Paper 2019/615

My Gadget Just Cares For Me - How NINA Can Prove Security Against Combined Attacks

Siemen Dhooghe and Svetla Nikova

Abstract

Differential Power Analysis and Differential Fault Analysis threaten the security of even the most trustworthy cryptographic primitives. It is important we protect their implementation such that no sensitive information is leaked using side channels and it withstands injected faults or combined physical attacks. In this work, we propose security notions tailored against advanced physical attacks consisting of both faults and probes on circuit wires. We then transform the security notions to composable security notions. The motivation for this research includes the ease of verification time; the creation of secure components; and the isolation of primitives in larger protocols such as modes of operations. We dub our notion NINA, which forms the link between the established Non-Interference (NI) property and our composable active security property, Non-Accumulation (NA). To illustrate the NINA property, we use it to prove the security of two multiplication gadgets: an error checking duplication gadget and an error correcting duplication gadget. The NINA proofs for error detecting gadgets capture the effect of Statistical Ineffective Fault Analysis (SIFA), an attack vector which threatens most current masked implementations. Additionally, we study error correcting techniques. We show that error correcting gadgets can attain the Independent NINA property. A stronger property which captures a clear separation between the effect of faults and probes. Thus, we show that clever error correcting gadgets improve on error detecting ones by achieving significant higher levels of combined security along with guaranteed output delivery.

Metadata
Available format(s)
PDF
Category
Secret-key cryptography
Publication info
Published elsewhere. Minor revision. CT-RSA 2020
Keywords
Combined SecurityDFADPAMaskingSIFA
Contact author(s)
siemen dhooghe @ esat kuleuven be
svetla nikova @ esat kuleuven be
History
2019-12-03: last of 5 revisions
2019-06-03: received
See all versions
Short URL
https://ia.cr/2019/615
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2019/615,
      author = {Siemen Dhooghe and Svetla Nikova},
      title = {My Gadget Just Cares For Me - How {NINA} Can Prove Security Against Combined Attacks},
      howpublished = {Cryptology {ePrint} Archive, Paper 2019/615},
      year = {2019},
      url = {https://eprint.iacr.org/2019/615}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.