Paper 2017/103

Reconciling d+1 Masking in Hardware and Software

Hannes Gross and Stefan Mangard

Abstract

The continually growing number of security-related autonomous devices require efficient mechanisms to counteract low-cost side-channel analysis (SCA) attacks like differential power analysis. Masking provides a high resistance against SCA at an adjustable level of security. A high level of security, however, goes hand in hand with an increasing demand for fresh randomness which also affects other implementation costs. Since software based masking has other security requirements than masked hardware implementations, the research in these fields have been quite separated from each other over the last ten years. One important practical difference is that recently published software based masking schemes show a lower randomness footprint than hardware masking schemes. In this work we combine existing software and hardware based masking schemes into a unified masking approach (UMA). We demonstrate how UMA can be used to protect software and hardware implementations likewise, and for lower randomness costs especially for hardware implementations. Theoretical considerations as well as practical implementation results are then used to compare this unified masking approach to other schemes from different perspectives and at different levels of security.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
A minor revision of an IACR publication in CHES 2017
Keywords
maskinghardware securitythreshold implementationsdomain-oriented maskingside-channel analysis
Contact author(s)
hannes gross @ iaik tugraz at
History
2017-06-26: last of 4 revisions
2017-02-13: received
See all versions
Short URL
https://ia.cr/2017/103
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2017/103,
      author = {Hannes Gross and Stefan Mangard},
      title = {Reconciling d+1 Masking in Hardware and Software},
      howpublished = {Cryptology ePrint Archive, Paper 2017/103},
      year = {2017},
      note = {\url{https://eprint.iacr.org/2017/103}},
      url = {https://eprint.iacr.org/2017/103}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.