基于多阶段相关功耗分析的SM4-XTS侧信道分析方法  

作　　者：赵毅强 闫明凯 张启智 高雅 夏显召 郭阳[4] 王耀华[4] 何家骥 ZHAO Yiqiang;YAN Mingkai;ZHANG Qizhi;GAO Ya;XIA Xianzhao;GUO Yang;WANG Yaohua;HE Jiaji(School of Microelectronics,Tianjin University,Tianjin 300072,China;Tianjin Key Laboratory of Imaging and Perception Microelectronics Technology,Tianjin 300072,China;CATARC Technology Co.,Ltd.,Shenzhen 518118,China;School of Computer Science,National University of Defense Technology,Changsha 410073,China)

机构地区：[1]天津大学微电子学院,天津300072 [2]天津市成像与感知微电子技术重点实验室,天津300072 [3]中汽研科技有限公司,深圳518118 [4]国防科技大学计算机学院,长沙410073

出　　处：《电子与信息学报》2024年第11期4161-4169,共9页Journal of Electronics & Information Technology

基　　金：国家重点研发计划(2021YFB3100903)。

摘　　要：带密文挪用的XEX可调分组密码(XTS)被广泛应用于存储加密中,随着大数据计算与新型侧信道分析方法的提出与应用,XTS加密模式的安全性成为一个值得关注的问题。近年来,已有部分研究针对XTS模式进行了侧信道的分析研究,通过确定部分密钥与调整值tweak,进而缩小密钥检索范围,但并没有实现对XTS模式系统的分析。该文提出一种针对SM4-XTS电路的侧信道分析技术,通过结合传统的相关功耗分析(CPA)与多阶段融合的CPA技术,解决了针对调整值模乘迭代导致的二进制数移位问题,从而实现调整值与密钥的精确提取。为了验证这种分析技术的有效性,在FPGA上实现了SM4-XTS加密模块来模拟实际情况中的加密存储器。实验结果表明,在10000条功耗曲线下,该技术可以成功提取目标加密电路的部分调整值与密钥。The XEX-based Tweaked-codebook mode with ciphertext Stealing(XTS)is widely used in storage encryption.With the emergence and application of big data computing and novel side-channel analysis methods,the security of the XTS encryption mode has become a matter of concern.Recent studies have attempted side-channel analysis on the XTS mode,aiming to narrow down the key search space by identifying partial keys and tweak values,but a comprehensive analysis of the XTS mode system has not been achieved.In this paper,a side-channel analysis technique targeting the SM4-XTS circuit is proposed.By combining traditional Correlation Power Analysis(CPA)with a multi-stage fusion CPA technique,the technique addresses the binary number shifting issue caused by the iterative modulation multiplication of the tweak values,enabling precise extraction of both the tweak values and keys.To validate the effectiveness of this analytical technique,an SM4-XTS encryption module is implemented on an FPGA to simulate real-world encryption memory scenarios.Experimental results demonstrate that the technique can successfully extract partial tweak values and keys from the target encryption circuit using only 10000 power traces.

关 键 词：SM4-XTS 侧信道分析 分组密码 相关功耗分析 

分 类 号：TN918[电子电信—通信与信息系统]