基于控制流隐藏的轻量级密码安全防护方法研究

Security of Lightweight Cryptogram Based on the Control Flow Hidden

与传统密码相比,轻量级密码在对软硬件资源的需求、运行功耗等方面具有明显的优势。随着物联网的广泛普及和应用,轻量级密码在实际生活中扮演着越来越重要得角色,从而对基于轻量级密码的系统安全提出了新的需求。基于控制流隐藏的轻量级密码安全防护方法面向各种轻量级应用,利用HCahe的触发阈值动态调整、地址序列随机化单元的并发操作等技术,对程序运行过程中的地址信息进行随机重排,从根源上杜绝了控制流信息泄露。实验表明,基于控制流隐藏的轻量级密码安全防护对于当前各种基于控制流的攻击分析方法具有很好的防护效果,以较小的性能损失实现了高安全等级的控制流隐藏,较好地保护了系统内敏感数据及代码的安全。

Compared with the traditional cryptogram,linghtweight cryptogram has obvious advantages in the hardware or software resources demand and operating power consumption etc.Along with the popularization and application of the internet of things,lightweight cipher plays an increasingly important role in the real life,so new security requirement for lightweight-cipher-based system is putforward.Lightweight cipher security protection method is based on control flow hidden and oriented to a variety of lightweight applications,it exploits the Hcahes trigger threshold dynamic adjustment and concurrent operation technology of address sequence randomization unit to rearrange the address information in the process of program running,which eliminates the control flow information leakage from the root.Experiments show that control-flow-hidden-based cipher security protection has a good protective effect for all current control-flow-hidden-based attacks analysis method,and it realizes high level of control flow hidden with minor performance loss,thus the sensitive data and code within the system are protected.