检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
作 者:李新超 钟卫东[1,2] 张帅伟 马双棚 LI Xinchao;ZHONG Weidong;ZHANG Shuaiwei;MA Shuangpeng(Key Laboratory of Network and Information Security of Chinese Armed Police Force,Engineering University of ChineseArmed Police Force,Xi’an 710086,China;College of Cryptographic Engineering,Engineering University of Chinese Armed Police Force,Xi’an 710086,China)
机构地区:[1]武警工程大学网络与信息安全武警部队重点实验室,西安710086 [2]武警工程大学密码工程学院,西安710086
出 处:《计算机工程与应用》2018年第17期83-88,140,共7页Computer Engineering and Applications
基 金:国家自然科学基金(No.U1636114;No.61572521)
摘 要:针对SM4算法的安全实现面临DPA攻击严重威胁的问题,提出了一种新的SM4算法门限S盒实现方案。该方案基于门限实现技术,通过构造秘密共享函数代替仿射变换,将S盒输入和输出均分成2组进行处理。S盒输入经过秘密共享函数处理后,进入到复合域中进行求逆运算,并采用添加掩码的方法构造了符合门限实现技术分组性质的乘法器,提高了S盒的安全性。该方案在设计和实现过程中均满足门限实现技术对于分组数量和性质的要求,通过安全性分析和实验验证,能够抵御一阶DPA攻击,且具有较低的实现面积和功率消耗。A new scheme of S-box is proposed to focus on the problem that SM4 algorithm faces a serious threat of DPA attack. The input and output of new S-box are divided into two groups by constructing a secret sharing function instead of the affine transformation. After the input through the secret sharing function, it performs inversion operation in the composite field. In order to improve the S-box security, the multiplier is constructed which satisfies grouping nature of threshold implementation by means of adding random mask to the output of multiplier. This scheme meets the requirements of grouping number and nature for threshold implementation in the S-box design and implementation. It can resist first-order DPA attack through security analysis and experimental verification, and has lower implementation area and power consumption.
关 键 词:SM4 差分功耗分析(DPA) 门限实现 复合域 掩码
分 类 号:TP309.7[自动化与计算机技术—计算机系统结构]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:216.73.216.207
