Paper 2021/936

FIVER -- Robust Verification of Countermeasures against Fault Injections

Jan Richter-Brockmann, Aein Rezaei Shahmirzadi, Pascal Sasdrich, Amir Moradi, and Tim Güneysu

Abstract

Fault Injection Analysis is seen as a powerful attack against implementations of cryptographic algorithms. Over the last two decades, researchers proposed a plethora of countermeasures to secure such implementations. However, the design process and implementation are still error-prone, complex, and manual tasks which require long-standing experience in hardware design and physical security. Moreover, the validation of the claimed security is often only done by empirical testing in a very late stage of the design process. To prevent such empirical testing strategies, approaches based on formal verification are applied instead providing the designer early feedback. In this work, we present a fault verification framework to validate the security of countermeasures against fault-injection attacks designed for ICs. The verification framework works on netlist-level, parses the given digital circuit into a model based on Binary Decision Diagrams, and performs symbolic fault injections. This verification approach constitutes a novel strategy to evaluate protected hardware designs against fault injections offering new opportunities as performing full analyses under a given fault models. Eventually, we apply the proposed verification framework to real-world implementations of well-established countermeasures against fault-injection attacks. Here, we consider protected designs of the lightweight ciphers CRAFT and LED-64 as well as AES. Due to several optimization strategies, our tool is able to perform more than 90 million fault injections in a single-round CRAFT design and evaluate the security in under 50 min while the symbolic simulation approach considers all $2^128$ primary inputs.

Metadata
Available format(s)
PDF
Publication info
Published by the IACR in TCHES 2021
Keywords
FIAFault VerificationFormal VerificationBDDSymbolic Simulation
Contact author(s)
jan richter-brockmann @ rub de
History
2021-07-13: last of 2 revisions
2021-07-09: received
See all versions
Short URL
https://ia.cr/2021/936
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2021/936,
      author = {Jan Richter-Brockmann and Aein Rezaei Shahmirzadi and Pascal Sasdrich and Amir Moradi and Tim Güneysu},
      title = {{FIVER} -- Robust Verification of Countermeasures against Fault Injections},
      howpublished = {Cryptology {ePrint} Archive, Paper 2021/936},
      year = {2021},
      url = {https://eprint.iacr.org/2021/936}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.