检索规则说明:AND代表“并且”;OR代表“或者”;NOT代表“不包含”;(注意必须大写,运算符两边需空一格)
检 索 范 例 :范例一: (K=图书馆学 OR K=情报学) AND A=范并思 范例二:J=计算机应用与软件 AND (U=C++ OR U=Basic) NOT M=Visual
名 称:
注 释:
作 者:MA Xiangliang ZHANG Lizhen WU Liji LI Xia ZHANG Xiangmin LI Bing LIU Yuling
机构地区:[1]School of Integrated Circuits,Tsinghua University,Beijing National Research Center for Information Science and Technology,Beijing 100084,China [2]National Research Center for Information Technology Security,Beijing 100084,China [3]Institute of Information Engineering,Chinese Academy of Sciences,Beijing 100093,China [4]School of Cyber Security,University of Chinese Academy of Sciences,Beijing 101408,China
出 处:《Chinese Journal of Electronics》2022年第1期68-78,共11页电子学报(英文版)
基 金:supported by the National Key Research and Development Program of China(2018YFB0904901);National Natural Science Foundation of China(61702508,61802404)。
摘 要:Since differential fault analysis(DFA)was first implemented on data encryption standard(DES), many scholars have improved this attack and extended the limit of the original last two rounds to the earlier rounds. However, the performance of the novel attacks which target middle rounds is not effective, i.e. the number of correct/incorrect ciphertexts required is very large and the recovered result maybe not correct. We address this problem by presenting new DFA methods that can break 3 DES when injecting faults at round 12 or 13.By simulating the process of single-bit error propagation,we have built two kinds of error propagation models as well as an intermediate error propagation state table.Then we simplify the intermediate states into state templates that will be further used to locate the injected fault position, which is the main difficulty of implementing fault injection in the middle rounds. Finally, in terms of the idea of error propagation and probability theory, we can recover the last round key only using 2 sets of correct/incorrect ciphertexts when inducting fault in the13 th round and 4 sets of correct/incorrect ciphertexts when inducting fault in the 12 th round.
关 键 词:Fault injection Differential fault analysis(DFA) Data encryption standard(DES) Error propagation model
分 类 号:TN918.4[电子电信—通信与信息系统]
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在载入数据...
正在链接到云南高校图书馆文献保障联盟下载...
云南高校图书馆联盟文献共享服务平台 版权所有©
您的IP:18.117.241.170