakage is „useless“ to the adversary Ideal: Real: Crypto Protected What function can the algorithms algorithm leakage f be? Repeat many X, X Y Y, f(state) times f output indis4nguishable ¡ output Continuous leakage: many observations are possible What does it mean? For unbounded adversary: MI(Key ; f(.), ... f(.)) < negl Even more: It is as secure as in the black-box world! 12

  13. Masking countermeasure Common: Bounded leakage models 13

  14. n-Probing adversary [ISW03]* Adversary gets t intermediate values of computation è L = { values on t adversarial chosen wires } ● ¡ + ¡ C ¡ ● ¡ M t -probing attack formalization of t -variate attacks … Learns nothing if t < n Basic ingredient: Boolean masking Encode K ¡ K ¡:= ¡(K 1 …K n ) ¡s.t. ¡K=K 1 +...+ ¡K n ¡ Drawback: leakage oblivious of many wires! 14 *Ishai, Sahai, Wagner (CRYPTO-03)

  15. Bounded independent leakages [DF12]* Circuit ¡C’ ¡ input ¡ output ¡ L ¡ R ¡ T g(R,T) f(L,T) Processors can communicate with each other – Think of it as a 2-party protocol! Bounded leakage function: Assumption: Processors leak independently! t bits - Arbitrary efficient functions m bits f è Everything that is touched on a processor leaks! - Ony restriction: input shrinking, i.e., t < m Realistic? Includes many functions, e.g. weighted sums Additive masking? Insecure: learn parities of L & R 15 *Dziembowski-F(TCC-12) inspired from Dziembowski-Pietrzak (FOCS-08) for stream ciphers

  16. Inner Product Masking Sample L,R uniformly in {0,1} n s.t. S= <L,R> = Σ L i *R i and store parts separately on two processors n ¡ n ¡ g(R) ¡ ? L ¡ R ¡ f(L) ¡ Thm [DDV10]* : if leakage is bounded in total to t bits then adversary learns nothing about S L ¡ High min-entropy and ̴ ¡ uniform ¡ Extract ¡ independent sources R ¡ 16 *Davi-Dziembowski-Venturi (SCN-12)

  17. We know how to encode! Next: How to compute! 17

  18. High level idea of compiler output ¡ output ¡ Dec ¡ D ¡ and ¡ and ¡ Crypto Protected neg ¡ algorithms algorithm C ¡s.t. ¡Dec(C)=a ∧ s ¡ neg ¡ C ¡s.t.Dec(C)=s ∧ s’ ¡ and ¡ and ¡ and ¡ and ¡ s’ ¡ s ¡ a ¡ S’ ¡ S ¡ A ¡ Enc ¡ 1. Memory: a ¡ Encoded with coding scheme, A bit s i.e., S = (S 1 … S n ) such that s = Dec(S 1 , … ,S n ) 18

  19. High level idea of compiler output ¡ output ¡ Dec ¡ K’ D ¡ and ¡ K C’ C and ¡ neg ¡ C ¡s.t. ¡Dec(C)=a ∧ s ¡ neg ¡ C ¡s.t.Dec(C)=s ∧ s’ ¡ and ¡ and ¡ and ¡ and ¡ s’ ¡ s ¡ a ¡ S’ ¡ S ¡ A ¡ Enc ¡ 2. Wires: a ¡ Wire bundle carrying encoding Each wire C such that w = Dec(C) w = a ∧ ! !b Main challenge: computing on encoded inputs! 19

  20. High level idea of compiler output ¡ output ¡ Dec ¡ D ¡ and ¡ and ¡ neg ¡ C ¡s.t. ¡Dec(C)=a ∧ s ¡ neg ¡ C ¡s.t.Dec(C)=s ∧ s’ ¡ and ¡ and ¡ and ¡ * and ¡ s’ ¡ s ¡ a ¡ S’ ¡ S ¡ A ¡ Enc ¡ a ¡ Gadgets built from standard 3. Gates: gates operating on encodings Main challenge: algorithm to securely compute AND! 20

