电子学报 ›› 2022, Vol. 50 ›› Issue (5): 1066-1074.DOI: 10.12263/DZXB.20210223

• 学术论文 • 上一篇    下一篇

一种基于门限与感染技术的SM4算法综合防护实现

焦志鹏1,2, 姚富1,2, 陈华1,2, 王舰1,2, 匡晓云3, 黄开天3   

  1. 1.中国科学院软件研究所可信计算与信息保障实验室, 北京 100190
    2.中国科学院大学, 北京 100049
    3.南方电网科学研究院, 广东 广州 510663
  • 收稿日期:2021-02-04 修回日期:2021-06-03 出版日期:2022-05-25 发布日期:2022-06-18
  • 作者简介:焦志鹏 男,1992年生于河南省平顶山市,现为中国科学院软件研究所博士研究生,研究方向为侧信道分析与防护. E-mail: zhipeng2017@iscas.ac.cn
    姚 富 男,1990年生于山西省朔州市,现为中国科学院软件研究所博士研究生,研究方向为侧信道分析与防护. E-mail: yaofu2020@iscas.ac.cn
    陈 华 女,1976年生于山东省日照市,现为中国科学院软件研究所正高级工程师,博士生导师,研究方向为侧信道分析与防护、密码检测. E-mail: chenhua@iscas.ac.cn
  • 基金资助:
    国家重点研发计划(2018YFB0904900)

A Comprehensive Protection Implementation of SM4 Algorithm Based on Threshold and Infection Technology

JIAO Zhi-peng1,2, YAO Fu1,2, CHEN Hua1,2, WANG Jian1,2, KUANG Xiao-yun3, HUANG Kai-tian3   

  1. 1.Trusted Computing and Information Assurance Laboratory,Institute of Software,Chinese Academy of Sciences,Beijing 100190,China
    2.University of Chinese Academy of Sciences,Beijing 100049,China
    3.Electric Power Research Institute,China Southern Power Grid,Guangzhou,Guangdong 510663,China
  • Received:2021-02-04 Revised:2021-06-03 Online:2022-05-25 Published:2022-06-18

摘要:

侧信道攻击和故障攻击对于密码算法的实现安全性有着巨大的威胁.针对这样的现状,本文结合门限实现和乘法感染防护思想构造了一种具有抵抗侧信道攻击和故障攻击能力的综合防护方案,以门限实现思想为基础实现了对于侧信道攻击的防护,以乘法感染思想为基础实现了对于故障攻击的防护,二者相互结合使得综合防护方案同时具有抵抗侧信道攻击和故障攻击的能力.此外以门限实现改善了乘法感染防护中随机数为0的缺陷,并且结合随机置换思想进一步提高了防护方案抵抗故障攻击的能力.随后本文依据以上综合防护理论构造了一种适用于SM4算法的综合防护实现方案,并在现场可编程门阵列(Field Programmable Gate Array,FPGA)上进行了具体的实现,最后通过理论分析和安全性评估实验验证了该综合防护方案的安全性.

关键词: 侧信道攻击, 故障攻击, 门限实现, 感染, 综合防护, SM4算法

Abstract:

Side channel attack and fault attack are great threats to the security of cryptography implementation. In view of this situation, this paper combines the threshold implementation(TI) and multiplicative infection protection idea to construct a comprehensive protection scheme with the ability to resist side channel attack and fault attack. Based on the idea of threshold implementation, the protection against side channel attack is realized. Based on the idea of multiplicative infection, the protection against fault attack is realized. The combination of the two theory makes the comprehensive protection scheme capable of resisting side channel attack and fault attack at the same time. In addition, threshold implementation improves the flaw of multiplicative infection when the random number is 0, and the ability of the protection scheme to resist fault attack is further improved by combining the idea of random permutation. Then, based on the above comprehensive protection theory, this paper constructs a comprehensive protection implementation scheme suitable for SM4 algorithm, and carries out a specific implementation on field programmable gate array(FPGA). Finally, the security of the comprehensive protection scheme is verified through theoretical analysis and security evaluation experiments.

Key words: side channel attack, fault attack, threshold implementation, infection, comprehensive protection, SM4 algorithm

中图分类号: