Cryptology ePrint Archive: Report 2015/834

Authentication Using Side-Channel Information

Kazuo Sakiyama and Takanori Machida and Arisa Matsubara and Yunfeng Kuai and Yu-ichi Hayashi and Takaaki Mizuki and Noriyuki Miura and Makoto Nagata

Abstract: Authentication based on cryptographic protocols is a key technology for recent security systems. However, the so-called relay attack where a malicious attacker tries to assume the role of the prover, is known to be a serious threat even for the cryptographically-secure authentication systems. This paper proposes a new authentication method that utilizes the side channel that already exists in many authentication systems. The side channel has been studied intensively from the attacker viewpoint, and it is best known for the key-recovery attack against cryptographic implementations via physical information. Here, reversing our way of thinking, we propose to use the information constructively via the side channel to enhance the existing cryptographic protocols. Using symmetric-key-based authentication as an example, we show based on experiments using an FPGA that each of the side-channel information leaked from provers is unique enough for the purpose of authentication.

Category / Keywords: applications / side-channel analysis, relay attacks, two-factor authentication

Date: received 27 Aug 2015

Contact author: machida at uec ac jp

Available format(s): PDF | BibTeX Citation

Version: 20150828:152812 (All versions of this report)

Short URL: ia.cr/2015/834

Discussion forum: Show discussion | Start new discussion