Location via proxy:   [ UP ]  
[Report a bug]   [Manage cookies]                
Filters
























1,404 Hits in 4.0 sec

Electromagnetic analysis and fault injection onto secure circuits

P. Maistri, R. Leveugle, L. Bossuet, A. Aubert, V. Fischer, B. Robisson, N. Moro, P. Maurine, J.-M. Dutertre, M. Lisart
2014 2014 22nd International Conference on Very Large Scale Integration (VLSI-SoC)  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (2.3 MB)
https://web.archive.org/web/20171202081325/https://hal-emse.ccsd.cnrs.fr/emse-01099025/document

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL. The file type is application/pdf.

In this paper, we review the recent results obtained on this subject, with a particular focus on EM as a fault injection tool.  ...  These attacks exploit the correlation existing between the computed data and variables such as computation time, consumed power, and electromagnetic (EM) emissions.  ...  EM Power Coupling As anticipated in the previous section, understanding and predict the consequences of an EM pulsed injection onto a secure circuit is a critical challenge.  ... 
doi:10.1109/vlsi-soc.2014.7004182 dblp:conf/vlsi/MaistriLBAFRMMDL14 fatcat:g4vl52eomfhinkcmag7mjxpkee
Citation

P. Maistri, R. Leveugle, L. Bossuet, A. Aubert, V. Fischer, B. Robisson, N. Moro, P. Maurine, J.-M. Dutertre, M. Lisart. "Electromagnetic analysis and fault injection onto secure circuits." 2014 22nd International Conference on Very Large Scale Integration (VLSI-SoC) (2014) 1-6

Physical Security Bounds Against Tampering [chapter]

Kerstin Lemke, Christof Paar, Ahmad-Reza Sadeghi
2006 Lecture Notes in Computer Science  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (573.0 kB)
https://web.archive.org/web/20200326030025/https://link.springer.com/content/pdf/10.1007%2F11767480_17.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

Which kind of circuit based security can ever be guaranteed if all computations are vulnerable towards fault injection?  ...  Therefore, we present an adversarial model with a strong focus on fault injection techniques based on radiation and particle impact.  ...  These circuits make use of redundant data encoding, i.e., each bit is encoded onto two wires.  ... 
doi:10.1007/11767480_17 fatcat:tjgnyanjojdf5aojfb2df4jqnm
Citation

Kerstin Lemke, Christof Paar, Ahmad-Reza Sadeghi. "Physical Security Bounds Against Tampering." Lecture Notes in Computer Science (2006) 253-267

On the security of RFID devices against implementation attacks

Michael Hutter, Thomas Plos, Martin Feldhofer
2010 International Journal of Security and Networks (IJSN)  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (2.2 MB)
https://web.archive.org/web/20160627080833/http://mhutter.org/papers/Hutter2010OntheSecurity.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2016; you can also visit the original URL. The file type is application/pdf.

In this paper, we evaluate the efficiency of implementation attacks by conducting side-channel attacks and fault analysis on both High Frequency (HF) and Ultra-High Frequency (UHF) RFID tags.  ...  Since 2007, he is a member of the VLSI and security group at the Institute for Applied Information Processing and Communications (IAIK) at TUG.  ...  This kind of fault-injection is therefore more complex in term of EM shielding, fault-injection handling, and human security.  ... 
doi:10.1504/ijsn.2010.032209 fatcat:wrr52g3ywnfjfdeheslrjl6nfm
Citation

Michael Hutter, Thomas Plos, Martin Feldhofer. "On the security of RFID devices against implementation attacks." International Journal of Security and Networks (IJSN) 5.2/3 (2010) 106

Information Leakage Threats for Cryptographic Devices Using IEMI and EM Emission

Ko Nakamura, Yu-ichi Hayashi, Takaaki Mizuki, Hideaki Sone
2018 IEEE transactions on electromagnetic compatibility (Print)  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.0 MB)
https://web.archive.org/web/20190428211127/http://library.naist.jp/dspace/bitstream/handle/10061/12568/10.1109_TEMC.2017.2766139.pdf;jsessionid=B8E710B5A1BC5E4E5E57F3F0EB994603?sequence=1

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2019; you can also visit the original URL. The file type is application/pdf.

