Forschung | AAU Campus

Projekt: Sound and Early Assessment of Leakage f...

Stammdaten

Englisch

Titel:

Sound and Early Assessment of Leakage for Embedded Software

Beschreibung:

Side channel attacks use, alongside information such as plaintexts or ciphertexts, leakage about the (secret) keydependent intermediate state(s), and deliver a `key ranking' as a result. Kocher's attacks showed, that formany practical implementations, observing a few encryptions made complete key recovery possible in practice. The academic research into combating these attacks so far has largely focused on approaches and tools to equip specialisedcryptographic engineers with access to a specialist lab and tools. The research hypothesis of this CoG is that one can make meaningful statements about the leakage behaviour ofarbitrary implementations on small devices by utilising a-priori derived (instruction level) leakage models. Our visionis to enable developers with limited domain-specific knowledge to perform side channel evaluations at design timewithout access to a fully equipped lab, by creating tools and methodologies that integrate a priori derived instructionlevel leakage models into a standard compiler.

This vision is articulated in three overarching research objectives:

1. Designing novel profiling strategies including novel leakage acquisition techniques to generate leakagemodels for a specific target device.

2. Developing fast and comprehensive methods to support rapid evaluations (WP2).

3. Integration of semantics, syntax and tools capable of using profiling information into a standard compilerwith the aim to evaluate and improve the side channel resilience of the target code.

Addressing these goals simultaneously is required to make substantial progress towards the overall vision of thisproject. As a final result, we will make demonstrators available: using a off-the shelf components, we supply thenecessary tools and compiler enhancements including samples of cryptographic implementations to conduct analysesand demonstrate improvements regarding side channel resilience.

Schlagworte:

Side channel analysis, leakage resilient, physical security

Kurztitel:	SEAL
Zeitraum:	01.06.2019 - 31.08.2023
Kontakt-Email:	elisabeth.oswald@aau.at
Homepage:	-

MitarbeiterInnen

Funktion

Zeitraum

(intern)

Projektleiter/in
(Bevollmächtigte/r)

01.06.2019 - 31.08.2023

Zuordnung

Organisationseinheit

Fakultät für Technische Wissenschaften

Kategorisierung

Projekttyp	Forschungsförderung (auf Antrag oder Ausschreibung)
Förderungstyp	§27
Forschungstyp	Angewandte Forschung
Sachgebiete	1020 - Informatik
Forschungscluster	Humans in the Digital Age
Genderrelevanz	Genderrelevanz nicht ausgewählt
Projektfokus	Science to Science (Qualitätsindikator: I) Klassifikationsraster der zugeordneten Organisationseinheiten: Institut für Artificial Intelligence und Cybersecurity
Arbeitsgruppen	Keine Arbeitsgruppe ausgewählt

Finanzierung

Förderprogramm

Organisation: European Commission

Kooperationen

Keine Partnerorganisation ausgewählt

Forschungsaktivitäten

Hier werden alle mit diesem Projekt in Zusammenhang stehenden Forschungsaktivitäten angezeigt. Mit dem untenstehenden Link können sie sich diese Forschungsaktivitäten in der Suche anzeigen lassen und gegebenenfalls exportieren.

(Achtung: Externe Aktivitäten werden im Suchergebnis nicht mitangezeigt)

Zugehörige Forschungsaktivitäten in der Suche anzeigen

Projekte	Keine verknüpften Projekte vorhanden
Publikationen	An Instruction Set Extension to Support Software-Based Masking An Instruction Set Extension to Support Software-Based Masking (2021) S. Gao, B. Marshall, D. Page, F. Regazzoni, J. Großschädl, T. Pham IACR Transactions on Cryptographic Hardware and Embedded Systems Kein Verlag ausgewählt zur Publikation An Analytic Attack Against ARX Addition Exploiting Standard Side-Channel Leakage An Analytic Attack Against ARX Addition Exploiting Standard Side-Channel Leakage (2021) E. Oswald, Y. Yan, S. Vivek ICISSP 2021 Kein Verlag ausgewählt zur Publikation A Novel Completeness Test for Leakage Models and Its Application to Side Channel Attacks and Responsibly Engineered Simulators A Novel Completeness Test for Leakage Models and Its Application to Side Channel Attacks and Responsibly Engineered Simulators (2022) E. Oswald Eurocrypt Kein Verlag ausgewählt zur Publikation A Systematic Appraisal of Side Channel Evaluation Strategies A Systematic Appraisal of Side Channel Evaluation Strategies (2020) E. Oswald, M. Azouaoui, D. Bellizia, I. Buhan, N. Debande, S. Duval, C. Giraud, È. Jaulmes, F. Koeune, F. Standaert, C. Whitnall Security Standardisation Research Kein Verlag ausgewählt zur Publikation Exploring Parallelism to Improve the Performance of FrodoKEM in Hardware Exploring Parallelism to Improve the Performance of FrodoKEM in Hardware (2021) E. Oswald, F. Regazzoni, J. Howe, M. Martinoli Journal of Cryptographic Engineering Kein Verlag ausgewählt zur Publikation Neyman's Smoothness Test: a Trade-off between Moment-based and Distribution-basedLeakage Detections Neyman's Smoothness Test: a Trade-off between Moment-based and Distribution-basedLeakage Detections (2021) E. Oswald, Y. Yan, S. Gao IEEE TIFS Kein Verlag ausgewählt zur Publikation Towards Micro-architectural Leakage Simulators Towards Micro-architectural Leakage Simulators (2022) E. Oswald, S. Gao, D. Page Eurocrypt Kein Verlag ausgewählt zur Publikation
Veranstaltungen	Keine verknüpften Veranstaltung vorhanden
Vorträge	Side Channels: Attacks, Defences, and Evaluation Schemes (Part 1) Side Channels: Attacks, Defences, and Evaluation Schemes (Part 1) E. Oswald, J. Howe seit 17.11.2021 Zum Vortrag Lightweight Crypto Implementations or Side Channel Resilience? Lightweight Crypto Implementations or Side Channel Resilience? E. Oswald seit 16.10.2021 Zum Vortrag Leakage Profiling: Methods, Reasons, and some Thoughts about Responsibility. Leakage Profiling: Methods, Reasons, and some Thoughts about Responsibility. E. Oswald seit 26.05.2021 Zum Vortrag Profiling methods in the context of side-channel attacks Profiling methods in the context of side-channel attacks E. Oswald seit 22.02.2021 Zum Vortrag Security Engineering: From Crypto Theory to Implementation Practice Security Engineering: From Crypto Theory to Implementation Practice E. Oswald seit 18.06.2021 Zum Vortrag Side Channels: Attacks, Defences, and Evaluation Schemes (Part 2) Side Channels: Attacks, Defences, and Evaluation Schemes (Part 2) E. Oswald, J. Howe seit 01.12.2021 Zum Vortrag Can you trust your pacemaker? Can you trust your pacemaker? E. Oswald seit 01.10.2021 Zum Vortrag Towards A Reliable Methodology for Creating Leakage Resilient Software Implementations Towards A Reliable Methodology for Creating Leakage Resilient Software Implementations E. Oswald seit 16.08.2020 Zum Vortrag A Systematic Appraisal of Side Channel Evaluation Strategies A Systematic Appraisal of Side Channel Evaluation Strategies E. Oswald seit 30.11.2020 Zum Vortrag