• ETRI Journal
• /
• v.29 no.5
• /
• pp.619-632
• /
• 2007

Side channel attacks are a very serious menace to embedded devices with cryptographic applications. To counteract such attacks many randomization techniques have been proposed. One efficient technique in elliptic curve cryptosystems randomizes addition chains with binary signed digit (BSD) representations of the secret key. However, when such countermeasures have been used alone, most of them have been broken by various simple power analysis attacks. In this paper, we consider combinations which can enhance the security of countermeasures using BSD representations by adding additional countermeasures. First, we propose several ways the improved countermeasures based on BSD representations can be attacked. In an actual statistical power analysis attack, the number of samples plays an important role. Therefore, we estimate the number of samples needed in the proposed attack.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2014.10a
• /
• pp.390-393
• /
• 2014

The importance of this emerging information security and u-Korea or ubiquitous IT era, and the information security is more important. Especially, the small core device password encryption algorithm is an important part of the secure side channel attack cryptographic algorithms. However, it can provide high level of security, an adversary can attack small core device through implementation of cryptographic algorithms. In this paper describes for the Power Analysis attack and analyze the experimental environment.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.33 no.3
• /
• pp.363-374
• /
• 2023

A white-box environment refers to a situation where the internal information of an algorithm is disclosed. The AES white-box encryption was first announced in 2002, and in 2016, a side-channel analysis for white-box encryption called Differential Computation Analysis (DCA) was proposed. DCA analysis is a powerful side-channel attack technique that uses the memory information of white-box encryption as side-channel information to find the key. Although various countermeasure studies against DCA have been published domestically and internationally, there were no evaluated or analyzed results from experiments applying the hiding technique using dummy operations to DCA analysis. Therefore, in this paper, we insert LU T-shaped dummy operations into the WBC-AES algorithm proposed by S. Chow in 2002 and quantitatively evaluate the degree of change in DCA analysis response depending on the size of the dummy. Compared to the DCA analysis proposed in 2016, which recovers a total of 16 bytes of the key, the countermeasure proposed in this paper was unable to recover up to 11 bytes of the key as the size of the dummy decreased, resulting in a maximum decrease in attack performance of about 68.8%, which is about 31.2% lower than the existing attack performance. The countermeasure proposed in this paper confirms that the attack performance significantly decreases as smaller dummy sizes are inserted and can be applied in various fields.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.16 no.4
• /
• pp.59-68
• /
• 2006

Although the cryptographic algorithms in IC chip such as smart card are secure against mathematical analysis attack, they are susceptible to side channel attacks in real implementation. In this paper, we analyze the security of smart card using a developed experimental tool which can perform power analysis attacks and fault insertion attacks. As a result, raw smart card implemented SEED and ARIA without any countermeasure is vulnerable against differential power analysis(DPA) attack. However, in fault attack about voltage and clock on RSA with CRT, the card is secure due to its physical countermeasures.

• The Korean Journal of Physiology and Pharmacology
• /
• v.7 no.1
• /
• pp.15-23
• /
• 2003

Cellular redox state is known to be perturbed during ischemia and that $Ca^{2+}$ and $K^2$ channels have been shown to have functional thiol groups. In this study, the properties of thiol redox modulation of the ATP-sensitive $K^2$ ($K_{ATP}$) channel were examined in rabbit ventricular myocytes. Rabbit ventricular myocytes were isolated using a Langendorff column for coronary perfusion and collagenase. Single-channel currents were measured in excised membrane patch configuration of patch-clamp technique. The thiol oxidizing agent 5,5'-dithio-bis-(2-nitro-benzoic acid) (DTNB) inhibited the channel activity, and the inhibitory effect of DTNB was reversed by dithiothreitol (disulfide reducing agent; DTT). DTT itself did not have any effect on the channel activity. However, in the patches excised from the metabolically compromised cells, DTT increased the channel activity. DTT had no effect on the inhibitory action by ATP, showing that thiol oxidation was not involved in the blocking mechanism of ATP. There were no statistical difference in the single channel conductance for the oxidized and reduced states of the channel. Analysis of the open and closed time distributions showed that DTNB had no effect on open and closed time distributions shorter than 4 ms. On the other hand, DTNB decreased the life time of bursts and increased the interburst interval. N-ethylmaleimide (NEM), a substance that reacts with thiol groups of cystein residues in proteins, induced irreversible closure of the channel. The thiol oxidizing agents (DTNB, NEM) inhibited of the $K_{ATP}$ channel only, when added to the cytoplasmic side. The results suggested that metabolism-induced changes in the thiol redox can also modulate $K_{ATP}$ channel activity and that a modulatory site of thiol redox may be located on the cytoplasmic side of the $K_{ATP}$ channel in rabbit ventricular myocytes.

