Cryptology ePrint Archive: Report 2019/515

A Countermeasure Against Statistical Ineffective Fault Analysis

Jakub Breier and Mustafa Khairallah and Xiaolu Hou and Yang Liu

Abstract: When considering practical attacks against cryptographic implementations, Fault Injection Attacks (FIA) pose a powerful tool that can recover the secret key within few encryptions. Over the past few decades they have become a well-studied topic both by academic an industry practitioners.

Current state-of-the-art countermeasures against Fault Injection Attacks (FIA) provide good protection against analysis methods that require the differences in the correct and faulty ciphertext to derive the secret information, such as Differential Fault Analysis (DFA) or collision fault analysis. However, recent progress in Ineffective Fault Analysis (IFA) and Statistical IFA (SIFA) constitutes a real threat against cryptographic implementations. Such methods cannot be thwarted by standard FIA countermeasures that focus on detecting the change in the intermediate data.

In this paper, we present a novel method based on error correcting codes that protects implementations against SIFA. We design a set of universal error-correcting gates that can be used for block cipher implementations. We analyze a hardware implementation of protected GIFT-64 and show that our method provides 100% protection against SIFA.

Category / Keywords: implementation / fault injection attacks, ineffective fault analysis, countermeasures, error-correcting codes, SIFA

Original Publication (with minor differences): IEEE TCAS2

Date: received 17 May 2019, last revised 18 Apr 2020

Contact author: jbreier at jbreier com

Available format(s): PDF | BibTeX Citation

Version: 20200419:031757 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]