A Novel Masking Scheme for SM3 Based MAC

A Novel Masking Scheme for SM3 Based MAC

下载PDF

导出

摘要 The Chinese hash algorithm SM3 is verified to be secure enough,but improper hardware implementation may lead to leakage.A masking scheme for SM3 algorithm is proposed to ensure the security of SM3 based Message Authentication Code(MAC).Our scheme was implemented in hardware,which utilizes hardware oriented secure conversion techniques between boolean and arithmetic masking.Security evaluation based on SAKURA-G FPGA board has been done with 2000 power traces from 2000 random plaintexts with random plaintext masks and random key masks.It has been verified that the masked SM3 hardware implementation shows no intermediate value leakage as expected.Our masked SM3 hardware can resist first-order correlation power attack(CPA) and collision correlation attack. The Chinese hash algorithm SM3 is verified to be secure enough, but improper hardware implementation may lead to leak- age. A masking scheme for SM3 algorithm is proposed to ensure the security of SM3 based Message Authentication Code （MAC）. Our scheme was implemented in hardware, which utilizes hardware oriented secure conversion techniques between boolean and arithmetic masking. Security evaluation based on SAKU- RA-G FPGA board has been done with 2000 power traces from 2000 random plaintexts with random plaintext masks and random key masks. It has been verified that the masked SM3 hardware implementation shows no intermediate value leakage as expected. Our masked SM3 hardware can resist first-order correlation power attack （CPA） and collision correlation attack.

作者 QU Kaige WU Liji WANG An REN Yanting ZHANG Xiangmin

机构地区 Tsinghua National Laboratory for Information Science and Technology(TNList) Institute of Microelectronics

出处《China Communications》 SCIE CSCD 2015年第6期11-21,共11页 中国通信（英文版）

基金 supported by the National Major Program "Core of Electronic Devices,High-End General Chips,and Basis of Software Products" of the Ministry of Industry and Information Technology of China (Nos.2014ZX01032205,2014ZX01032401001-Z05) the National Natural Science Foundation of China(No.61402252) "12th Five-Year Plan" The National Development Foundation for Cryptological Research(No. MMJJ201401009)

关键词 MAC 掩蔽硬件实现安全评估随机密钥哈希算法相关攻击消息认证码 SM3 algorithm masking scheme hardware implementation power analysis boolean and arithmetic masking conversion

分类号 TN918.1 [电子电信—通信与信息系统]

引文网络
相关文献

参考文献13

1MENEZES A J, VAN OORSCHOT P C, VANSTONE S A. Handbook of Applied Cryptography[G]. CRC Press, 1996.
2WANG X, FENG D, LAI X, et al. Collisions for Hash Functions MD4, MDS, HAVAL-128 and RIPEMD: rump session of Crypto 2004, Santa Barbara, California, USA, 2004[C].
3KIM S, YUNG M, LEE H, et al. Differential Pow- er Analysis of HMAC Based on SHA-2, and Countermeasures[M]// KIM S, YUNG M, LEE H. Information Security Applications. Springer Ber- lin Heidelberg, 2007:317-332.
4BERTONI G, DAEMEN J, PEETERS M, et al. Kec- cak Implementation Overview Version 3.2[EB/OL]. [2014/11/28]. http://keccak.noekeon.org/.
5Kecca k-implementation-3.2.pdf. PROUFF E, BETTALE L, DOTTAX E, et al. Colli- sion-Correlation Attack Against a First-Order Masking Scheme for MAC Based on SHA-3[M]// PROUFF E. Constructive Side-Channel Analysis and Secure Design. Springer International Pub- lishing, 2014:129-143.
6SM3 Cryptographic Hash Algorithm[S]. National Cryptography Administration of China, 2010.
7GOLIC J D. Techniques for Random Masking in Hardware[J]. Circuits and Systems I: Regular Pa- pers, IEEE Transactions on, 2007,54(2):291-300.
8WALTER C D, KO E K, PAAR C, et al. A New Algorithm for Switching from Arithmetic to Boolean Masking[M]//WALTER C D, KO E K, PAAR C. Cryptographic Hardware and Embedded Sys-terns - CHES 2003. Springer Berlin Heidelberg, 2003:89-97.
9PROUF E, SCHAUMONT P, DEBRAIZE B. Efficient and Provably Secure Methods for Switching from Arithmetic to Boolean Masking[M]// PROUFF E, SCHAUMONT P. Cryptographic Hard- ware and Embedded Systems - CHES 2012. Springer Berlin Heidelberg, 2012:107-121.
10KO E K, PAAR C, CORON J, et al. On Boolean and Arithmetic Masking against Differential Power Analysis[M]// Ko E K, PAAR C. Cryptographic Hardware and Embedded Systems -- CHES 2000. Springer Berlin Heidelberg, 2000:231-237.

1Ming-Xuan Sun.Nonlinear Masking and Iterative Learning Decryption for Secure Communications[J].International Journal of Automation and computing,2015,12(3):297-306. 被引量：1
2Yi Jiang Hao-Shan Shi.A Cluster-Based Random Key Revocation Protocol for Wireless Sensor Networks[J].Journal of Electronic Science and Technology of China,2008,6(1):10-15. 被引量：1
3陆大荣,Leun.,AM.激光束的相移膜集束研究[J].山东电子,1995(4):25-27.
4蒋亚坚,张庆雷.分布式运算单元的原理及其实现方法[J].电子技术应用,2000,26(2):61-63. 被引量：9
5乔世杰,王国裕,智贵连.小波图像编码的硬件实现(英文)[J].现代电子技术,2002,25(2):91-96.
6TAO Zhi~(1,2) ZHAO Heming~2 WU Di~1 CHEN Daqing~1 ZHANG Xiaojun~1 (1 School of Physical Science and Technology,Soochow University Suzhou 215006) (2 School of Electronics and Information Engineering,Soochow University Suzhou 215006).A method of whispered speech enhancement based on speech absence probability and modified mel-domain masking model[J].Chinese Journal of Acoustics,2011,30(3):345-357.
7Li Yang Zhang Ning Yang Qiang.Characteristic-knowledge-aided spectral detection of high frequency first-order sea echo[J].Journal of Systems Engineering and Electronics,2009,20(4):718-725. 被引量：3
8周志鑫,陈振华,刘永坦.Theory and Analysis for First-Order Interaction Between HF Radio Waves and Ocean Waves[J].Journal of Harbin Institute of Technology(New Series),1997,4(2):81-85.
9刘渊,李雅庆.一种非规则QC-LDPC的掩码矩阵构造方法[J].制导与引信,2012,33(1):37-43. 被引量：3
10Akitaka KISHIMOTO.C-Crossed Products by R, III： Traces[J].Acta Mathematica Sinica,English Series,2011,27(7):1259-1282.

China Communications

2015年第6期

浏览历史

内容加载中请稍等...

A Novel Masking Scheme for SM3 Based MAC

参考文献13

相关作者

相关机构

相关主题

浏览历史