Paper 2025/863

Fly Away: Lifting Fault Security through Canaries and the Uniform Random Fault Model

Gaëtan Cassiers, CryptoExperts (France), UCLouvain
Siemen Dhooghe, KU Leuven
Thorben Moos, UCLouvain
Sayandeep Saha, Indian Institute of Technology Bombay
François-Xavier Standaert, UCLouvain
Abstract

Cryptographic implementations are vulnerable to active physical attacks where adversaries inject faults to extract sensitive information. Existing fault models, such as the threshold and random fault models, assume limitations on the amount or probability of injecting faults. Such models, however, insufficiently address the case of practical fault injection methods capable of faulting a large proportion of the wires in a circuit with high probability. Prior works have shown that this insufficiency can lead to concrete key recovery attacks against implementations proven secure in these models. We address this blind spot by introducing the uniform random fault model, which relaxes assumptions on the amount/probability of faults and instead assumes a uniform probabilistic faulting of all wires in a circuit or region. We then show that security in this new model can be reduced to security in the random fault model by inserting canaries in the circuit to ensure secret-independent fault detection. We prove that combining canaries with a more classical fault countermeasure such as redundancy can lead to exponential fault security in the uniform random fault model at a polynomial cost in circuit size in the security parameter. Finally, we discuss the interactions between our work and the practical engineering challenges of fault security, shedding light on how the combination of state-of-the-art countermeasures may protect against injections of many high probability faults, while opening a path to methodologies that formally analyze the guarantees provided by such countermeasures.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published by the IACR in CIC 2025
Keywords
Fault attackUniform random fault modelCanary circuits
Contact author(s)
gaetan cassiers @ uclouvain be
siemen dhooghe @ kuleuven be
thorben moos @ uclouvain be
sayandeep iitkgp @ gmail com
fstandae @ uclouvain be
History
2025-09-30: revised
2025-05-15: received
See all versions
Short URL
https://ia.cr/2025/863
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2025/863,
      author = {Gaëtan Cassiers and Siemen Dhooghe and Thorben Moos and Sayandeep Saha and François-Xavier Standaert},
      title = {Fly Away: Lifting Fault Security through Canaries and the Uniform Random Fault Model},
      howpublished = {Cryptology {ePrint} Archive, Paper 2025/863},
      year = {2025},
      url = {https://eprint.iacr.org/2025/863}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.