Nothing Special   »   [go: up one dir, main page]
Skip to main content
Springer Nature Link
Log in

Redefining the transparency order

  • Published:
Designs, Codes and Cryptography Aims and scope Submit manuscript

Abstract

In this paper, we consider the multi-bit Differential Power Analysis (DPA) in the Hamming weight model. In this regard, we revisit the definition of Transparency Order (\(\mathsf {TO}\)) from the work of Prouff (FSE 2005) and find that the definition has certain limitations. Although this work has been quite well referred in the literature, surprisingly, these limitations remained unexplored for almost a decade. We analyse the definition from scratch, modify it and finally provide a definition with better insight that can theoretically capture DPA in Hamming weight model for hardware implementation with precharge logic. At the end, we confront the notion of (revised) transparency order with attack simulations in order to study to what extent the low transparency order of an s-box impacts the efficiency of a side channel attack against its processing. To the best of our knowledge, this is the first time that such a critical analysis is conducted (even considering the original notion of Prouff). It practically confirms that the transparency order is indeed related to the resistance of the s-box against side-channel attacks, but it also shows that it is not sufficient alone to directly achieve a satisfying level of security. Regarding this point, our conclusion is that the (revised) transparency order is a valuable criterion to consider when designing a cryptographic algorithm, and even if it does not preclude to also use classical countermeasures like masking or shuffling, it enables to improve their effectiveness.

This is a preview of subscription content, log in via an institution to check access.

Access this article

Log in via an institution

Subscribe and save

Springer+ Basic
$34.99 /Month
  • Get 10 units per month
  • Download Article/Chapter or eBook
  • 1 Unit = 1 Article or 1 Chapter
  • Cancel anytime
Subscribe now

Buy Now

Price excludes VAT (USA)
Tax calculation will be finalised during checkout.

Instant access to the full article PDF.

Institutional subscriptions

Fig. 1
Fig. 2
Fig. 3

Similar content being viewed by others

Notes

  1. Such a model is used in CPA, together with the key hypothesis K, to compute the predictions that are correlated to each point of the traces \({\varvec{T}}_x\) (see [4] for a detailed presentation of the CPA).

  2. This should correspond to a maximum level of security.

  3. We recall that the correlation coefficient between two random variables U and V can be soundly estimated from respectively N observations \((u_i)_i\) and \((v_i)_i\) of U and V by \(\rho (U,V) \simeq (N\sum _i u_iv_i - \sum _i u_iv_i) / (\sqrt{N\sum _i u_i^2 - (\sum _i u_i)^2}\sqrt{N\sum _i v_i^2 - (\sum _i v_i)^2})\).

  4. Those s-boxes correspond to the two opposite extrema in terms of \(\mathsf {TO}\).

  5. These standard deviations correspond to j % of the mean \(\mathsf {H}(y)\) when y ranges uniformly over \({\mathbb {F}}_2^4\) and \(j\in \{0,10,20,30,40,50\}\).

  6. The number of repetitions is 1000.

References

  1. Bévan R., Knudsen E.: Ways to enhance differential power analysis. In: Lee, P., Lim, C. (eds.) Information Security and Cryptolog—ICISC 2002. Lecture Notes in Computer Science, vol, 2587, pp. 327–342. Springer, New York (2002).

  2. Bilgin B., Nikova S., Nikov V., Rijmen V., Stütz G.: Threshold implementations of all \(3 \times 3\) and \(4 \times 4\) s-boxes. In: Prouff E., Schaumont P. (eds.): Cryptographic Hardware and Embedded Systems—CHES 2012—14th International Workshop, Leuven, Belgium, 9–12 Sept, 2012. Lecture Notes in Computer Science, vol. 7428, pp. 76–91. Springer, New York (2012).

  3. Borghoff J., Canteaut A., Güneysu T., Kavun E.B., Knezevic M., Knudsen L.R., Leander G., Nikov V., Paar C., Rechberge C., Rombouts P., Thomsen S.S., Yalçin T.: PRINCE—a low-latency block cipher for pervasive computing applications—extended abstract. In: Wang X., Sako K. (eds.) Advances in Cryptology—ASIACRYPT 2012—18th International Conference on the Theory and Application of Cryptology and Information Security, Beijing, China, 2–6 Dec, 2012. Lecture Notes in Computer Science, vol. 7658, pp. 208–225. Springer, New York (2012).

