Fault Injection Attacks on Cryptographic Devices: Theory, Practice, and Countermeasures

Abstract : Implementations of cryptographic algorithms continue to proliferate in consumer products due to the increasing demand for secure transmission of confidential information. Although the current standard cryptographic algorithms proved to withstand exhaustive attacks, their hardware and software implementations have exhibited vulnerabilities to side channel attacks, e.g., power analysis and fault injection attacks. This paper focuses on fault injection attacks that have been shown to require inexpensive equipment and a short amount of time. The paper provides a comprehensive description of these attacks on cryptographic devices and the countermeasures that have been developed against them. After a brief review of the widely used cryptographic algorithms, we classify the currently known fault injection attacks into low-cost ones (which a single attacker with a modest budget can mount) and high-cost ones (requiring highly skilled attackers with a large budget). We then list the attacks that have been developed for the important and commonly used ciphers and indicate which ones have been successfully used in practice. The known countermeasures against the previously described fault injection attacks are then presented, including intrusion detection and fault detection. We conclude the survey with a discussion on the interaction between fault injection attacks (and the corresponding countermeasures) and power analysis attacks.
Type de document :
Article dans une revue
Proceedings of the IEEE, Institute of Electrical and Electronics Engineers, 2012, 100 (11), pp.3056 - 3076. 〈10.1109/JPROC.2012.2188769〉
Liste complète des métadonnées

https://hal.inria.fr/hal-01110932
Contributeur : Brigitte Briot <>
Soumis le : jeudi 29 janvier 2015 - 11:30:15
Dernière modification le : vendredi 25 mai 2018 - 12:02:05

Lien texte intégral

Identifiants

Collections

Citation

Alessandro Barenghi, Luca Breveglieri, Israel Koren, David Naccache. Fault Injection Attacks on Cryptographic Devices: Theory, Practice, and Countermeasures. Proceedings of the IEEE, Institute of Electrical and Electronics Engineers, 2012, 100 (11), pp.3056 - 3076. 〈10.1109/JPROC.2012.2188769〉. 〈hal-01110932〉

Partager

Métriques

Consultations de la notice

285