一种抗旁路攻击的自愈密码系统设计

Method on building self-healing cryptosystem resistant to side-channel attack

旁路攻击是一种非破坏性的物理攻击方法,针对密码芯片存在旁路泄露的安全隐患,提出一种具有自愈特性的密码系统设计方法。首先,该方法通过在密码算法运算中插入测量失效点,使攻击者无法获取统计分析所必需的泄露信息;在此基础上,采用对掩码的定时更新技术使得泄露信息失效,从而重建系统的安全性。与已有的防御方法相比,即使部分泄露信息被攻击者获取时,该方法仍具有强壮的自愈能力和抗旁路攻击能力。

Side-channel attack is a new non-invasive cryptanalysis. As for the security risk induced by side-channel attack, firstly, this paper proposed a new masking method, and restricted the side-channel measurement by inserting some measuredisabled points into the cryptographic algorithm. And then, applied a masking update technique for making the side-channel leakage invalid. Compared with previous countermeasures, this method has stronger ability of self-healing and it also resists to complex side-channel attack.