2026-03-09T12:58:12Z
https://ipsj.ixsq.nii.ac.jp/oai
oai:ipsj.ixsq.nii.ac.jp:00098524
2025-01-20T06:47:06Z
581:7397:7450
Practical DFA Strategy for AES Under Limited-access Conditions
Practical DFA Strategy for AES Under Limited-access Conditions
Kazuo, Sakiyama
Yang, Li
Shigeto, Gomisawa
Yu-ichiHayashi
Mitsugu, Iwamoto
Naofumi, Homma
Takafumi, Aoki
Kazuo, Ohta
Kazuo, Sakiyama
Yang, Li
Shigeto, Gomisawa
Yu-ichi, Hayashi
Mitsugu, Iwamoto
Naofumi, Homma
Takafumi, Aoki
Kazuo, Ohta
[特集:組込みシステム工学] cryptography, advance encryption standard, differential fault analysis, intentional electromagnetic interference, uncertain faults.
Secret data in embedded devices can be revealed by injecting computational faults using the fault analysis attacks. The fault analysis researches on a cryptographic implementation by far first assumed a certain fault model, and then discussed the key recovery method under some assumptions. We note that a new remote-fault injection method has emerged, which is threatening in practice. Due to its limited accessibility to cryptographic devices, the remote-fault injection, however, can only inject uncertain faults. In this surroundings, this paper gives a general strategy of the remote-fault attack on the AES block cipher with a data set of faulty ciphertexts generated by uncertain faults. Our method effectively utilizes all the information from various kinds of faults, which is more realistic than previous researches. As a result, we show that it can provide a decent success probability of key identification even when only a few intended faults are available among 32 millions fault injections.
------------------------------
This is a preprint of an article intended for publication Journal of
Information Processing(JIP). This preprint should not be cited. This
article should be cited as: Journal of Information Processing Vol.22(2014) No.2 (online)
DOI http://dx.doi.org/10.2197/ipsjjip.22.142
------------------------------
Secret data in embedded devices can be revealed by injecting computational faults using the fault analysis attacks. The fault analysis researches on a cryptographic implementation by far first assumed a certain fault model, and then discussed the key recovery method under some assumptions. We note that a new remote-fault injection method has emerged, which is threatening in practice. Due to its limited accessibility to cryptographic devices, the remote-fault injection, however, can only inject uncertain faults. In this surroundings, this paper gives a general strategy of the remote-fault attack on the AES block cipher with a data set of faulty ciphertexts generated by uncertain faults. Our method effectively utilizes all the information from various kinds of faults, which is more realistic than previous researches. As a result, we show that it can provide a decent success probability of key identification even when only a few intended faults are available among 32 millions fault injections.
------------------------------
This is a preprint of an article intended for publication Journal of
Information Processing(JIP). This preprint should not be cited. This
article should be cited as: Journal of Information Processing Vol.22(2014) No.2 (online)
DOI http://dx.doi.org/10.2197/ipsjjip.22.142
------------------------------
journal article
2014-02-15
application/pdf
情報処理学会論文誌
2
55
1882-7764
AN00116647
https://ipsj.ixsq.nii.ac.jp/record/98524/files/IPSJ-JNL5502048.pdf
eng