Paper 2017/075

A First DFA on PRIDE: from Theory to Practice (extended version)

Benjamin Lac, Marc Beunardeau, Anne Canteaut, Jacques Fournier, and Renaud Sirdey


PRIDE is one of the most effcient lightweight block cipher proposed so far for connected objects with high performance and low resource constraints. In this paper we describe the first ever complete Differential Fault Analysis against PRIDE. We describe how fault attacks can be used against implementations of PRIDE to recover the entire encryption key. Our attack has been validated first through simulations, and then in practice on a software implementation of PRIDE running on a device that could typically be used in IoT devices. Faults have been injected using electromagnetic pulses during the PRIDE execution and the faulty ciphertexts have been used to recover the key bits. We also discuss some countermeasures that could be used to thwart such attacks.

Available format(s)
Publication info
Published elsewhere. Minor revision. To appear in the Proceedings of the 11th International Conference on Risks and Security of Internet and Systems
Contact author(s)
renaud sirdey @ gmail com
2017-02-03: received
Short URL
Creative Commons Attribution


      author = {Benjamin Lac and Marc Beunardeau and Anne Canteaut and Jacques Fournier and Renaud Sirdey},
      title = {A First DFA on PRIDE: from Theory to Practice (extended version)},
      howpublished = {Cryptology ePrint Archive, Paper 2017/075},
      year = {2017},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.