  4. Brier E., Clavier C., Olivier F.: Correlation power analysis with a leakage model. In: Joye M., Quisquater J.J. (eds.) Cryptographic Hardware and Embedded Systems—CHES 2004. Lecture Notes in Computer Science, vol. 3156, pp. 16–29. Springer, New York (2004).

  5. Carlet C.: On Highly nonlinear S-boxes and their inability to thwart DPA attacks. In: Maitra S., Veni Madhavan C.E., Venkatesan R. (eds.) Progress in Cryptology—INDOCRYPT 2005. Lecture Notes in Computer Science, vol. 3797, pp. 49–62. Springer, New York (2006).

  6. Carlet C.: Vectorial Boolean functions for cryptography. In: Boolean Models and Methods in Mathematics, Computer Science, and Engineering, chapter 9, pp. 398–469. Cambridge University Press, Cambridge (2010).

  7. Chari S., Jutla C., Rao J., Rohatgi P.: A cautionary note regarding evaluation of AES candidates on smart-cards. In: Second AES Candidate Conference—AES, vol. 2 (1999).

  8. Chari S., Jutla C., Rao J., Rohatgi P.: Towards sound approaches to counteract power-analysis attacks. In: Wiener M. (ed.) Advances in Cryptology—CRYPTO ’99. Lecture Notes in Computer Science, vol. 1666, pp. 398–412. Springer, New York (1999).

  9. Chari S., Rao J., Rohatgi P.: Template attacks. In: Kaliski Jr. B., Koç Ç., Paar C. (eds.) Cryptographic Hardware and Embedded Systems—CHES 2002. Lecture Notes in Computer Science, vol. 2523, pp. 13–29. Springer, New York (2002).

  10. Doget J., Prouff E., Rivain M., Standaert F.-X.: Univariate side channel attacks and leakage modeling. J. Cryptogr. Eng. 1(2), 123–144 (2011).

  11. Evci M.A., Kavut S.: DPA resilience of rotation-symmetric S-boxes. In: IWSEC, pp. 146–157 (2014).

  12. Fei Y., Luo Q., Ding A.A.: A statistical model for DPA with novel algorithmic confusion analysis. In: Prouff E., Schaumont P. (eds.): Cryptographic Hardware and Embedded Systems—CHES 2012—14th International Workshop, Leuven, Belgium, 9–12 Sept, 2012. Lecture Notes in Computer Science, vol. 7428, pp. 233–250. Springer, New York (2012).

  13. FIPS PUB 197. Advanced encryption standard. National Institute of Standards and Technology (2001).

  14. Gierlichs B., Batina L., Tuyls P., Preneel B.: Mutual information analysis. In: Oswald E., Rohatgi P. (eds.) CHES. Lecture Notes in Computer Science, vol. 5154, pp. 426–442. Springer, New York (2008).

  15. Guilley S., Hoogvorst P., Pacalet R.: Differential power analysis model and some results. In: Quisquater J.J., Paradinas P., Deswarte Y., Kalam A.E. (eds.) Smart Card Research and Advanced Applications VI—CARDIS 2004, pp. 127–142. Kluwer Academic Publishers, London (2004).

  16. Kocher P., Jaffe J., Jun B.: Differential power analysis. In: Wiener M. (ed.): Advances in Cryptology—CRYPTO ’99. Lecture Notes in Computer Science, vol. 1666, pp. 388–397. Springer, New York (1999).

  17. Mangard S.: Hardware countermeasures against DPA—a statistical analysis of their effectiveness. In: Okamoto T. (ed.) Topics in Cryptology—CT-RSA 2004. Lecture Notes in Computer Science, vol. 2964, pp. 222–235. Springer, New York (2004).

