Paper 2022/882
Randomness Optimization for Gadget Compositions in Higher-Order Masking
Abstract
Physical characteristics of electronic devices, leaking secret and sensitive information to an adversary with physical access, pose a long-known threat to cryptographic hardware implementations. Among a variety of proposed countermeasures against such Side-Channel Analysis attacks, masking has emerged as a promising, but often costly, candidate. Furthermore, the manual realization of masked implementations has proven error-prone and often introduces flaws, possibly resulting in insecure circuits. In the context of automatic masking, a new line of research emerged, aiming to replace each physical gate with a secure gadget that fulfills well-defined properties, guaranteeing security when interconnected to a large circuit. Unfortunately, those gadgets introduce a significant amount of additional overhead into the design, in terms of area, latency, and randomness requirements. In this work, we present a novel approach to reduce the demands for randomness in such gadget-composed circuits by reusing randomness across gadgets while maintaining security in the probing adversary model. To this end, we embedded the corresponding optimization passes into an Electronic Design Automation toolchain, able to construct, optimize, and implement masked circuits, starting from an unprotected design. As such, our security-aware optimization offers an additional building block for existing or new Electronic Design Automation frameworks, where security is considered a first-class design constraint
Metadata
- Available format(s)
- Category
- Implementation
- Publication info
- Published by the IACR in TCHES 2022
- Keywords
- Masking Probing Security SNI PINI Security-Aware Optimization Security-Aware EDA
- Contact author(s)
-
jakob feldtkeller @ rub de
david knichel @ rub de
pascal sasdrich @ rub de
amir moradi @ rub de
tim gueneysu @ rub de - History
- 2022-07-07: approved
- 2022-07-06: received
- See all versions
- Short URL
- https://ia.cr/2022/882
- License
-
CC BY
BibTeX
@misc{cryptoeprint:2022/882, author = {Jakob Feldtkeller and David Knichel and Pascal Sasdrich and Amir Moradi and Tim Güneysu}, title = {Randomness Optimization for Gadget Compositions in Higher-Order Masking}, howpublished = {Cryptology {ePrint} Archive, Paper 2022/882}, year = {2022}, url = {https://eprint.iacr.org/2022/882} }