provably secure compilation of side channel
play

Provably secure compilation of side-channel countermeasures: the - PowerPoint PPT Presentation

Nov 25, 2023 •238 likes •501 views

Provably secure compilation of side-channel countermeasures: the case of cryptographic constant-time Gilles Barthe Benjamin Grgoire Vincent Laporte CSF18, 2018-07-12 Vincent Laporte et alii Provably secure compilation of

  1. Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Gilles Barthe Benjamin Grégoire Vincent Laporte CSF’18, 2018-07-12 Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 0 / 16

  2. Side channels Running a program of physical devices leak information through side channels. Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 1 / 16 ▶ Light ▶ Heat ▶ Memory cache ▶ Sound ▶ Branch predictor ▶ Power ▶ … ▶ Time ▶ …

  3. Constant-time programming Sofuware-based countermeasure against timing atuacks and cache atuacks. Guideline: control-fmow and memory accesses should not depend on sensitive data. Rationale: crypto implementations without this property are vulnerable. Caveat: wide range of atuacker models. Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 2 / 16

  4. Secure compilation Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 3 / 16 ▶ Can we reason about “constant-time” at the source level? ▶ Do compilers preserve “constant-time”-ness?

  5. Counter-example Α: emulation of conditional-move return x; 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii } } } else { Before return y; if (b) { int cmove(int x, int y, bool b) { Afuer } return x + (y − x) * b; int cmove(int x, int y, bool b) { 4 / 16

  6. Counter-example Α: emulation of conditional-move return x; 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii } } } else { Before return y; if (b) { int cmove(int x, int y, bool b) { Afuer } return x + (y − x) * b; int cmove(int x, int y, bool b) { 4 / 16

  7. Counter-example Β: double-word multiplication if (a | c) { 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii } } return Low(x) * Low(y); } else { /* … */ long c = High(y); Before long a = High(x); long long llmul(long long x, long long y) { Afuer 𝑧 = 𝑑𝑒 = 𝑑𝑂 + 𝑒 } return x * y; long long llmul(long long x, long long y) { 5 / 16 𝑦𝑧 = (𝑏𝑒 + 𝑑𝑐)𝑂 + 𝑐𝑒 ( mod 𝑂 2 ) 𝑦 = 𝑏𝑐 = 𝑏𝑂 + 𝑐

  8. Counter-example Β: double-word multiplication if (a | c) { 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii } } return Low(x) * Low(y); } else { /* … */ long c = High(y); Before long a = High(x); long long llmul(long long x, long long y) { Afuer 𝑧 = 𝑑𝑒 = 𝑑𝑂 + 𝑒 } return x * y; long long llmul(long long x, long long y) { 5 / 16 𝑦𝑧 = (𝑏𝑒 + 𝑑𝑐)𝑂 + 𝑐𝑒 ( mod 𝑂 2 ) 𝑦 = 𝑏𝑐 = 𝑏𝑂 + 𝑐

  9. Counter-example Γ: tabulation Before char rot13(char x) { return 'a' + ((x - 'a' + 13) % 26); } Afuer char rot13(char x) { static char table[26] = ”nopqrstuvwxyzabcdefghijklm”; return table[x - 'a']; } Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 6 / 16

  10. Counter-example Γ: tabulation Before char rot13(char x) { return 'a' + ((x - 'a' + 13) % 26); } Afuer char rot13(char x) { static char table[26] = ”nopqrstuvwxyzabcdefghijklm”; return table[x - 'a']; } Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 6 / 16

  11. Counter-example Δ: speculative load introduction Before if (false) { let x = *ptr; … x … } Afuer let x = *ptr; if (false) { … x … } Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 7 / 16

  12. Counter-example Δ: speculative load introduction Before if (false) { let x = *ptr; … x … } Afuer let x = *ptr; if (false) { … x … } Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 7 / 16