  18. Mazumdar B., Mukhopadhyay D., Sengupta, I.: Constrained search for a class of good bijective s-boxes with improved DPA resistivity. IEEE Trans. Inf. Forens. Secur. 8(12), 2154–2163 (2013).

  19. Messerges T.: Power analysis attacks and countermeasures for cryptographic algorithms. PhD thesis, University of Illinois, Champaign (2000).

  20. Nikova S., Rijmen V., Schläffer M.: Secure hardware implementation of nonlinear functions in the presence of glitches. J. Cryptol. 24(2), 292–321 (2011).

  21. Picek S., Ege B., Papagiannopoulos K., Batina L., Jakobovic D.: Optimality and beyond: the case of \(4\times 4\) s-boxes. In: 2014 IEEE International Symposium on Hardware-Oriented Security and Trust, HOST 2014, Arlington, VA, USA, 6–7 May, 2014, pp. 80–83. IEEE Computer Society, Washington, DC (2014).

  22. Picek S., Papagiannopoulos K., Ege B., Batina L., Jakobovic D.: Confused by confusion: systematic evaluation of DPA resistance of various s-boxes. In: Meier W., Mukhopadhyay D. (eds.) Progress in Cryptology—INDOCRYPT 2014—15th International Conference on Cryptology in India, New Delhi, India, December 14–17, 2014. Lecture Notes in Computer Science, vol. 8885, pp. 374–390. Springer, New York (2014).

  23. Prouff E.: DPA attacks and S-Boxes. In: Handschuh H., Gilbert H. (eds.) Fast Software Encryption—FSE 2005. Lecture Notes in Computer Science, vol. 3557, pp. 424–442. Springer, New York (2005).

  24. Prouff E., Rivain M., Bévan R.: Statistical analysis of second order differential power analysis. IEEE Trans. Comput. 58(6), 799–811 (2009).

  25. Rivain M., Prouff E., Doget J.: Higher-order masking and shuffling for software implementations of block ciphers. In: Clavier C., Gaj K. (eds.) CHES. Lecture Notes in Computer Science, vol. 5747, pp. 171–188. Springer, New York (2009).

  26. Tiri K., Verbauwhede I.: A logic level design methodology for a secure DPA resistant ASIC or FPGA implementation. In: 2004 Design, Automation and Test in Europe Conference and Exposition (DATE 2004), , Paris, France, 16–20 Feb 2004, pp. 246–251. IEEE Computer Society, Washington, DC (2004).

  27. Whitnall C., Oswald E.: A comprehensive evaluation of mutual information analysis using a fair evaluation framework. In: Rogaway P. (ed.) CRYPTO. Lecture Notes in Computer Science, vol. 6841, pp. 316–334. Springer, New York (2011).

Download references

Author information

Authors and Affiliations

  1. SECRET Team, INRIA, Paris, France

    Kaushik Chakraborty

  2. TCS Innovation Labs, Hyderabad, India

    Sumanta Sarkar

  3. Indian Statistical Institute, Kolkata, India

    Subhamoy Maitra

  4. Indian Institute of Technology, Kharagpur, India

    Bodhisatwa Mazumdar & Debdeep Mukhopadhyay

  5. Sorbonne Universiteés, UPMC Univ Paris 06, CNRS, INRIA, Laboratoire d’Informatique de Paris 6 (LIP6), Équipe PolSys, 4 place Jussieu, 75252, Paris Cedex 05, France

    Emmanuel Prouff

Authors
  1. Kaushik Chakraborty
    View author publications

    You can also search for this author in PubMed Google Scholar

  2. Sumanta Sarkar
    View author publications

    You can also search for this author in PubMed Google Scholar

  3. Subhamoy Maitra
    View author publications

    You can also search for this author in PubMed Google Scholar

  4. Bodhisatwa Mazumdar
    View author publications

    You can also search for this author in PubMed Google Scholar

  5. Debdeep Mukhopadhyay
    View author publications

    You can also search for this author in PubMed Google Scholar

  6. Emmanuel Prouff
    View author publications

    You can also search for this author in PubMed Google Scholar

Corresponding author

Correspondence to Sumanta Sarkar.