  21. Compiler results Theorem [ISW03]: A compiler that makes any C resilient to adversary that probes up to t < n wires in C’ Protected Algorithm C algorithm C’ Blow-up in size: O(n 2 ) Leakage bounded per observation: t ¡< ¡n ¡wires ¡ for each AND gate in C 21

  22. Compiler results Theorem [ISW03]: A compiler that makes any C resilient to adversary that probes up to t < n wires in C’ Theorem [DF12]: A compiler that makes any C resilient to adversary that learns bounded independent leakage from C’ Protected Algorithm C algorithm C’ Blow-up in size: O(n 2 ) Leakage bounded per exec.: for each AND gate in C t ¡bits ¡from ¡each ¡processor ¡ Boolean vs. IP masking in practice? 22

  23. Masking countermeasure Implementations? 23

  24. Boolean vs. IP? (BFGV12, BFG15)* Black ¡curve: ¡Boolean ¡masking ¡ with ¡2 ¡random ¡shares ¡in ¡GF(2 8 ) ¡ Analyzed for small security parameter n – Red ¡curve: ¡IP ¡masking ¡with ¡2 ¡ Security outperforms Boolean masking random ¡shares ¡in ¡GF(2 8 ) ¡ Mutual information between HW leakage and secret x Weaker dependency between leakage & secret for IP masking Main reason: Higher algebraic complexity Performance: Full AES implementation for n=2 • IP masking: 300k clock cycles • Boolean masking: 100k clock cycles 24 *Balasch-F-Gierlichs-Verbauwhede (ASIACRYPT-12), Balasch-F-Gierlichs (EUROCRYPT-15)

  25. Masking countermeasure Noisy leakages 25

  26. Bounded leakage? Beautiful theory! Q: Does it match practice? Models do not match with my engineering experience Leakages are not quantitatively bounded Physical leakages are inherently noisy Difficulty in many attacks: how to eliminate the noise? 26

  27. Noisy leakages [CJRR99] No quantitative bound on leakage, but leakage is noisy b 1 ¡ b 2 ¡ For bit b: Leakage is b i + Gaussian noise Enc(b) … ¡ ... ... ¡ b n ¡ Chari et al. only consider security of a single masked bit p-noisy functions N(.): More general noise distribution [PR13] uniform 1. b ç {0,1} 2. N(X b ) X 0 , X 1 N(X 0 ), X 0 , X 1 N(X 1 ), X 0 , X 1 ≈ N is p -noisy if statistical distance < p 27 *Chari-Jutla-Rao-Rohatgi (CRYPTO-99), Prouff-Rivain (EUROCRYPT-13)

  28. Some examples ( F = GF(2) ) Pr[Noise(x)=y] Noise(0) Noise(1) Noise(x)=y No noise p ≈ 1 : very informative leakage è Adv. learns Noise(x) : full knowledge about x Pr[Noise(1)=y] Pr[Noise(0)=y] y y High noise p = 0 : non-informative leakage è Adv. learns Noise(x) : no knowledge about x 28

  29. Some examples ( F = GF(2) ) Interesting case: „some noise“ Pr[Noise(x)=y] Noise(x)=y Some noise p < 1 : information depends on p è Adv. learns Noise(x) : some knowledge about x Can we construct compilers for noisy leakages? (for interesting values of p ) 29

  30. Compilers for noisy leakage Protected Algorithm C algorithm C’ Compiler of ISW03 Adversary obtains p -noisy version of each wire: N(w i ) (for non-trivial p ) No quantitative bound on amount of leakage Two proof techniques: 1. Direct proof [PR13] : very technical proof, only random message security 2. Leakage reductions [DDF14, DFS15]* : simpler proofs, full simulation-based security 30 *Duc-Dziembowski-F (EUROCRYPT-14), Dziembowski-F-Skorski (EUROCRYPT-15)

Recommend

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan)

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan)

Masking schemes: evaluation Oscar Reparaz COSIC/KU Leuven PROOFS Taipei (Taiwan) 2017-09-29 1 quick intro to masking masking = countermeasure against DPA idea: secret sharing b = b 1 + b 2 individual shares tell you nothing

