Chosen-IV correlation power analysis on kcipher-2 hardware and a masking-based countermeasure

Takafumi Hibiki; Naofumi Homma; Yuto Nakano; Kazuhide Fukushima; Shinsaku Kiyomoto; Yutaka Miyake; Takafumi Aoki

doi:10.1587/transfun.E97.A.157

Chosen-IV correlation power analysis on kcipher-2 hardware and a masking-based countermeasure

Takafumi Hibiki, Naofumi Homma, Yuto Nakano, Kazuhide Fukushima, Shinsaku Kiyomoto, Yutaka Miyake, Takafumi Aoki

Research output: Contribution to journal › Article › peer-review

1 Citation (Scopus)

Abstract

This paper presents a chosen-IV (Initial Vector) correlation power analysis on the international standard stream cipher KCipher-2 together with an effective countermeasure. First, we describe a power analysis technique which can reveal the secret key (initial key) of KCipher-2 and then evaluate the validity of the CPA with experiments using both FPGA and ASIC implementations of KCipher-2 processors. This paper also proposes a masking-based countermeasure against the CPA. The concept of the proposed countermeasure is to mask intermediate data which pass through the non-linear function part including integer addition, substitution functions, and internal registers L1 and L2. We design two types of masked integer adders and two types of masked substitution circuits in order to minimize circuit area and delay, respectively. The effectiveness of the countermeasure is demonstrated through an experiment on the same FPGA platform. The performance of the proposed method is evaluated through the ASIC fabricated by TSMC 65 nm CMOS process technology. In comparison with the conventional design, the design with the countermeasure can be achieved by the area increase of 1.6 times at most.

Original language	English
Pages (from-to)	157-166
Number of pages	10
Journal	IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences
Volume	E97-A
Issue number	1
DOIs	https://doi.org/10.1587/transfun.E97.A.157
Publication status	Published - 2014 Jan

Keywords

Correlation power analysis
Kcipher-2
Random masking
Side-channel attacks

ASJC Scopus subject areas

Signal Processing
Computer Graphics and Computer-Aided Design
Electrical and Electronic Engineering
Applied Mathematics

Access to Document

10.1587/transfun.E97.A.157

Cite this

@article{84920c63cd2d4cc38b0a56da642239b2,

title = "Chosen-IV correlation power analysis on kcipher-2 hardware and a masking-based countermeasure",

abstract = "This paper presents a chosen-IV (Initial Vector) correlation power analysis on the international standard stream cipher KCipher-2 together with an effective countermeasure. First, we describe a power analysis technique which can reveal the secret key (initial key) of KCipher-2 and then evaluate the validity of the CPA with experiments using both FPGA and ASIC implementations of KCipher-2 processors. This paper also proposes a masking-based countermeasure against the CPA. The concept of the proposed countermeasure is to mask intermediate data which pass through the non-linear function part including integer addition, substitution functions, and internal registers L1 and L2. We design two types of masked integer adders and two types of masked substitution circuits in order to minimize circuit area and delay, respectively. The effectiveness of the countermeasure is demonstrated through an experiment on the same FPGA platform. The performance of the proposed method is evaluated through the ASIC fabricated by TSMC 65 nm CMOS process technology. In comparison with the conventional design, the design with the countermeasure can be achieved by the area increase of 1.6 times at most.",

keywords = "Correlation power analysis, Kcipher-2, Random masking, Side-channel attacks",

author = "Takafumi Hibiki and Naofumi Homma and Yuto Nakano and Kazuhide Fukushima and Shinsaku Kiyomoto and Yutaka Miyake and Takafumi Aoki",

year = "2014",

month = jan,

doi = "10.1587/transfun.E97.A.157",

language = "English",

volume = "E97-A",

pages = "157--166",

journal = "IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences",

issn = "0916-8508",

publisher = "Maruzen Co., Ltd/Maruzen Kabushikikaisha",

number = "1",

}

TY - JOUR

T1 - Chosen-IV correlation power analysis on kcipher-2 hardware and a masking-based countermeasure

AU - Hibiki, Takafumi

AU - Homma, Naofumi

AU - Nakano, Yuto

AU - Fukushima, Kazuhide

AU - Kiyomoto, Shinsaku

AU - Miyake, Yutaka

AU - Aoki, Takafumi

PY - 2014/1

Y1 - 2014/1

N2 - This paper presents a chosen-IV (Initial Vector) correlation power analysis on the international standard stream cipher KCipher-2 together with an effective countermeasure. First, we describe a power analysis technique which can reveal the secret key (initial key) of KCipher-2 and then evaluate the validity of the CPA with experiments using both FPGA and ASIC implementations of KCipher-2 processors. This paper also proposes a masking-based countermeasure against the CPA. The concept of the proposed countermeasure is to mask intermediate data which pass through the non-linear function part including integer addition, substitution functions, and internal registers L1 and L2. We design two types of masked integer adders and two types of masked substitution circuits in order to minimize circuit area and delay, respectively. The effectiveness of the countermeasure is demonstrated through an experiment on the same FPGA platform. The performance of the proposed method is evaluated through the ASIC fabricated by TSMC 65 nm CMOS process technology. In comparison with the conventional design, the design with the countermeasure can be achieved by the area increase of 1.6 times at most.

AB - This paper presents a chosen-IV (Initial Vector) correlation power analysis on the international standard stream cipher KCipher-2 together with an effective countermeasure. First, we describe a power analysis technique which can reveal the secret key (initial key) of KCipher-2 and then evaluate the validity of the CPA with experiments using both FPGA and ASIC implementations of KCipher-2 processors. This paper also proposes a masking-based countermeasure against the CPA. The concept of the proposed countermeasure is to mask intermediate data which pass through the non-linear function part including integer addition, substitution functions, and internal registers L1 and L2. We design two types of masked integer adders and two types of masked substitution circuits in order to minimize circuit area and delay, respectively. The effectiveness of the countermeasure is demonstrated through an experiment on the same FPGA platform. The performance of the proposed method is evaluated through the ASIC fabricated by TSMC 65 nm CMOS process technology. In comparison with the conventional design, the design with the countermeasure can be achieved by the area increase of 1.6 times at most.

KW - Correlation power analysis

KW - Kcipher-2

KW - Random masking

KW - Side-channel attacks

UR - http://www.scopus.com/inward/record.url?scp=84891786599&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=84891786599&partnerID=8YFLogxK

U2 - 10.1587/transfun.E97.A.157

DO - 10.1587/transfun.E97.A.157

M3 - Article

AN - SCOPUS:84891786599

SN - 0916-8508

VL - E97-A

SP - 157

EP - 166

JO - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

JF - IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

IS - 1

ER -

Chosen-IV correlation power analysis on kcipher-2 hardware and a masking-based countermeasure

Abstract

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this