Cryptology ePrint Archive: Report 2020/890

Re-Consolidating First-Order Masking Schemes - Nullifying Fresh Randomness

Aein Rezaei Shahmirzadi and Amir Moradi

Abstract: Application of masking, known as the most robust and reliable countermeasure to side-channel analysis attacks, on various cryptographic algorithms has dedicated a lionís share of research to itself. The difficulty originates from the fact that the overhead of application of such an algorithmic-level countermeasure might not be affordable. This includes the area- and latency overheads as well as the amount of fresh randomness required to fulfill the security properties of the resulting design. There are already techniques applicable in hardware platforms which consider glitches into account. Among them, classical threshold implementations force the designers to use at least three shares in the underlying masking. The other schemes, which can deal with two shares, often necessitates the use of fresh randomness. Here, in this work, we present a technique allowing us to use two shares to realize the first-order glitch-extended probing secure masked realization of several functions including the Sbox of Midori, PRESENT, PRINCE, and AES ciphers without any fresh randomness.

Category / Keywords: implementation / Side-Channel Analysis, Masking, Threshold Implementation, AES

Date: received 15 Jul 2020, last revised 16 Jul 2020

Contact author: amir moradi at rub de, aein rezaeishahmirzadi@rub de

Available format(s): PDF | BibTeX Citation

Version: 20200716:145431 (All versions of this report)

Short URL: ia.cr/2020/890


[ Cryptology ePrint archive ]