752 views • 45 slides
Leakage Stefan Dziembowski Tomasz Kazana Daniel Wichs Main contribution We propose a secure

Leakage Stefan Dziembowski Tomasz Kazana Daniel Wichs Main contribution We propose a secure

Key-Evolution Schemes Resilient to Space Bounded Leakage Stefan Dziembowski Tomasz Kazana Daniel Wichs Main contribution We propose a secure scheme for deterministic key-evolution Properties: leakage-resilient in the random oracle

668 views • 27 slides
Public-Key Cryptosystems Resilient to Key Leakage Moni Naor Gil Segev Weizmann Institute of

Public-Key Cryptosystems Resilient to Key Leakage Moni Naor Gil Segev Weizmann Institute of

Public-Key Cryptosystems Resilient to Key Leakage Moni Naor Gil Segev Weizmann Institute of Science Israel Foundations of Cryptography Rigorous analysis of the security of cryptographic schemes Adversarial model Notion of security

428 views • 20 slides
Leakage-Resilient Zero Knowledge Sanjam Garg Abhishek Jain Amit Sahai Leakage-Resilient

Leakage-Resilient Zero Knowledge Sanjam Garg Abhishek Jain Amit Sahai Leakage-Resilient

Leakage-Resilient Zero Knowledge Sanjam Garg Abhishek Jain Amit Sahai Leakage-Resilient Cryptography Traditional Cryptography: adv has only black-box access to a cryptosystem I O LR-Cryptography: open the black-box more

279 views • 25 slides
and the Bounded Moment Leakage Model G. Barthe, F. Dupressoir, S. Faust, B. Grgoire, F.-X.

and the Bounded Moment Leakage Model G. Barthe, F. Dupressoir, S. Faust, B. Grgoire, F.-X.

Parallel Implementations of Masking Schemes and the Bounded Moment Leakage Model G. Barthe, F. Dupressoir, S. Faust, B. Grgoire, F.-X. Standaert , P.-Y. Strub IMDEA (Spain), Univ. Surrey (UK), Univ. Bochum (Germany), INRIA Sophia- Antipolis

685 views • 65 slides
LEAKAGE - RESILIENT PUBLIC - KEY ENCRYPTION FROM OBFUSCATION Dana Dachman-Soled, S. Dov

LEAKAGE - RESILIENT PUBLIC - KEY ENCRYPTION FROM OBFUSCATION Dana Dachman-Soled, S. Dov

LEAKAGE - RESILIENT PUBLIC - KEY ENCRYPTION FROM OBFUSCATION Dana Dachman-Soled, S. Dov Gordon, Feng-Hao Lui, Adam, ONeill, and Hong-Sheng Zhou O UTLINE OF T ALK Leakage Models for PKE Bounded, Continual, and Continual w/ Leakage on

1.05k views • 102 slides
On the Local Leakage Resilience of Linear Secret Sharing Schemes Linear Secret Sharing Schemes

On the Local Leakage Resilience of Linear Secret Sharing Schemes Linear Secret Sharing Schemes

On the Local Leakage Resilience of Linear Secret Sharing Schemes Linear Secret Sharing Schemes Akshay Degwekar (MIT) Joint with Fabrice Benhamouda (IBM Research), Yuval Ishai (Technion) and Tal Rabin (IBM Research) Leakage attacks can be

547 views • 30 slides
Implementing Practical leakage-resilient symmetric cryptography Daniel J. Bernstein

Implementing Practical leakage-resilient symmetric cryptography Daniel J. Bernstein

Implementing Practical leakage-resilient symmetric cryptography Daniel J. Bernstein University of Illinois at Chicago, Technische Universiteit Eindhoven CHES 2012 paper Practical leakage-resilient symmetric cryptography (Faust,

669 views • 30 slides
Leakage-Resilient Public-Key Cryptography in the Bounded-Retrieval Model Jol Alwen, Yevgeniy

