Paper 2020/413

Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks

Louis Goubin, Matthieu Rivain, and Junwei Wang

Abstract

The goal of white-box cryptography is to protect secret keys embedded in a cryptographic software deployed in an untrusted environment. In this article, we revisit state-of-the-art countermeasures employed in white-box cryptography, and we discuss possible ways to combine them. Then we analyze the different gray-box attack paths and study their performances in terms of required traces and computation time. Afterward, we propose a new paradigm for the gray-box attack against white-box cryptography, which exploits the data-dependency of the target implementation. We demonstrate that our approach provides substantial complexity improvements over the existing attacks. Finally, we showcase this new technique by breaking the three winning AES-128 white-box implementations from WhibOx 2019 white-box cryptography competition.

Note: Add acknowledgements

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published by the IACR in TCHES 2020
Keywords
white-box cryptographylinear maskingnon-linear maskingshufflingdata-dependency
Contact author(s)
matthieu rivain @ cryptoexperts com
junwei wang @ cryptoexperts com
History
2020-04-15: last of 2 revisions
2020-04-13: received
See all versions
Short URL
https://ia.cr/2020/413
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2020/413,
      author = {Louis Goubin and Matthieu Rivain and Junwei Wang},
      title = {Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks},
      howpublished = {Cryptology ePrint Archive, Paper 2020/413},
      year = {2020},
      note = {\url{https://eprint.iacr.org/2020/413}},
      url = {https://eprint.iacr.org/2020/413}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.