Cryptology ePrint Archive: Report 2018/959

Information Entropy Based Leakage Certification

Changhai Ou and Xinping Zhou and Siew-Kei Lam

Abstract: Side-channel attacks and evaluations typically utilize leakage models to extract sensitive information from measurements of cryptographic implementations. Efforts to establish a true leakage model is still an active area of research since Kocher proposed Differential Power Analysis (DPA) in 1999. Leakage certification plays an important role in this aspect to address the following question: "how good is my leakage model?". However, existing leakage certification methods still need to tolerate assumption error and estimation error of unknown leakage models. There are many probability density distributions satisfying given moment constraints. As such, finding the most unbiased and most reasonable model still remains an unresolved problem. In this paper, we address a more fundamental question: "what's the true leakage model of a chip?". In particular, we propose Maximum Entropy Distribution (MED) to estimate the leakage model as MED is the most unbiased, objective and theoretically the most reasonable probability density distribution conditioned upon the available information. MED can theoretically use information on arbitrary higher-order moments to infinitely approximate the true leakage model. It well compensates the theory vacancy of model profiling and evaluation. Experimental results demonstrate the superiority of our proposed method for approximating the leakage model using MED estimation.

Category / Keywords: implementation / information theory, maximum entropy, maximum entropy distribution, leakage model, leakage certification, side channel attack

Date: received 5 Oct 2018, last revised 13 Oct 2018

Contact author: chou at ntu edu sg

Available format(s): PDF | BibTeX Citation

Version: 20181013:080621 (All versions of this report)

Short URL: ia.cr/2018/959


[ Cryptology ePrint archive ]