Leakage-Resilient Public-Key Cryptography in the Bounded-Retrieval Model Jol Alwen, Yevgeniy

Leakage-Resilient Public-Key Cryptography in the Bounded-Retrieval Model Jol Alwen, Yevgeniy Dodis, Daniel Wichs New York University Speaker: Daniel Wichs CRYPTO 09 Goal of Leakage-Resilient Crypto Model of Leakage Resilience

303 views • 29 slides
Higher-Order Masking Schemes for S-boxes Matthieu Rivain Joint work with C. Carlet, L. Goubin,

Higher-Order Masking Schemes for S-boxes Matthieu Rivain Joint work with C. Carlet, L. Goubin,

Higher-Order Masking Schemes for S-boxes Matthieu Rivain Joint work with C. Carlet, L. Goubin, E. Prouff and M. Quisquater FSE 2012 Washington DC, 21st March 2012 Higher-Order Masking Schemes for S-boxes Outline 1 Introduction 2

1.33k views • 98 slides
LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile

LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile

LR 2 : LR : Le Leakage-Re Resilient La Layout t Ra Randomization fo for Mo Mobile Devices Kjell Braden , Stephen Crane, Lucas Davi , Michael Franz , Per Larsen , Christopher Liebchen , Ahmad- Reza Sadeghi

578 views • 38 slides
Encrypted Search: Leakage Attacks Seny Kamara How do we Deal with Leakage? Our definitions

Encrypted Search: Leakage Attacks Seny Kamara How do we Deal with Leakage? Our definitions

SAC Summer School 2019 Encrypted Search: Leakage Attacks Seny Kamara How do we Deal with Leakage? Our definitions allow us to prove that our schemes achieve a certain leakage profile but doesnt tell us if a leakage profile is

477 views • 22 slides
Side Channel Cryptanalysis of a Higher Order Schemes Generic Masking Scheme Scheme Improved

Side Channel Cryptanalysis of a Higher Order Schemes Generic Masking Scheme Scheme Improved

8 + Introduction Higher Order Masking Side Channel Cryptanalysis of a Higher Order Schemes Generic Masking Scheme Scheme Improved Scheme Experimental Results J.-S. Coron 1 E. Prouff 2 M. Rivain 1 , 2 Conclusion 1 University of

555 views • 43 slides
Static Power SCA of Sub-100 nm CMOS ASICs and the Insecurity of Masking Schemes in Low-Noise

Static Power SCA of Sub-100 nm CMOS ASICs and the Insecurity of Masking Schemes in Low-Noise

RUHR-UNIVERSITT BOCHUM Static Power SCA of Sub-100 nm CMOS ASICs and the Insecurity of Masking Schemes in Low-Noise Environments Thorben Moos Ruhr University Bochum, Horst Grtz Institute for IT Security, Germany August 28th, 2019 Section 1

735 views • 56 slides
Implementation and Evaluation of a Leakage-Resilient ElGamal KEM David Galindo 1 , 2 , Johann

Implementation and Evaluation of a Leakage-Resilient ElGamal KEM David Galindo 1 , 2 , Johann

Implementation and Evaluation of a Leakage-Resilient ElGamal KEM David Galindo 1 , 2 , Johann Groschdl 3 , Zhe Liu 3 , Praveen K. Vadnala 3 , Srinivas Vivek 3 1 CNRS/Loria, France 2 SCYTL Secure Electronic Voting, Spain 3 University of

712 views • 33 slides
Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec.

Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec.

Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec. 5th 2018 1 / 51 Yu Chen 1 Yuyu Wang 2 Hong-Sheng Zhou 3 1 SKLOIS-IIE-CAS, UCAS 2 Tokyo Institute of Technology, IOHK, AIST 3 Virginia Commonwealth

1.2k views • 104 slides
Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec.

Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec.

