Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis
Side-channel analysis (SCA) attacks constantly improve and evolve. Implementations are therefore designed to withstand strong SCA adversaries. Different side channels exhibit varying statistical characteristics of the sensed or exfiltrated leakage, as well as the embedding of different countermeasur...
Main Authors: | , , |
---|---|
Format: | Article |
Published: |
Multidisciplinary Digital Publishing Institute
2021
|
Online Access: | https://hdl.handle.net/1721.1/133176 |
_version_ | 1811096576172490752 |
---|---|
author | Salomon, Dor Weiss, Amir Levi, Itamar |
author_facet | Salomon, Dor Weiss, Amir Levi, Itamar |
author_sort | Salomon, Dor |
collection | MIT |
description | Side-channel analysis (SCA) attacks constantly improve and evolve. Implementations are therefore designed to withstand strong SCA adversaries. Different side channels exhibit varying statistical characteristics of the sensed or exfiltrated leakage, as well as the embedding of different countermeasures. This makes it crucial to improve and adapt pre-processing and denoising techniques, and abilities to evaluate the adversarial best-case scenario. We address two popular SCA scenarios: (1) a single-trace context, modeling an adversary that captures only one leakage trace, and (2) a multi-trace (or statistical) scenario, that models the classical SCA context. Given that horizontal attacks, localized electromagnetic attacks and remote-SCA attacks are becoming evermore powerful, both scenarios are of interest and importance. In the single-trace context, we improve on existing Singular Spectral Analysis (<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula>) based techniques by utilizing spectral property variations over time that stem from the cryptographic implementation. By adapting overlapped-<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula> and optimizing over the method parameters, we achieve a significantly shorter computation time, which is the main challenge of the <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula>-based technique, and a higher information gain (in terms of the Signal-to-Noise Ratio (<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula>)). In the multi-trace context, a profiling strategy is proposed to optimize a Band-Pass Filter (BPF) based on a low-computational cost criterion, which is shown to be efficient for unprotected and low protection level countermeasures. In addition, a slightly more computationally intensive optimized ‘shaped’ filter is presented that utilizes a frequency-domain <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula>-based coefficient thresholding. Our experimental results exhibit significant improvements over a set of various implementations embedded with countermeasures in hardware and software platforms, corresponding to varying baseline <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula> levels and statistical leakage characteristics. |
first_indexed | 2024-09-23T16:45:53Z |
format | Article |
id | mit-1721.1/133176 |
institution | Massachusetts Institute of Technology |
last_indexed | 2024-09-23T16:45:53Z |
publishDate | 2021 |
publisher | Multidisciplinary Digital Publishing Institute |
record_format | dspace |
spelling | mit-1721.1/1331762021-11-01T14:36:57Z Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis Salomon, Dor Weiss, Amir Levi, Itamar Side-channel analysis (SCA) attacks constantly improve and evolve. Implementations are therefore designed to withstand strong SCA adversaries. Different side channels exhibit varying statistical characteristics of the sensed or exfiltrated leakage, as well as the embedding of different countermeasures. This makes it crucial to improve and adapt pre-processing and denoising techniques, and abilities to evaluate the adversarial best-case scenario. We address two popular SCA scenarios: (1) a single-trace context, modeling an adversary that captures only one leakage trace, and (2) a multi-trace (or statistical) scenario, that models the classical SCA context. Given that horizontal attacks, localized electromagnetic attacks and remote-SCA attacks are becoming evermore powerful, both scenarios are of interest and importance. In the single-trace context, we improve on existing Singular Spectral Analysis (<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula>) based techniques by utilizing spectral property variations over time that stem from the cryptographic implementation. By adapting overlapped-<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula> and optimizing over the method parameters, we achieve a significantly shorter computation time, which is the main challenge of the <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SSA</mi></semantics></math></inline-formula>-based technique, and a higher information gain (in terms of the Signal-to-Noise Ratio (<inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula>)). In the multi-trace context, a profiling strategy is proposed to optimize a Band-Pass Filter (BPF) based on a low-computational cost criterion, which is shown to be efficient for unprotected and low protection level countermeasures. In addition, a slightly more computationally intensive optimized ‘shaped’ filter is presented that utilizes a frequency-domain <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula>-based coefficient thresholding. Our experimental results exhibit significant improvements over a set of various implementations embedded with countermeasures in hardware and software platforms, corresponding to varying baseline <inline-formula><math xmlns="http://www.w3.org/1998/Math/MathML" display="inline"><semantics><mi mathvariant="sans-serif">SNR</mi></semantics></math></inline-formula> levels and statistical leakage characteristics. 2021-10-27T17:24:45Z 2021-10-27T17:24:45Z 2021-09-13 2021-09-25T23:33:21Z Article http://purl.org/eprint/type/JournalArticle https://hdl.handle.net/1721.1/133176 Cryptography 5 (3): 24 (2021) PUBLISHER_CC http://dx.doi.org/10.3390/cryptography5030024 Creative Commons Attribution https://creativecommons.org/licenses/by/4.0/ application/pdf Multidisciplinary Digital Publishing Institute Multidisciplinary Digital Publishing Institute |
spellingShingle | Salomon, Dor Weiss, Amir Levi, Itamar Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title | Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title_full | Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title_fullStr | Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title_full_unstemmed | Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title_short | Improved Filtering Techniques for Single- and Multi-Trace Side-Channel Analysis |
title_sort | improved filtering techniques for single and multi trace side channel analysis |
url | https://hdl.handle.net/1721.1/133176 |
work_keys_str_mv | AT salomondor improvedfilteringtechniquesforsingleandmultitracesidechannelanalysis AT weissamir improvedfilteringtechniquesforsingleandmultitracesidechannelanalysis AT leviitamar improvedfilteringtechniquesforsingleandmultitracesidechannelanalysis |