Furthermore, we apply a fault analysis method that combines the injection timing estimation method and fault injection by IEMI in a practical experimental environment.  ...  However, the timing of fault injections cannot be controlled with this approach, and it is difficult to obtain faulty ciphertexts for use in secret key analysis by differential fault analysis (DFA).  ...  Such techniques include optical fault injection using flash or laser [6] ; under-powering to cause setup time violations [7] ; and electromagnetic (EM) pulse injection over cryptographic integrated circuits  ... 
doi:10.1109/temc.2017.2766139 fatcat:vucarsx6nbegrhcpyhxlznt7ui
Citation

Ko Nakamura, Yu-ichi Hayashi, Takaaki Mizuki, Hideaki Sone. "Information Leakage Threats for Cryptographic Devices Using IEMI and EM Emission." IEEE transactions on electromagnetic compatibility (Print) 60.5 (2018) 1340-1347

BADFET: Defeating Modern Secure Boot Using Second-Order Pulsed Electromagnetic Fault Injection

Ang Cui, Rick Housley
2017 Workshop on Offensive Technologies  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (14.8 MB)
https://web.archive.org/web/20210423223214/https://www.usenix.org/system/files/conference/woot17/woot17-paper-cui.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL. The file type is application/pdf.

Numerous Electromagnetic Fault Injection (EMFI) techniques have been used to attack FPGAs, ASICs, cryptographic devices, and microcontrollers.  ...  Unlike other classes of fault injection techniques, EMFI-based attacks can, in theory, be carried out non-invasively without requiring physical contact with the victim device.  ...  Electromagnetic Fault Injection (EMFI) has both advantages and disadvantages over the other above mentioned modalities.  ... 
dblp:conf/woot/CuiH17 fatcat:njf3qd6amrauvdrs64dz7tbklq
Citation

Ang Cui, Rick Housley. "BADFET: Defeating Modern Secure Boot Using Second-Order Pulsed Electromagnetic Fault Injection." Workshop on Offensive Technologies (2017)

Security Evaluation of Asynchronous Circuits [chapter]

Jacques J. A. Fournier, Simon Moore, Huiyun Li, Robert Mullins, George Taylor
2003 Lecture Notes in Computer Science  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (2.3 MB)
https://web.archive.org/web/20170811135042/http://www.cl.cam.ac.uk/~swm11/papers/CHES2003.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2017; you can also visit the original URL. The file type is application/pdf.

This has led us to investigate the novel approach of design-time security analysis rather than rely on post manufacture analysis.  ...  In this paper we describe the tests performed and show that asynchronous circuits can provide better tamperresistance.  ...  Special thanks are also due to the Gemplus Card Security Group for their testing and analysis of the Springbank test chip, in particular to Jean-François Dhem and Christophe Mourtel for useful comments  ... 
doi:10.1007/978-3-540-45238-6_12 fatcat:6ii7657kybdqjkurjsvuih76by
Citation

Jacques J. A. Fournier, Simon Moore, Huiyun Li, Robert Mullins, George Taylor. "Security Evaluation of Asynchronous Circuits." Lecture Notes in Computer Science (2003) 137-151

Low-Cost Body Biasing Injection (BBI) Attacks on WLCSP Devices [article]

Colin O'Flynn
2020 IACR Cryptology ePrint Archive  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (4.5 MB)
https://web.archive.org/web/20211005231805/https://eprint.iacr.org/2020/1228.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL. The file type is application/pdf.

Body Biasing Injection (BBI) uses a voltage applied with a physical probe onto the backside of the integrated circuit die.  ...  Compared to other techniques such as electromagnetic fault injection (EMFI) or Laser Fault Injection (LFI), this technique appears less popular in academic literature based on published results.  ...  [20] [18] [23] , electromagnetic faults [18] , X-Rays [2] , and body biasing injection (BBI) [11] [12] .  ... 
dblp:journals/iacr/OFlynn20a fatcat:zvf6gkmtfbfubgaovqkcyxw44y
Citation

Colin O'Flynn. "Low-Cost Body Biasing Injection (BBI) Attacks on WLCSP Devices." IACR Cryptology ePrint Archive (2020) 1228

Detecting Electromagnetic Injection Attack on FPGAs Using In-situ Timing Sensors

Surabhi Satyajit Gujar, Leyla Nazhandali
2020 Journal of Hardware and Systems Security  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (3.0 MB)
https://web.archive.org/web/20200319200331/https://vtechworks.lib.vt.edu/bitstream/handle/10919/97006/Gujar_SS_T_2018.pdf;jsessionid=9FF79B32E9922869ED26F8C36F57188F?sequence=1

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

The area of Electromagnetic Fault Injection (EMFI) wherein attackers can use electromagnetic (EM) pulses to induce faults has started garnering increasing attention.  ...  This sensor can successfully detect most of the electromagnetic injected faults with high precision.  ...  and predictable electromagnetic pulses which are used for EM fault injection in embedded processors.  ... 
doi:10.1007/s41635-020-00096-9 fatcat:g5pu6spcmzastg5gczu3ls62qi
Citation

