Paper 2022/253

The Side-Channel Metric Cheat Sheet

Kostas Papagiannopoulos, Ognjen Glamocanin, Melissa Azouaoui, Dorian Ros, Francesco Regazzoni, and Mirjana Stojilovic


Side-channel attacks exploit a physical observable originating from a cryptographic device in order to extract its secrets. Many practically relevant advances in the field of side-channel analysis relate to security evaluations of cryptographic functions and devices. Accordingly, many metrics have been adopted or defined to express and quantify side-channel security. These metrics can relate to one another, but also conflict in terms of effectiveness, assumptions and security goals. In this work, we review the most commonly used metrics in the field of side-channel analysis. We provide a self-contained presentation of each metric, along with a discussion of its limitations. We practically demonstrate the metrics on examples of relevant implementations of the Advanced Encryption Standard (AES), and make the software implementation of the presented metrics available to the community as open source. This work, being beyond a survey of the current status of metrics, will allow researchers and practitioners to produce a well-informed security evaluation through a better understanding of its supporting and summarizing metrics.

Available format(s)
Publication info
Preprint. Minor revision.
Side-Channel AttacksSide-Channel Analysis MetricsInformation Theoretic Metrics
Contact author(s)
kostaspap88 @ gmail com
ognjen glamocanin @ epfl ch
melissa azouaoui @ nxp com
dorian ros @ epfl ch
f regazzoni @ uva nl
mirjana stojilovic @ epfl ch
2022-03-02: received
Short URL
Creative Commons Attribution


      author = {Kostas Papagiannopoulos and Ognjen Glamocanin and Melissa Azouaoui and Dorian Ros and Francesco Regazzoni and Mirjana Stojilovic},
      title = {The Side-Channel Metric Cheat Sheet},
      howpublished = {Cryptology ePrint Archive, Paper 2022/253},
      year = {2022},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.