• The KSFM Journal of Fluid Machinery
• /
• v.14 no.6
• /
• pp.54-60
• /
• 2011

This paper presents the steady-state performance analysis of the first stage of a multistage centrifugal pump, composed of a shrouded-impeller, a vaned-diffuser and a return-channel, using the commercially available computational fluid dynamics (CFD) code, ANSYS CFX. The detailed flow fields in the vaned-diffuser with outlet in its side wall and the return-channel are investigated by the CFD code adopted in the present study. The effect of the vaned-diffuser with a downstream crossover bend and the corresponding return-channel on the overall hydrodynamic performance of the first stage pump has also been demonstrated over the normal operating conditions. The predicted hydrodynamics for the diffusing components herein could provide useful information to match the inlet blade angle of the next stage impeller for improving the multistage pump performances.

• The KIPS Transactions:PartC
• /
• v.19C no.3
• /
• pp.179-184
• /
• 2012

Due to the absence of an alternative algorithm SHA-2, NIST (National Institute of Standards and Technology) is proceeding to development project of SHA-3. NIST announced five candidates of the final round at the end of 2010. Side-channel attack scenarios of five candidates for SHA-3 final round have been proposed. In this paper, we prove the possibility of the analysis against 32-bit modular addition by 8-bit blocks from our experiment on ARM chip board with a register size of 32-bit. In total we required 9700 power traces to successfully recover the 128-bit secret key for the attack against.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.30 no.4
• /
• pp.527-536
• /
• 2020

It has been found that an attacker can extract the secret key embedded in a security device and recover the operation instruction using power consumption traces which are some kind of side channel information. Many profiling-based side channel attacks based on a deep learning model such as MLP(Multi-Layer Perceptron) method are recently researched. In this paper, we implemented a disassembler for operation instruction set used in the micro-controller AVR XMEGA128-D4. After measuring the template traces on each instruction, we automatically made the pre-processing process and classified the operation instruction set using a deep learning model CNN. As an experimental result, we showed that all instructions are classified with 87.5% accuracy and some core instructions used frequently in device operation are with 99.6% respectively.

• Proceedings of the Korean Institute of Information and Commucation Sciences Conference
• /
• 2013.05a
• /
• pp.219-222
• /
• 2013

The Side Channel attack methods proposed by P.Kocher are mainly used for cryptanalysis different cipher algorithms even though they are claimed to be strongly secured. Those kinds of attacks depend on environment implementation especially on the hardware implementation of the algorithm to the crypto module. side-channel attacks are a type of attack introduced by P.Kocher and is applicable according to each environment or method that is designed. This kind of attack can analyze and also extract important information by reading the binary code data via measurement of changes in electricity(voltage) consumption, running time, error output and sounds. Thus, in this paper, we discuss recent SPA and DPA attacks as well as recent countermeasure techniques.

• Journal of the Korea Institute of Information Security & Cryptology
• /
• v.29 no.4
• /
• pp.709-718
• /
• 2019

A lightweight block cipher CHAM designed for suitability in resource-constrained environment has reasonable security level and high computational performance. Since this cipher may contain intrinsic weakness on side channel attack, it should adopt a countermeasure such as masking method. In this paper, we implement the masked CHAM cipher on 32-bit microprosessor Cortex-M3 platform to resist against side channel attack and analyze their computational performance. Based on the shortcoming of having many round functions, we apply reduced masking method to the implementation of CHAM cipher. As a result, we show that the CHAM-128/128 algorithm applied reduced masking technique requires additional operations about four times.