摘要
旁路攻击技术是对密码安全的严重威胁,其作用过程在于利用了密码软硬件实现上的特性而降低了密码分析的复杂性。AES作为目前与未来加密的主要标准,其安全性具有特殊重要的意义。然而,近期的研究表明,主流计算平台上的AES加密程序,很可能会遭受基于Cache所泄漏的运行信息而导致的攻击。本文依据相关的研究,介绍了基于Cache的AES攻击的原理,描述了其现状与发展,分析了这种攻击的现实可行性,并且,说明了反制攻击的措施建议。
Side-channel attacks bring forth serious threat to cryptography security; it reduces the complexity of cryptanalysis by utilizing some characteristics in hardware/software implementation of the cipher. Being the main encryption standard for the present time and the future, the security of AES is of a special importance However, recent researches have revealed that, AES cipher program on mainstream computing platforms may suffer from one kind of attack resulted from the leaked running information through Cache. According to related research, this paper proposes the basic processes of such attack, describes its current status and progresses, analyzes its feasibility in real world, and explains the countermeasures and suggestions.
出处
《信息安全与通信保密》
2007年第8期41-43,共3页
Information Security and Communications Privacy
基金
国家高技术研究发展计划(863计划)资助(课题号:2006AA01Z446)。