Surabhi Satyajit Gujar, Leyla Nazhandali. "Detecting Electromagnetic Injection Attack on FPGAs Using In-situ Timing Sensors." Journal of Hardware and Systems Security 4.3 (2020)

Parity Check Based Fault Detection against Timing Fault Injection Attacks

Maoshen Zhang, He Li, Peijing Wang, Qiang Liu
2022 Electronics  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.4 MB)
https://web.archive.org/web/20221211084720/https://mdpi-res.com/d_attachment/electronics/electronics-11-04082/article_deploy/electronics-11-04082.pdf?version=1670494135

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2022; you can also visit the original URL. The file type is application/pdf.

Fault injection technologies can be utilized to steal secret information inside integrated circuits (ICs), and thus cause serious information security threats.  ...  However, the contradiction between security and overhead restricts the further development and applications of parity check in fault injection detection.  ...  In experiments, a fault is injected if the circuit output is wrong, and the fault number is obtained by comparing the circuit output, and the correct ciphertexts [19] .  ... 
doi:10.3390/electronics11244082 fatcat:yjam5wajcvevhnifvrojot7km4
DOAJ
Citation

Maoshen Zhang, He Li, Peijing Wang, Qiang Liu. "Parity Check Based Fault Detection against Timing Fault Injection Attacks." Electronics 11.24 (2022) 4082

Fault Attacks on Secure Embedded Software: Threats, Design and Evaluation [article]

Bilgiday Yuce, Patrick Schaumont, Marc Witteman
2020 arXiv   pre-print

Preserved Fulltext

Web Archive Capture PDF (854.4 kB)
https://web.archive.org/web/20200326054612/https://arxiv.org/pdf/2003.10513v1.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2020; you can also visit the original URL. The file type is application/pdf.

We present a detailed discussion of the anatomy of a fault attack, and we make a review of fault attack evaluation techniques.  ...  Fault attacks break and exploit that assumption. Through the careful introduction of targeted faults, an adversary modifies the control-flow or data-flow integrity of software.  ...  ACKNOWLEDGEMENTS The authors would like to thank Dennis Vermoen from Riscure Security Lab for his help and support.  ... 
arXiv:2003.10513v1 fatcat:paebhdl4cjhfvp7o5skttooyym
Citation

Bilgiday Yuce, Patrick Schaumont, Marc Witteman. "Fault Attacks on Secure Embedded Software: Threats, Design and Evaluation." arXiv (2020)

Microcontroller Implementation of Simultaneous Protections Against Observation and Perturbation Attacks for ECC

Audrey Lucas, Arnaud Tisserand
2018 Proceedings of the 15th International Joint Conference on e-Business and Telecommunications  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (564.9 kB)
https://web.archive.org/web/20190503155012/https://hal.archives-ouvertes.fr/hal-01826303/document

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2019; you can also visit the original URL. The file type is application/pdf.

., 2004; Cohen and Frey, 2005 ) is a PKC based on elliptic curves (ECs).  ...  In embedded systems, it is vulnerable to both observation and perturbation attacks. Most of protections only target one of these two types of attacks.  ...  FAs and Countermeasures Lasers, electromagnetic radiations, variations in supply voltage or circuit temperature, glitches in clock signals are used to disturb the circuit by injecting fault(s) during algorithm  ... 
doi:10.5220/0006884605700577 dblp:conf/icete/LucasT18 fatcat:ojknxfsfarbojogcjv3wdb24py
Citation

Audrey Lucas, Arnaud Tisserand. "Microcontroller Implementation of Simultaneous Protections Against Observation and Perturbation Attacks for ECC." Proceedings of the 15th International Joint Conference on e-Business and Telecommunications (2018) 570-577

The DFA/DFT‐based hacking techniques and countermeasures: Case study of the 32‐bit AES encryption crypto‐core

Mouna Karmani, Noura Benhadjyoussef, Belgacem Hamdi, Mohsen Machhout
2021 IET Computers & Digital Techniques  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.7 MB)
https://web.archive.org/web/20210716225443/https://ietresearch.onlinelibrary.wiley.com/doi/pdfdirect/10.1049/cdt2.12013

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL. The file type is application/pdf.