  13. Good news… Some compilers do preserve “constant-time”-ness. 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii 8 / 16 Let’s prove it (very formally)! Case studies: ▶ Constant folding ▶ Constant propagation ▶ Variable spilling ▶ Expression fmatuening ▶ Loop peeling ▶ Pull common instructions out of branches ▶ Swap independent instructions ▶ Linearization

  14. 𝜒(𝑗, 𝑗 ′ ) ⟹ ℓ 0 ⋅ ℓ 1 ⋅ ℓ 2 = ℓ ′ 0 ⋅ ℓ ′ 1 ⋅ ℓ ′ A non-interference property Defjnition (Constant-time) For every two execution prefjxes the leakages agree whenever the inputs agree: 2 Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 9 / 16 ℓ Decorate the small-step relation with a leakage : a b

  15. A non-interference property the leakages agree whenever the inputs agree: 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii 2 9 / 16 For every two execution prefjxes Defjnition (Constant-time) ℓ Decorate the small-step relation with a leakage : a b ℓ 0 ℓ 1 ℓ 2 s 0 s 1 s 2 i . . . ℓ ′ ℓ ′ ℓ ′ 0 1 2 s ′ s ′ s ′ i ′ . . . 0 1 2 𝜒(𝑗, 𝑗 ′ ) ⟹ ℓ 0 ⋅ ℓ 1 ⋅ ℓ 2 = ℓ ′ 0 ⋅ ℓ ′ 1 ⋅ ℓ ′

  16. Leakage? Any combination of: Vincent Laporte et alii Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” CSF’18 2018-07-12 10 / 16 ▶ tick per step ▶ branching conditions ▶ dereferenced addresses ▶ arguments of arithmetic operators (division, shifu, etc.) ▶ content of freed memory ▶ …

  17. Compiler correctness & simulation diagrams Given a relation ≈ between source and target execution states, 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii (moreover, the ≈ relation is a relational invariant of any two related executions). then the compiler is correct 11 / 16 if related fjnal states yield the same result If the following diagram holds if initial states (for the same input values) are in relation a b ≈ ≈ α β

  18. Lockstep 2-simulation Use relations ≡ between states to link the two executions. 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii 12 / 16 and prove that target leakages are equal: ▶ Each target step is related by the simulation proof to a source step. ▶ Use this relation to justify that the target leakage is benign. ▶ Take two instances of the simulation diagram with equal source leakage; t a ′ b ′ t a b ≈ ≈ ≈ τ ≈ β ′ α ′ τ α β

  19. Lockstep 2-simulation Use relations ≡ between states to link the two executions. 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii 12 / 16 and prove that target leakages are equal: ▶ Each target step is related by the simulation proof to a source step. ▶ Use this relation to justify that the target leakage is benign. ▶ Take two instances of the simulation diagram with equal source leakage; t a ′ b ′ t a b ≈ ≈ ≈ τ ≈ β ′ α ′ τ α β

  20. ▶ Issue : how to (universally) quantify over instances of this diagram? ▶ Complying with hypotheses and conclusions is not enough ▶ Explicitly state the number of target steps: use a function “ 𝑜 = num-steps (𝑏, 𝛽) ” 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii and prove the simulation diagram for this number of steps Many-steps simulation 13 / 16 ▶ Some compilation passes require a more general simulation diagram a b ≈ ≈ + α β

  21. ▶ Explicitly state the number of target steps: use a function “ 𝑜 = num-steps (𝑏, 𝛽) ” Many-steps simulation 2018-07-12 CSF’18 Provably secure compilation of side-channel countermeasures: the case of cryptographic “constant-time” Vincent Laporte et alii and prove the simulation diagram for this number of steps 13 / 16 ▶ Some compilation passes require a more general simulation diagram a a b b ≈ ≈ ≈ ≈ ≈ + + + α β α β β ′ ▶ Issue : how to (universally) quantify over instances of this diagram? ▶ Complying with hypotheses and conclusions is not enough

Recommend

Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu

Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu

8 + Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis Matthieu Rivain 1 , 2 , Emmanuelle Dottax 1 & Emmanuel Prouff 1 Oberthur Card Systems University of Luxembourg February 11, 2008 M. Rivain, E.

