针对真实RFID标签的侧信道攻击  

作　　者：戴立 董高峰 胡红钢[1] 俞能海[1] DAI Li;DONG Gao-Feng;HU Hong-Gang;YU Neng-Hai(CAS Key Lab of Electromagnetic Space Information,University of Science and Technology of China,Hefei 230027,China)

机构地区：[1]中国科学技术大学中国科学院电磁空间信息重点实验室

出　　处：《密码学报》2019年第3期383-394,共12页Journal of Cryptologic Research

基　　金：国家自然科学基金(61522210,61632013)~~

摘　　要：随着侧信道分析理论的不断发展,其对缺乏保护的小型密码设备如RFID标签等的威胁也越来越严重.为了保证数据的安全性,不少种类的RFID标签可对通讯时的数据进行加密,然而目前这类RFID标签在软硬件设计上仍然缺乏足够的抗侧信道攻击措施.为研究在将侧信道分析理论应用于真实RFID标签攻击时的难度和实际攻击效果,本文选取了近年来新兴的一款具有广阔应用前景的可编程RFID标签(TB-WISP 5.0)进行侧信道攻击.攻击从目标所运行的简单双向认证协议中的选择明文攻击漏洞入手,以无触发信号、非侵入式的采集方式获取到了目标运行AES加密时的功耗和电磁泄露轨迹,并分别利用这两种轨迹,通过侧信道分析理论成功恢复出了其完整的密钥信息.这一实验结果充分说明了当下加强小型密码设备抗侧信道攻击设计的迫切性和必要性.之后,本文给出了在具有低功耗、轻量化、快速计算需求的可编程RFID标签设备上设计抗侧信道分析措施的一些建议.With the theory of side channel analysis being developed continuously,it poses an increasingly serious threat to small crypto devices such as RFID tags with security backwardness.In order to protect data security,many RFID tags are able to encrypt communication data,but most of them are still lack of enough side channel resistance measures.In order to study the difficulties and the actual attack effects when applying the side channel analysis theory to attack real RFID tags,a programmable RFID tag(TB-WISP 5.0)which has broad application prospects is selected for the side channel attack in this study.The attack started from a chosen-plaintext attack in the simple mutual authentication protocol,power and electromagnetic traces of the AES encryption are acquired by the way of non-trigger signal and non-invasive acquisition,and with the two kinds of traces,complete secret key can be successfully recovered under the guide of the side channel analysis theory.The results fully proved the urgency and necessity to improve the side channel resistance design on small crypto devices at present.And some suggestions are given for the design of side channel resistance measures on the programmable RFID tags which require low power consumption,light weight,and quick calculation.

关 键 词：侧信道分析 功耗分析攻击 RFID标签 

分 类 号：TN918.4[电子电信—通信与信息系统] TP391.44[电子电信—信息与通信工程]