针对AES的Cache计时模板攻击研究  被引量:7

Research of Cache Timing Template Attacks on AES

在线阅读下载全文

作  者:王韬[1] 赵新杰[1] 郭世泽[2] 张帆[3] 刘会英[1] 郑天明[1] 

机构地区:[1]军械工程学院计算机工程系,石家庄050003 [2]北方电子设备研究所,北京100083 [3]康涅狄格大学计算机科学与工程系斯托斯康涅狄格州06269美国

出  处:《计算机学报》2012年第2期325-341,共17页Chinese Journal of Computers

基  金:国家自然科学基金(60772082,61173191)资助~~

摘  要:受微处理器硬件架构和操作系统的影响,分组密码查找S盒不同索引执行时间存在差异,构成了S盒索引的天然泄漏源.该文采用"面向字节、分而治之"的旁路攻击思想,对AES抗Cache计时模板攻击能力进行了研究.首先分析了分组密码访问Cache时间差异泄漏机理,直观地给出了基于碰撞和模板的两种Cache计时攻击方法;其次给出了Cache计时外部模板攻击模型,提出了基于Pearson相关性的模板匹配算法,对128位AES加密第一轮和最后一轮分别进行了攻击应用;为克服外部模板攻击需要一个模板密码服务器的限制,提出了Cache计时内部模板攻击模型,并对AES进行了攻击应用;最后,在不同环境、操作系统、加密Cache初始状态、密码库中,分别进行攻击实验,同前人工作进行了比较分析,并给出了攻击的有效防御措施.Due to the impact of micro-architectures and operating systems, the execution time of different S-Box lookups in block ciphers have some variance, which may cause the leakages of theS-Box lookup indexes. Utilizing the "byte oriented and divide and conquer" strategy in side channel analysis, this paper analyzes the resistance of AES implementations against Cache timing tern-plate attacks. First, the mechanism of different Cache access time is analyzed, and two Cache timing attacks are provided (collision-based and template-based). Second, the model of Cachetiming external template attack is built, and a new template matching algorithm is proposed which is based on Pearson correlation factor. Two real attacks on the first and the last round ofAES are launched successfully. To overcome the requirement of a template platform in external template attacks, an internal template attack is proposed and applied to AES. Finally, several ex-tended attacks on AES are conducted under different settings, operating systems, Cache initial states, and crypto libraries. The experimental results are compared with the previous work, andan effective countermeasure is also suggested.

关 键 词:高级加密标准 分组密码 CACHE计时攻击 模板攻击 查找S盒 防御措施 

分 类 号:TP393[自动化与计算机技术—计算机应用技术]

 

参考文献:

正在载入数据...

 

二级参考文献:

正在载入数据...

 

耦合文献:

正在载入数据...

 

引证文献:

正在载入数据...

 

二级引证文献:

正在载入数据...

 

同被引文献:

正在载入数据...

 

相关期刊文献:

正在载入数据...

相关的主题
相关的作者对象
相关的机构对象