Nothing Special   »   [go: up one dir, main page]

What a lovely hat

Is it made out of tin foil?

Paper 2024/906

Are Your Keys Protected? Time will Tell

Yoav Ben-Dov, Weizmann Institute of Science
Liron David, Weizmann Institute of Science
Moni Naor, Weizmann Institute of Science
Elad Tzalik, Weizmann Institute of Science
Abstract

Side channel attacks, and in particular timing attacks, are a fundamental obstacle to obtaining secure implementation of algorithms and cryptographic protocols, and have been widely researched for decades. While cryptographic definitions for the security of cryptographic systems have been well established for decades, none of these accepted definitions take into account the running time information leaked from executing the system. In this work, we give the foundation of new cryptographic definitions for cryptographic systems that take into account information about their leaked running time, focusing mainly on keyed functions such as signature and encryption schemes. Specifically, (1) We define several cryptographic properties to express the claim that the timing information does not help an adversary to extract sensitive information, e.g. the key or the queries made. We highlight the definition of key-obliviousness, which means that an adversary cannot tell whether it received the timing of the queries with the actual key or the timing of the same queries with a random key. (2) We present a construction of key-oblivious pseudorandom permutations on a small or medium-sized domain. This construction is not ``fixed-time,'' and at the same time is secure against any number of queries even in case the adversary knows the running time exactly. Our construction, which we call Janus Sometimes Recurse, is a variant of the ``Sometimes Recurse'' shuffle by Morris and Rogaway. (3) We suggest a new security notion for keyed functions, called noticeable security, and prove that cryptographic schemes that have noticeable security remain secure even when the exact timings are leaked, provided the implementation is key-oblivious. We show that our notion applies to cryptographic signatures, private key encryption and PRPs.

Note: 28 pages, comments are welcome!

Metadata
Available format(s)
PDF
Category
Foundations
Publication info
Published elsewhere. Major revision. ITC 2024
Keywords
Side channel attacksTiming attacksKeyed functionsKey obliviousNoticeable security
Contact author(s)
lirondavid @ gmail com
moni naor @ weizmann ac il
tzalikemail @ gmail com
History
2024-06-06: approved
2024-06-06: received
See all versions
Short URL
https://ia.cr/2024/906
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2024/906,
      author = {Yoav Ben-Dov and Liron David and Moni Naor and Elad Tzalik},
      title = {Are Your Keys Protected? Time will Tell},
      howpublished = {Cryptology {ePrint} Archive, Paper 2024/906},
      year = {2024},
      url = {https://eprint.iacr.org/2024/906}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.