Cryptology ePrint Archive: Report 2020/699

Looking at the NIST Lightweight Candidates from a Masking Point-of-View

Lauren De Meyer

Abstract: Cryptographic primitives have been designed to be secure against mathematical attacks in a black-box model. Such primitives can be implemented in a way that they are also secure against physical attacks, in a grey-box model. One of the most popular techniques for this purpose is masking. The increased security always comes with a high price tag in terms of implementation cost. In this work, we look at how the traditional design principles of symmetric primitives can be at odds with the optimization of the implementations and how they can evolve to be more suitable for embedded systems. In particular, we take a comparative look at the round 2 candidates of the NIST lightweight competition and their implementation properties in the world of masking.

Category / Keywords: secret-key cryptography / DPA, Masking, NIST, lightweight, competition, side-channel, symmetric, S-box

Date: received 10 Jun 2020, last revised 8 Jul 2020

Contact author: lauren demeyer at esat kuleuven be

Available format(s): PDF | BibTeX Citation

Version: 20200708:073237 (All versions of this report)

Short URL: ia.cr/2020/699


[ Cryptology ePrint archive ]