Comprehensive protection method for resisting side channel and fault attacks

Abstract

The invention discloses a comprehensive protection method for resisting side channel and fault attacks, which comprises the following steps of: 1) for a target algorithm to be protected, constructingan algorithm which is the same as the target algorithm as a redundancy algorithm of the target algorithm; respectively constructing the same d-order threshold protection scheme for the target algorithm and the redundant algorithm thereof, wherein the same d-order threshold protection scheme is used for protecting the d-order side channel attack; 2) carrying out exclusive OR on the output of the target algorithm and the output of the redundant algorithm, then carrying out multiplication mask operation on the output of the target algorithm and a random number, and protecting the multiplication operation by adopting a threshold implementation technology; 3) carrying out exclusive OR on the processing result of the step 2) and the d-order threshold implementation structure of the target algorithm or the d-order threshold implementation structure of the redundant algorithm to obtain a result, and taking the result as a final output result of the target algorithm. The method can resist faultsensitivity attacks not based on ciphertext, differential fault attacks based on ciphertext and side channel attacks.

Description

technical field [0001] The invention relates to a comprehensive protection method based on a threshold realization technology and a multiplication mask, which can be applied to fields such as side channel attack protection and fault attack protection of block ciphers. Background technique [0002] Block cipher is an important branch of cryptography. It is a cryptographic system in which both parties in communication use the same key for encryption and decryption. It has the advantages of fast operation speed and less resource occupation. It is an important part of the cryptographic system and plays a pivotal role in information security protection in many fields such as the Internet of Things. [0003] In the field of traditional cryptography, people pay more attention to the theoretical security of cryptographic algorithms. The security assumption generally refers to the operations that the attacker can have certain authority on plaintext, such as known plaintext, known cip...

AI Technical Summary

Problems solved by technology

[0008] With the development of attack technology in password implementation, attackers often use multiple attack methods to attack, and are no longer limited to energy attacks or fault attacks. In this scenario, the protection method against a single type of attack is no longer applicable.

Protection measures against fault attacks are often studied separately from energy protection measures, so many implementation schemes dedicated to simultaneously protecting energy analysis attacks and fault analysis attacks simply combine energy protection schemes and fault protection schemes, which consumes a lot of resources at the same time It is often not possible to achieve the corresponding security goals very well.

How to rationally and comprehensively use energy protection technology and fault protection technology, there are already some achievements, these achievements have achieved the corresponding safety protection goals to a certain extent, but they all have different problems more or less, such as large resource consumption, Inefficiency and other issues, or there are some potential security loopholes

Images