Paper 2018/531

Polynomial direct sum masking to protect against both SCA and FIA

Claude Carlet, Abderrahman Daif, Sylvain Guilley, and Cédric Tavernier

Abstract

Side Channel Attacks (SCA) and Fault Injection Attacks (FIA) allow an opponent to have partial access to the internal behavior of the hardware. Since the end of the nineties, many works have shown that this type of attacks constitute a serious threat to cryptosystems implemented in embedded devices. In the state of the art, there exist several countermeasures to protect symmetric encryption (especially AES-128). Most of them protect only against one of these two attacks (SCA or FIA). A method called ODSM has been proposed to withstand SCA and FIA , but its implementation in the whole algorithm is a big open problem when no particular hardware protection is possible. In the present paper, we propose a practical masking scheme specifying ODSM which makes it possible to protect the symmetric encryption against these two attacks.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Preprint.
Keywords
Masking countermeasureError correcting codesSide channel attackFault injection attackAES.
Contact author(s)
daif abde @ yahoo fr
History
2018-06-04: received
Short URL
https://ia.cr/2018/531
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2018/531,
      author = {Claude Carlet and Abderrahman Daif and Sylvain Guilley and Cédric Tavernier},
      title = {Polynomial direct sum masking to protect against both SCA and FIA},
      howpublished = {Cryptology ePrint Archive, Paper 2018/531},
      year = {2018},
      note = {\url{https://eprint.iacr.org/2018/531}},
      url = {https://eprint.iacr.org/2018/531}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.