Additional information

This is one of several papers published in Designs, Codes and Cryptography comprising the “Special Issue on Coding and Cryptography”.

Appendices

Appendix 1: Analysis for the s-boxes in context of PRINCE

Eight \(4 \times 4\) s-boxes are referred in [3]. In Table 2 we show the maximum and minimum values of \(\mathsf {TO}(F,\beta )\) for each of the s-boxes.

Table 2 Maximum (corresponding to \(\beta _{\max }\)) and minimum (corresponding to \(\beta _{\min }\)) values of \(\mathsf {TO}(F,\beta )\) as \(\beta \) varies over \({\mathbb {F}}_2^4\) for the eight PRINCE s-boxes (available in Table 3 of Appendix 1 in the eprint version of [3])
Full size table

Appendix 2: Impact of an transparency order when model error is considered

In this section, we study the impact of an erroneous modelling on the CPA resistance of an s-box, by performing CPA attack simulations against the fourth and the seventh PRINCE s-boxesFootnote 4 under the assumption that the information is not leaking in the Hamming distance model but in an erroneous version of it. Namely, for a fixed model error standard deviation \(\sigma _{er}\) chosenFootnote 5 in \(\{0,0.2,0.4,0.6,0.8,1.0\}\), we simulated the leakage \(L(X\oplus \dot{K})\) such that:

$$\begin{aligned} L (X \oplus \dot{K}) = \varphi (F(X\oplus \dot{K}) \oplus \beta ) + B , \end{aligned}$$
(16)

where \(\varphi \) is a function defined for every \(y\in \mathbb {F}_{2}^4\) by \(\varphi (y) = \mathrm {HW}(y)+ \varepsilon \) with \(\varepsilon \) randomly generated according to a normal distribution with mean 0 and standard deviation \(\sigma _{er}\). The variable B still refers to an independent Gaussian noise with 0 mean and standard deviation \(\sigma \). For the processing of the predictions, we kept the Hamming weight model (the adversary is not assumed to know the erroneous leakage model). The results of our CPA attack simulations are reported in Fig. 4 (bars in dark blue correspond to s-box 4 whereas those in light blue correspond to s-box 7, for each standard deviation \(\sigma \)—in x-axis—there is one bar for each \(\sigma _{er}\) in \(\{0.0,0.2,0.4,0.6,0.8,1.0\}\)).

It may be checked that the fourth s-box, which has minimum \(\mathsf {TO}\), stays more resistant than the seventh s-box for any error in the modelling and the noise standard deviation. More interestingly, our simulations show that the difficulty of attacking s-box 4 increases more quickly with the \(\sigma _{er}\) than for s-box 7. Actually, for a \(\sigma _{er}\) greater than or equal to 0.8, a 90 % success rateFootnote 6 was achieved against s-box 4 only when the noise standard deviation was equal to 1. For greater noise standard deviations (and for \(\sigma _{er}\ge 0.8\)), this success rate was never achieved by CPA attacks with less than 500,000 traces.

Fig. 4
figure 4

CPA in the presence of errors \(\sigma _{er}\in \{0.0,0.2,0.4,0.6,0.8,1.0\}\) and \(\sigma \in \{1, \ldots , 5\}\) (both on x-axis). For each pair \((\sigma ,\sigma _{er})\) there is one dark blue bar for s-box 4 and one light-blue bar for s-box 7 of PRINCE. The pairs \((\sigma ,\sigma _{er})\) for which there is no dark blue bar corresponds to situations where the number of traces to achieve 0.9 success probability is at least 500,000 (Color figure online)

Full size image

Appendix 3: A lower bound of \(\mathsf {TO}(F)\) using Walsh spectrum only

We present a lower bound of \(\mathsf {TO}(F)\) for a given \(F = (F_1, \ldots , F_m)\). The following result will be used to derive the bound.