Integrated circuits (ICs) design plays a significant role in the embedded-system performance, reliability and security.  ...  In addition, with or without insertion of DFT circuitry, the crypto-core is always exposed to the powerful differential fault analysis (DFA) attack.  ...  voltage glitches, electromagnetic pulses, and laser shots.  ... 
doi:10.1049/cdt2.12013 fatcat:zzpzutktundtlc3q5nathppntq
DOAJ
Citation

Mouna Karmani, Noura Benhadjyoussef, Belgacem Hamdi, Mohsen Machhout. "The DFA/DFT‐based hacking techniques and countermeasures: Case study of the 32‐bit AES encryption crypto‐core." IET Computers & Digital Techniques (2021) 160-170

EM Injection: Fault Model and Locality

S. Ordas, L. Guillaume-Sage, Philippe Maurine
2015 2015 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC)  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (1.9 MB)
https://web.archive.org/web/20180721121843/https://hal-lirmm.ccsd.cnrs.fr/lirmm-01319078/file/EM%20Injection.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2018; you can also visit the original URL. The file type is application/pdf.

EM injection recently emerged as an effective medium for fault injection. This paper presents an analysis of the IC susceptibility to EM pulses.  ...  It highlights that faults produced by EM pulse injection are not timing faults but correspond to a different model which is presented in this paper.  ...  INTRODUCTION Besides power and ElectroMagnetic (EM) analyses [6] , [5] , fault injection constitutes [2] a serious threat against secure circuits.  ... 
doi:10.1109/fdtc.2015.9 dblp:conf/fdtc/OrdasGM15 fatcat:onp7z6gfingknd2vliq2h2hkma
Citation

S. Ordas, L. Guillaume-Sage, Philippe Maurine. "EM Injection: Fault Model and Locality." 2015 Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC) (2015) 3-13

Physical Fault Injection and Side-Channel Attacks on Mobile Devices: A Comprehensive Analysis [article]

Carlton Shepherd, Konstantinos Markantonakis, Nico van Heijningen, Driss Aboulkassimi, Clément Gaine, Thibaut Heckmann, David Naccache
2021 arXiv   pre-print

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (7.4 MB)
https://web.archive.org/web/20210812043954/https://arxiv.org/pdf/2105.04454v4.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2021; you can also visit the original URL. The file type is application/pdf.

Note that this fulltext copy is not of the "primary" version of this work. The version it corresponds to is:

2021 pre-print arXiv:2105.04454v4 fatcat:m66sin5fjjhh7djd2i4726wl2y

Other Versions

2021 pre-print
arXiv:2105.04454v1 fatcat:2o3tvil7i5brtmoq6vyc3dcfzy
2021 pre-print
arXiv:2105.04454v2 fatcat:hnvbdht7x5githdwvtsjcy2edm
2021 pre-print
arXiv:2105.04454v3 fatcat:kxvijj2etvgvjpl2f77rlq4guu
2022 accepted
arXiv:2105.04454v6 fatcat:6c3dytkn2jg7vbysxodugbqizy
In total, we comprehensively survey over 50 fault injection and side-channel attack papers published between 2009-2021.  ...  In this survey, we consolidate recent developments in physical fault injections and side-channel attacks on modern mobile devices.  ...  The authors would like to thank the EXFILES WP5 project partners for comments and discussions around the topic of this work.  ... 
arXiv:2105.04454v5 fatcat:27ldfag7ejgvxh7cbs2qnevb24
Open Access Multiple Versions
Citation

Carlton Shepherd, Konstantinos Markantonakis, Nico van Heijningen, Driss Aboulkassimi, Clément Gaine, Thibaut Heckmann, David Naccache. "Physical Fault Injection and Side-Channel Attacks on Mobile Devices: A Comprehensive Analysis." arXiv (2021)

An Embedded System for Practical Security Analysis of Contactless Smartcards [chapter]

Timo Kasper, Dario Carluccio, Christof Paar
2007 Lecture Notes in Computer Science  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (856.3 kB)
https://web.archive.org/web/20150921175239/http://dl.ifip.org/db/conf/wistp/wistp2007/KasperCP07.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2015; you can also visit the original URL. The file type is application/pdf.

ISO 14443 compliant smartcards are widely-used in privacy and security sensitive applications. Due to the contactless interface, they can be activated and read out from a distance.  ...  Thus, relay and other attacks are feasible, even without the owner noticing it. Tools being able to perform these attacks and carry out security analyses need to be developed.  ...  Integrated in a measurement system, the proposed tool can help to carry out security analyses, such as a DEMA or a remote power analysis, and assist fault injection attacks.  ... 
doi:10.1007/978-3-540-72354-7_13 fatcat:djiwrnz6brbzrirjaklw2dajge
Citation

Timo Kasper, Dario Carluccio, Christof Paar. "An Embedded System for Practical Security Analysis of Contactless Smartcards." Lecture Notes in Computer Science (2007) 150-160

« Previous Showing results 1 — 15 out of 1,404 results