Cryptanalysis of White-Box DES Implementations with Arbitrary External Encodings

Brecht Wyseur; Wil Michiels; Paul Gorissen; Bart Preneel

Paper 2007/104

Cryptanalysis of White-Box DES Implementations with Arbitrary External Encodings

Brecht Wyseur, Wil Michiels, Paul Gorissen, and Bart Preneel

Abstract

At DRM 2002, Chow et al. presented a method for implementing the DES block cipher such that it becomes hard to extract the embedded secret key in a white-box attack context. In such a context, an attacker has full access to the implementation and its execution environment. In order to provide an extra level of security, an implementation shielded with external encodings was introduced by Chow et al. and improved by Link and Neumann. In this paper, we present an algorithm to extract the secret key from such white-box DES implementations. The cryptanalysis is a differential attack on obfuscated rounds, and works regardless of the shielding external encodings that are applied. The cryptanalysis has a average time complexity of $2^{14}$ and a negligible space complexity.

Metadata

Available format(s): PDF PS
Publication info: Published elsewhere. Selected Areas in Cryptography 2007 (SAC'07)
Keywords: White-Box Cryptography Obfuscation DES Data Encryption Standard Cryptanalysis
Contact author(s): brecht wyseur @ esat kuleuven be
History: 2007-09-14: revised; 2007-03-22: received; See all versions
Short URL: https://ia.cr/2007/104
License: CC BY

BibTeX

@misc{cryptoeprint:2007/104,
      author = {Brecht Wyseur and Wil Michiels and Paul Gorissen and Bart Preneel},
      title = {Cryptanalysis of White-Box {DES} Implementations with Arbitrary External Encodings},
      howpublished = {Cryptology {ePrint} Archive, Paper 2007/104},
      year = {2007},
      url = {https://eprint.iacr.org/2007/104}
}