uBlock算法的低延迟一阶门限实现方法

姚富; 陈华; 范丽敏

doi:10.12263/DZXB.20231031

您当前的位置：

首页 >

文章列表页 >

uBlock算法的低延迟一阶门限实现方法

学术论文 | 更新时间：2025-12-08

- uBlock算法的低延迟一阶门限实现方法
- Low-Latency First-Order Threshold Implementation of uBlock
- 电子学报 2024年52卷第4期页码：1250-1259
- 作者机构：
  
  1.中国科学院软件研究所可信计算与信息保障实验室，北京 100190
  2.中国科学院大学，北京 100049
- 作者简介：
  
  [ "姚富男，1990年10月出生于山西省朔州市.现为中国科学院软件研究所博士研究生.研究方向为密码算法侧信道分析与防护. E-mail: yaofu2020@iscas.ac.cn" ]
  [ "陈华女，1976年10月生于山东省日照市.现为中国科学院软件研究所正高级工程师，博士生导师.研究方向为侧信道分析与防护、密码检测. E-mail: chenhua@iscas.ac.cn" ]
  [ "范丽敏女，1978年12月生于内蒙古自治区赤峰市.现为中国科学院软件研究所高级工程师，硕士生导师.研究方向为侧信道分析与防护、密码检测. E-mail: fanlimin@iscas.ac.cn" ]
- 基金信息：
  
  国家自然科学基金(62172395)
- DOI：10.12263/DZXB.20231031
  中图分类号： TN918;TP309
- 收稿：2023-11-01，
  
  修回：2024-01-21，
  
  纸质出版：2024-04-25
- 稿件说明：
移动端阅览
姚富, 陈华, 范丽敏. uBlock算法的低延迟一阶门限实现方法[J]. 电子学报, 2024, 52(04): 1250-1259.

YAO Fu, CHEN Hua, FAN Li-min. Low-Latency First-Order Threshold Implementation of uBlock[J]. Acta Electronica Sinica, 2024, 52(04): 1250-1259.
姚富, 陈华, 范丽敏. uBlock算法的低延迟一阶门限实现方法[J]. 电子学报, 2024, 52(04): 1250-1259. DOI：10.12263/DZXB.20231031

YAO Fu, CHEN Hua, FAN Li-min. Low-Latency First-Order Threshold Implementation of uBlock[J]. Acta Electronica Sinica, 2024, 52(04): 1250-1259. DOI：10.12263/DZXB.20231031

摘要

目前已有文献给出了uBlock分组密码算法的侧信道防护方案，但是这些方案不仅延迟较高，难以适用于低延迟高吞吐场景，而且在毛刺探测模型下缺乏可证明安全性.针对这一问题，本文给出了在毛刺探测模型下具有可证明安全性的uBlock算法的低延迟门限实现方案.此外，我们引入了Changing of the Guards技术来避免防护方案在执行过程中需要额外随机数.对于防护方案的安全性，我们用自动化评估工具SILVER验证了S盒的毛刺探测安全性，并用泄露评估技术TVLA（Test Vector Leakage Assessment）验证了防护方案的整个电路的安全性.最后，我们用Design Compiler工具对防护方案的性能消耗情况进行了评估.评估结果显示，与序列化实现方式的uBlock防护方案相比，我们的防护方案的延迟能够减少约95%.

Abstract

The existing side-channel protection schemes for the uBlock algorithm suffer from high latency

making them unsuitable for low-latency and high-throughput scenarios. Additionally

these schemes lack provable security under the glitch-extended probing model. To address these issues

this paper presents a low-latency Threshold Implementation of the uBlock algorithm with provable security under the glitch-extended probing model. Furthermore

we introduce the Changing of the Guards technique to eliminate the need for additional random numbers during the execution of the protection scheme. To validate the security of our protection scheme

we employ the automated evaluation tool SILVER to assess the glitch-extended probing security of the S-box and utilize the leakage evaluation technology TVLA (Test Vector Leakage Assessment) to verify the security of the entire circuit. Finally

we evaluate the performance overhead of our protection scheme using the design compiler tool. The evaluation results demonstrate that our scheme achieves a significant reduction in latency

approximately 95% less compared to serialized implementations of uBlock protection schemes.

关键词

Keywords

references

BIHAM E , SHAMIR A . Differential cryptanalysis of DES-like cryptosystems [C ] // Advances in Cryptology — CRYPTO'90 . Berlin : Springer , 1990 : 2 - 21 .

MATSUI M . Linear cryptanalysis method for DES cipher [C ] // Advances in Cryptology — EUROCRYPT'93 . Berlin : Springer , 1994 : 386 - 397 .

KOCHER P C . Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems [C ] // Advances in Cryptology — CRYPTO'96 . Berlin : Springer Berlin Heidelberg , 1996 : 104 - 113 .