Lemma 1

Suppose efgh are Boolean functions of n-variables. Then

$$\begin{aligned} \sum _{a \in {\mathbb {F}}_2^n} {\mathcal {C}}_{e,f}(a) {\mathcal {C}}_{g,h}(a) = {1 \over 2^n} \sum _{a \in {\mathbb {F}}_2^n} W_e(a) W_f(a) W_g(a) W_h(a). \end{aligned}$$

Proof

Suppose \({\mathbb {F}}_2^n = \{a_0, \ldots , a_{2^n-1}\}\). It is known that

$$\begin{aligned}&[{\mathcal {C}}_{e,f}(a_0), \ldots , {\mathcal {C}}_{e,f}(a_{2^n-1})] \mathcal {H}_n = [W_e(a_0) W_f(a_0), \ldots , W_e(a_{2^n-1})W_f(a_{2^n-1})] \\&\quad [{\mathcal {C}}_{g,h}(a_0), \ldots , {\mathcal {C}}_{g,h}(a_{2^n-1})] \mathcal {H}_n = [W_g(a_0) W_h(a_0), \ldots , W_g(a_{2^n-1})W_h(a_{2^n-1})], \end{aligned}$$

where \(\mathcal {H}_n\) is the Hadamard matrix of order \(2^n \times 2^n\). Take the product

$$\begin{aligned}&[{\mathcal {C}}_{e,f}(a_0), \ldots , {\mathcal {C}}_{e,f}(a_{2^n-1})] \mathcal {H}_n \Big ([{\mathcal {C}}_{g,h}(a_0), \ldots , {\mathcal {C}}_{g,h}(a_{2^n-1})] \mathcal {H}_n \Big )^T \\&\quad = [W_e(a_0) W_f(a_0), \ldots , W_e(a_{2^n-1})W_f(a_{2^n-1})] \left( \begin{array}{c} W_g(a_0) W_h(a_0\\ \vdots \\ W_g(a_{2^n-1})W_h(a_{2^n-1}) \end{array}\right) \end{aligned}$$

Since, \(\mathcal {H}_n \mathcal {H}_n^T = 2^n I_{2^n\times 2^n}\), where \(I_{2^n\times 2^n}\) is the identity matrix of order \(2^n\times 2^n\), then from the product, we have

$$\begin{aligned} \sum _{a \in {\mathbb {F}}_2^n} {\mathcal {C}}_{e,f}(a) {\mathcal {C}}_{g,h}(a) = {1 \over 2^n} \sum _{a \in {\mathbb {F}}_2^n} W_e(a) W_f(a) W_g(a) W_h(a). \end{aligned}$$

\(\square \)

Theorem 3

For \(F = (F_1, \ldots , F_m): {\mathbb {F}}_2^n \rightarrow {\mathbb {F}}_2^m\), the value of \(\mathsf {TO}(F)\) has the following lower bound

$$\begin{aligned}&m - \frac{\sqrt{2^n-1}}{(2^{2n}-2^n)} \displaystyle \sum _{j=1}^m \bigg ( \displaystyle \sum _{i=1}^{m} \sum _{a \in {F_2^n}^*} W_{F_i}^2(a) W_{F_j}^2(a) \\&\quad + 2 \sum \nolimits _{1 \le i < k \le m} \sum \nolimits _{a \in {F_2^n}^*} W_{F_i}(a) W_{F_j}^2(a) W_{F_k}(a) \bigg )^{1 \over 2}. \end{aligned}$$

Proof

It is clear that \(\mathsf {TO}(F) \ge \mathsf {TO}(F,0)\). So we calculate a lower bound of \(\mathsf {TO}(F,0)\). From (14) we get

$$\begin{aligned} \mathsf {TO}(F,0) = m - \frac{1}{(2^{2n}-2^n)}\sum _{j=1}^m \sum _{a \in F_2 ^{n^*}}| \sum _{i=1}^{m} {\mathcal {C}}_{F_i,F_j} (a)|. \end{aligned}$$