Leakage-Resilient Cryptography from Puncturable Primitives and Obfuscation ASIACRYPT 2018 Dec. 5th 2018 1 / 55 Yu Chen 1 Yuyu Wang 2 Hong-Sheng Zhou 3 1 SKLOIS-IIE-CAS, UCAS 2 Tokyo Institute of Technology, IOHK, AIST 3 Virginia Commonwealth

1.29k views • 116 slides
Image Masking Schemes for Local Manifold Learning Methods Marco F. Duarte Joint work with

Image Masking Schemes for Local Manifold Learning Methods Marco F. Duarte Joint work with

Image Masking Schemes for Local Manifold Learning Methods Marco F. Duarte Joint work with Hamid Dadkhahi IEEE ICASSP - April 23 2015 Manifold Learning Given training points in , learn the mapping to the underlying K -dimensional

404 views • 22 slides
Leakage-Resilient Cryptography with Key Derived from Sensitive Data Konrad Durnoga, Stefan

Leakage-Resilient Cryptography with Key Derived from Sensitive Data Konrad Durnoga, Stefan

Leakage-Resilient Cryptography with Key Derived from Sensitive Data Konrad Durnoga, Stefan Dziembowski, Tomasz Kazana, Micha Zaj c , Maciej Zdanowicz Estonian Computer Science Theory Days Jekla 2-4.10.2015 Computers can be

542 views • 32 slides
Towards Fresh Re-Keying with Leakage-Resilient PRFs: Cipher Design Principles and Analysis d 1 ,

Towards Fresh Re-Keying with Leakage-Resilient PRFs: Cipher Design Principles and Analysis d 1 ,

Towards Fresh Re-Keying with Leakage-Resilient PRFs: Cipher Design Principles and Analysis d 1 , F. De Santis 2 , 3 , J. Heyszl 4 , S. Mangard 3 , S. Bela M. Medwed 5 , J.-M. Schmidt 6 , F.-X. Standaert 7 , S. Tillich 8 1 Ecole Normale Sup

754 views • 29 slides
Regular Lossy Functions and Applications in Leakage-Resilient Cryptography CT-RSA 2018 April

Regular Lossy Functions and Applications in Leakage-Resilient Cryptography CT-RSA 2018 April

Regular Lossy Functions and Applications in Leakage-Resilient Cryptography CT-RSA 2018 April 20th, 2018 1 / 41 Yu Chen 1 Baodong Qin 2 Haiyang Xue 1 1 SKLOIS, IIE, Chinese Academy of Sciences 2 Xian University of Posts and Telecommunication

1.92k views • 115 slides
Side-Channel Plaintext-Recovery Attacks on Leakage-Resilient Encryption Thomas Unterluggauer,

Side-Channel Plaintext-Recovery Attacks on Leakage-Resilient Encryption Thomas Unterluggauer,

Side-Channel Plaintext-Recovery Attacks on Leakage-Resilient Encryption Thomas Unterluggauer, Mario Werner, and Stefan Mangard, IAIK, Graz University of Technology 30. March 2017 Content Differential power analysis for key recovery Re-keying

284 views • 24 slides
Leakage-Resilient (Symmetric) Cryptography Franois-Xavier Standaert UCL Crypto Group, Belgium

Leakage-Resilient (Symmetric) Cryptography Franois-Xavier Standaert UCL Crypto Group, Belgium

Leakage-Resilient (Symmetric) Cryptography Franois-Xavier Standaert UCL Crypto Group, Belgium Summer school on real-world crypto, 2016 Outline Starting point (link with previous lecture) Seed results (TCC 2004, FOCS 2008)

1.14k views • 111 slides
Leakage-Resilient Chosen-Ciphertext Secure Public-Key Encryption from Hash Proof System and

Leakage-Resilient Chosen-Ciphertext Secure Public-Key Encryption from Hash Proof System and

Leakage-Resilient Chosen-Ciphertext Secure Public-Key Encryption from Hash Proof System and One-Time Lossy Filter Baodong Qin and Shengli Liu Shanghai Jiao Tong University ASIACRYPT 2013 Dec 5, Bangalore, India B. Qin and S. Liu LR-CCA Secure

580 views • 47 slides

More recommend