XIE N J , GONG Z , TANG Y F , et al . Protecting white-box block ciphers with galois/counter mode [C ] // 2022 IEEE Conference on Dependable and Secure Computing (DSC) . Piscataway : IEEE , 2022 : 1 - 7 .

KOCHER P , JAFFE J , JUN B . Differential power analysis [C ] // Advances in Cryptology — CRYPTO'99 . Berlin : Springer Berlin Heidelberg , 1999 : 388 - 397 .

QUISQUATER J J , SAMYDE D . Electromagnetic analysis (EMA): Ｍeasures and counter-measures for smart cards [C ] // Smart Card Programming and Security . Berlin : Springer Berlin Heidelberg , 2001 : 200 - 210 .

BONEH D , DEMILLO R A , LIPTON R J . On the importance of checking cryptographic protocols for faults [C ] // Advances in Cryptology — EUROCRYPT'97 . Berlin : Springer Berlin Heidelberg , 1997 : 37 - 51 .

CHARI S , JUTLA C S , RAO J R , et al . Towards sound approaches to counteract power-analysis attacks [C ] // Advances in Cryptology — CRYPTO'99 . Berlin : Springer Berlin Heidelberg , 1999 : 398 - 412 .

ISHAI Y , SAHAI A , WAGNER D . Private circuits: Securing hardware against probing attacks [C ] // Advances in Cryptology - CRYPTO 2003 . Berlin : Springer , 2003 : 463 - 481 .

MANGARD S , PRAMSTALLER N , OSWALD E . Successfully attacking masked AES hardware implementations [C ] // Cryptographic Hardware and Embedded Systems — CHES 2005 . Berlin : Springer , 2005 : 157 - 171 .

NIKOVA S , RECHBERGER C , RIJMEN V . Threshold implementations against side-channel attacks and glitches [C ] // Information and Communications Security . Berlin : Springer , 2006 : 529 - 545 .

MORADI A , POSCHMANN A , LING S , et al . Pushing the limits: A very compact and a threshold implementation of AES [C ] // Advances in Cryptology — EUROCRYPT 2011 . Berlin : Springer , 2011 : 69 - 88 .

POSCHMANN A , MORADI A , KHOO K , et al . Side-channel resistant crypto for less than 2, 300 GE [J ] . Journal of Cryptology , 2011 , 24 ( 2 ): 322 - 345 .

MORADI A , SCHNEIDER T . Side-channel analysis protection and low-latency in action [C ] // Advances in Cryptology — ASIACRYPT 2016 . Berlin : Springer , 2016 : 517 - 547 .

WU W L , ZHANG L , ZHENG Y F , et al . The block cipher uBlock [J ] . Journal of Cryptologic Research , 2019 , 6 ( 6 ): 690 - 703 .

BILGIN B , NIKOVA S , NIKOV V , et al . Threshold implementations of all 3×3 and 4×4 S-boxes [C ] // Cryptographic Hardware and Embedded Systems — CHES 2012 . Berlin : Springer , 2012 : 76 - 91 .

焦志鹏 , 陈华 , 姚富 , 等 . uBlock算法的低代价门限实现侧信道防护方法 [J ] . 计算机学报 , 2023 , 46 ( 3 ): 657 - 670 .

JIAO Z P , CHEN H , YAO F , et al . The low cost threshold implementation method of uBlock algorithm against side-channel attacks [J ] . Chinese Journal of Computers , 2023 , 46 ( 3 ): 657 - 670 . (in Chinese)

MANGARD S , POPP T , GAMMEL B M . Side-channel leakage of masked CMOS gates [C ] // Lecture Notes in Computer Science . Berlin : Springer , 2005 : 351 - 365 .

FAUST S , GROSSO V , MERINO DEL POZO S , et al . Composable masking schemes in the presence of physical defaults & the robust probing model [J ] . IACR Transactions on Cryptographic Hardware and Embedded Systems , 2018 : 89 - 120 .

KNICHEL D , SASDRICH P , MORADI A . SILVER — statistical independence and leakage verification [C ] // Advances in Cryptology — ASIACRYPT 2020 . Cham : Springer International Publishing , 2020 : 787 - 816 .

REZAEI SHAHMIRZADI A , MORADI A . Re-consolidating first-order masking schemes [J ] . IACR Transactions on Cryptographic Hardware and Embedded Systems , 2020 : 305 - 342 .

REPARAZ O , BILGIN B , NIKOVA S , et al . Consolidating masking schemes [C ] // Lecture Notes in Computer Science . Berlin : Springer , 2015 : 764 - 783 .

浏览量

下载量

CSCD

文章被引用时，请邮件提醒。

提交

工具集

关联资源

一种基于门限与感染技术的SM4算法综合防护实现

一种保护芯片设计的多变量加密及其电路结构

基于注意力惩罚和自适应学习的场景图增强联合多模态方面情感分析

基于自适应群体掩码图卷积网络的行人轨迹预测

基于信息融合的区块链系统隐匿安全补丁识别及迁移技术