812 views • 64 slides
Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark

Computational Complexity Provably-secure constructions Problems with provably-secure constructions Attempts at practical constructions Provably secure hash functions - do we care? Krystian Matusiewicz Technical University of Denmark Quo Vadis

874 views • 20 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 21

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer ESC 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

476 views • 33 slides
Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . . . 1 / 18

I SAP Towards Side-channel Secure AE Christoph Dobraunig, Maria Eichlseder, Stefan Mangard, Florian Mendel, Thomas Unterluggauer FSE 2017 www.iaik.tugraz.at Introduction Problem: side-channel attacks Countermeasures: hiding, masking, TI . .

635 views • 30 slides
Understanding the Reasons for the Side-Channel Leakage is Indispensable for Secure Design Werner

Understanding the Reasons for the Side-Channel Leakage is Indispensable for Secure Design Werner

Understanding the Reasons for the Side-Channel Leakage is Indispensable for Secure Design Werner Schindler Federal Office for Information Security (BSI), Bonn, Germany Leuven, September 13, 2012 Outline Introduction and motivation

799 views • 60 slides
Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks

Elliptic Curves Side-Channel Countermeasures Conclusion Elliptic Curve Cryptography on Embedded Devices Scalar Multiplication and Side-Channel Attacks Vincent Verneuil 1 , 2 1 Inside Secure 2 Institut de Math ematiques de Bordeaux S

2.22k views • 188 slides
Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J.

Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J.

Introduction Contributions Conclusion Towards a Provably Secure DoS-Resilient Key Exchange Protocol with PFS 1 L. Kuppusamy * J. Rangasamy * D. Stebila * C. Boyd * J.M. Gonzlez Nieto * * Information Security Institute Queensland

943 views • 22 slides
Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures

Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures

Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures Dahmun Goudarzi, Matthieu Rivain, Srinivas Vivek, and Damien Vergnaud Background 2 Secure Software S-box Implementations Higher-Order

636 views • 25 slides
+ Side Channel and Covert Channel A1acks on Microkernel

+ Side Channel and Covert Channel A1acks on Microkernel

+ Side Channel and Covert Channel A1acks on Microkernel Architectures WAMOS 2015 Advanced Opera3ng Systems Hochschule RheinMain Alexander Baumgrtner and

539 views • 25 slides
Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its

Provably Secure Execution Platforms - Lecture Four: A Simple Separation Kernel and Its Verification Mads Dam KTH Royal Institute of Technology BISS spring school, Bertinoro 2018 The Goal Hypervisor Context switch: Fixed round-robin

1.16k views • 67 slides
Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts

Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts

Provably Secure Higher-Order Masking of AES Matthieu Rivain Emmanuel Prouff CryptoExperts Oberthur CHES 2010, Santa Barbara, Aug. 20 th CHES 2010 Provably Secure Higher-Order Masking of AES Outline 1 Introduction Higher-Order

1.1k views • 77 slides
Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute

Provably Secure Execution Platforms - Lecture One: Introduction Mads Dam KTH Royal Institute of Technology Thanks to Roberto Guanciale, Musard Balliu, Christoph Baumann, Hamed Nemati, Oliver Schwarz, Victor Do, Christian Gehrmann, Jonas

1.41k views • 114 slides
Threshold Implementations Svetla Nikova Threshold Implementations A provably secure

Threshold Implementations Svetla Nikova Threshold Implementations A provably secure

Threshold Implementations Svetla Nikova Threshold Implementations A provably secure countermeasure Against (first) order power analysis based on multi party computation and secret sharing 2 Outline Threshold Implementations

990 views • 58 slides
Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G.