Applying Cauchy–Schwarz inequality we get

$$\begin{aligned} \sum _{a \in F_2 ^{n^*}} |\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a)|\le & {} \bigg ( (2^n-1) \sum _{a \in F_2^{n^*}} \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2 \bigg )^{1\over 2} \nonumber \\= & {} \left( (2^n-1) \sum _{a \in F_2^{n}}\left[ \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2 - \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (0) \Big )^2 \right] \right) ^{1\over 2} \nonumber \\= & {} \bigg ( (2^n-1) \sum _{a \in F_2^{n}} \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2 \bigg )^{1\over 2} \end{aligned}$$
(17)

Note that

$$\begin{aligned} \sum _{a \in F_2 ^{n}} \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2= & {} \sum _{a \in F_2 ^{n}} \sum _{i=1}^m {\mathcal {C}}_{F_i,F_j}^2 (a) + 2 \sum _{a \in F_2 ^{n}} \sum _{1 \le i< k \le m} {\mathcal {C}}_{F_i,F_j}(a) {\mathcal {C}}_{F_k,F_j}(a)\\= & {} \sum _{i=1}^m \sum _{a \in F_2 ^{n}} {\mathcal {C}}_{F_i,F_j}^2 (a) + 2 \sum _{1 \le i < k \le m} \sum _{a \in F_2 ^{n}} {\mathcal {C}}_{F_i,F_j}(a) {\mathcal {C}}_{F_k,F_j}(a)\\ \end{aligned}$$

Then applying Lemma 1,

$$\begin{aligned} \sum _{a \in F_2^{n}} \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2= & {} \sum _{i=1}^m \sum _{a \in F_2 ^{n}} W_{F_i}^2(a) W_{F_j}^2(a)\\&+ 2 \sum _{1 \le i < k \le m} \sum _{a \in F_2 ^{n}} W_{F_i}(a) W_{F_j}^2(a) W_{F_k}(a). \end{aligned}$$

Replacing this value of \(\sum _{a \in F_2^{n}} \Big (\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a) \Big )^2\) in (17), an upper bound of \(\sum _{a \in F_2 ^{n^*}} |\sum _{i=1}^m {\mathcal {C}}_{F_i,F_j} (a)|\) is obtained. Then using this upper bound in (17), we get a lower bound of \(\mathsf {TO}(F,0)\) as follows

$$\begin{aligned}&m - \frac{\sqrt{2^n-1}}{(2^{2n}-2^n)} \displaystyle \sum _{j=1}^m \bigg ( \displaystyle \sum _{i=1}^{m} \sum _{a \in F_2 ^{n}} W_{F_i}^2(a) W_{F_j}^2(a) \\&\quad + 2 \sum \nolimits _{1 \le i < k \le m} \sum \nolimits _{a \in F_2 ^{n}} W_{F_i}(a) W_{F_j}^2(a) W_{F_k}(a) \bigg )^{1 \over 2}. \end{aligned}$$

Note that \(\mathsf {TO}(F,\beta )\) assumes that all the coordinate functions are balanced, therefore the above bound can be written as

$$\begin{aligned}&m - \frac{\sqrt{2^n-1}}{(2^{2n}-2^n)} \displaystyle \sum _{j=1}^m \bigg ( \displaystyle \sum _{i=1}^{m} \sum _{a \in {F_2^n}^*} W_{F_i}^2(a) W_{F_j}^2(a) \\&\quad + 2 \sum \nolimits _{1 \le i < k \le m} \sum \nolimits _{a \in {F_2^n}^*} W_{F_i}(a) W_{F_j}^2(a) W_{F_k}(a) \bigg )^{1 \over 2}. \end{aligned}$$

This serves as a lower bound of \(\mathsf {TO}(F)\). \(\square \)

Rights and permissions

Reprints and permissions

About this article

Check for updates. Verify currency and authenticity via CrossMark

Cite this article

Chakraborty, K., Sarkar, S., Maitra, S. et al. Redefining the transparency order. Des. Codes Cryptogr. 82, 95–115 (2017). https://doi.org/10.1007/s10623-016-0250-3

Download citation

  • Received:

  • Revised:

  • Accepted:

  • Published:

  • Issue Date:

  • DOI: https://doi.org/10.1007/s10623-016-0250-3

Keywords

Mathematics Subject Classification

Search

Navigation