一种改进的针对DSA签名的指令Cache计时攻击

Improved Instruction-Cache Timing Attack on DSA Signature

下载PDF

导出

摘要针对公钥密码的指令Cache计时攻击是近年来提出的一种新的旁路攻击方式。现有的两种针对公钥密码的指令Cache计时攻击模型尚存在一些不足,一个是攻击前提过于苛刻而难以实现,另一个是无效信息过多导致数据量偏大及后续分析工作量的增加。在充分研究现有模型的基础上,提出一种改进的基于特征Cache组监测的指令Cache计时攻击模型,克服了现有两种模型的不足,在不降低性能的情况下将计时数据减少了约29%,并以DSA数字签名为攻击对象对改进模型进行了实验。 Instruction Cache timing attack on public-key cryptography was newly proposed, which is a subclass of side channel attack. However, there are some shortages in the present models. One is that the precondition of attack is hard to satisfy and the other is that too much useless information results in larger data flow and heavier analysis workload. Based on present models, this paper proposed an improved instruction Cache timing attack model on DSA, which can overcome disadvantages of present models. Experiments were made and the results demonstrate that the im- proved model decreases the data flow by about 29% while the performance is not unchanged.

作者周平寇应展冀可可陈财森

机构地区军械工程学院信息工程系解放军

出处《计算机仿真》 CSCD 北大核心 2013年第5期208-212,共5页 Computer Simulation

基金国家自然科学基金资助项目(61272491)

关键词数字签名算法公钥签名指令缓存计时攻击旁路攻击 DSA Public-key signature Instruction-cache timing attack Side channel attack

分类号 TP393.08 [自动化与计算机技术—计算机应用技术]

引文网络
相关文献

参考文献9

1P C Kocher. Timing Attacks on Implementations of Diffie-Hell- man, RSA, DSS, and Other Systems [ C ]. CRYPTO 96, Santa Barbara, USA, 1996 : 104-113.
2Dan Page. Theoretical use of Cache memory as a cryptanalytic side- channel[ R ]. Technical Report CSTR- 02 - 003, Department of Com-puter Science, University of Bristol, 2002.
3O Aciicmez. Yet Another MicroArehitectural Attack : Exploiting I- cache[ C]. 14th ACM Conference on Computer and Communica- tions Security ( ACM CCS' 07 ).
4O Aciicmez, W Schindler. A vulnerability in rsa implementations due to instruction cache analysis and its demonstration on openssl [J. In: Topics in Cryptology-CT-RSA 2008. Lecture Notes in Computer cience, Springer Verlag, 2008,4964:256-273.
5O Aclimez, B B Brumley, P Grabher. New Results on Instruction Cache Attacks[ C]. CHES2010, Santa Barbara, USA, 2010 : 110 -124.
6Michael Neve and J P Seifert. Advances on Access-Driven Cache Attacks on AES [ C ], Cryptography ( SAC 06 \ ), 2007.
7D Tsafrir, Y Etsion, D G Feitelson. Secretly monopolizing the CPU without superuser privileges [ C ]. In: Proceedings of the 16th USE- NIX Security Symposium ( SECURITY 2007 ), USENIX Associa- tion, 2007:239-256.
8Percival C. Cache missing for fun and profit[ DB]. <http://www. daemonology, net/papers/htt, pdf>, 2005.
9B B Brumley, R M Hakala. Cache-timing template attacks [ C ]. ASIACRYPT 2009, Tokyo, Japan, 2009:667-684.

1周平,寇应展,刘会英.针对DSA滑动窗口算法实现的指令Cache计时攻击[J].军械工程学院学报,2013,25(2):56-60.
2钟楼,张尧弼.基于RSA的计时攻击及其防范[J].微型电脑应用,2005,21(5):54-55.
3王寅龙,赵强,林克成,李志祥,王希武,邓高明.面向计时攻击的形式化分析[J].计算机科学,2011,38(10):100-102. 被引量：1
4颜晶晶,康振华.DSA数字签名技术及其在JAVA中的实现[J].中国现代教育装备,2006(6):72-74. 被引量：2
5杨玺.计时攻击及其防范[J].通信技术,2008,41(7):185-188. 被引量：5
6田军舰,田颖,寇应展,陈财森,孔德金.一种针对OpenSSL中RSA的计时攻击改进算法[J].军械工程学院学报,2011,23(2):62-64. 被引量：1
7周伟平,王礼想.一个拥有DSA数字签名的零知识证明的安全性分析[J].廊坊师范学院学报（自然科学版）,2015,15(2):16-18.
8舒麟,廖闻剑,彭艳兵.拥有DSA数字签名的零知识证明[J].计算机工程与应用,2011,47(16):120-121. 被引量：3
9田军舰,寇应展,陈财森.RSA公钥密码计时攻击研究及仿真[J].计算机技术与发展,2010,20(8):150-153. 被引量：4
10贾徽徽,王潮,顾健,宋好好,唐迪.ECC计时攻击研究与仿真[J].网络与信息安全学报,2016,2(4):56-63. 被引量：1

计算机仿真

2013年第5期

浏览历史

内容加载中请稍等...

一种改进的针对DSA签名的指令Cache计时攻击

参考文献9

相关作者

相关机构

相关主题

浏览历史