Provably Secure Key Assignment Schemes from Factoring Eduarda S. V. Freire and Kenneth G. Paterson Information Security Group Royal Holloway, University of London Outline of the Talk Hierarchical Key Assignment Schemes Definition of

802 views • 48 slides
FIDES: Lightweight Authentication Cipher with Side-Channel Resistance for Constrained Hardware

FIDES: Lightweight Authentication Cipher with Side-Channel Resistance for Constrained Hardware

FIDES: Lightweight Authentication Cipher with Side-Channel Resistance for Constrained Hardware Begl Bilgin, Andrey Bogdanov, Miroslav Kne evi , Florian Mendel, and Qingju Wang 1 DIAC 2013, Chicago Side Channel Resistance 2 Side

1.29k views • 76 slides
ObliviAd : Provably Secure and Practical Online Behavioral Advertising [IEEE S&P 12]

ObliviAd : Provably Secure and Practical Online Behavioral Advertising [IEEE S&P 12]

ObliviAd : Provably Secure and Practical Online Behavioral Advertising [IEEE S&P 12] Michael Backes 1 , 2 Aniket Kate 1 Matteo Maffei 2 Kim Pecina 2 1 MPI-SWS, Germany 2 Saarland University, Germany Tracking in the Advertising World Today

744 views • 35 slides
Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur

PETS 2017 The 17th Privacy Enhancing T echnologies Symposium July 1821, 2017 Minneapolis, MN, USA Provably Secure Anonymous-yet-Accountable Crowdsensing with Scalable Sublinear Revocatjon Sazzadur Rahaman 1 , Long Cheng 1 , Danfeng (Daphne)

650 views • 18 slides
Channel Attacks on the AES Key Schedule Franois DASSANCE Inside Secure Alexandre VENELLI

Channel Attacks on the AES Key Schedule Franois DASSANCE Inside Secure Alexandre VENELLI

Combined Fault and Side- Channel Attacks on the AES Key Schedule Franois DASSANCE Inside Secure Alexandre VENELLI Inside Secure FDTC 2012 09/09/2012 Outline 1. Combined attack 2. Related work on combined attacks Asymmetric

496 views • 28 slides
Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop

Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop

Provably Secure Machine Learning Jacob Steinhardt ARO Adversarial Machine Learning Workshop September 14, 2017 Why Prove Things? Attackers often have more motivation/resources than defenders Heuristic defenses: arms race between attack and

738 views • 52 slides
HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume

HOST Differential Power Attacks ECE 525 Side-Channel Attacks Cryptographic algorithms assume that secret keys are utilized by implementations of the algorithm in a secure fashion, with access only allowed through the I/Os Unfortunately,

363 views • 12 slides
PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan,

PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan,

PHYSICAL FUNCTIONS : THE COMMON FACTOR OF SIDE-CHANNEL AND FAULT ATTACKS ? Proofs 2014, Busan, Korea Bruno Robisson, Hlne Le Bouder Secure Architecture and Systems Laboratory Joint team between CEA and Ecole des Mines de Saint-Etienne

883 views • 28 slides
Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine

Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine

Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking Blandine Debraize Leuven, September 10th, 2012 I NTRODUCTION 1 K NOWN TABLE - BASED METHODS 2 C ORON -T CHULKINE METHOD N EISSE -P ULKUS METHOD 3 C

413 views • 28 slides
Over the Edge: Silently Owning Windows 10's Secure Browser Erik Bosman , Kaveh Razavi, Herbert

Over the Edge: Silently Owning Windows 10's Secure Browser Erik Bosman , Kaveh Razavi, Herbert

Over the Edge: Silently Owning Windows 10's Secure Browser Erik Bosman , Kaveh Razavi, Herbert Bos and Cristiano Giu ff rida This presentation: Deduplication (software side-channel) 1 This presentation: Deduplication (software side-channel)

1.87k views • 129 slides
Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint

Obtaining Provably Secure Services from Formally Verified Remote Attestation Gene Tsudik 1 Joint work with: Ivan De Oliveira Nunes 1 , Karim Eldefrawy 2 , Norrathep Rattanavipanon 1 University of California Irvine 1 , SRI International 2 1 In

847 views • 48 slides

More recommend