Prevention of side channel attacks against block cipher implementations and other cryptographic systems
First Claim
1. A method for performing a symmetric block cipher operation on a message block, using a tamper resistant device, comprising:
- (a) receiving an input message;
(b) obtaining unpredictable information;
(c) producing at least one masked intermediate parameter and a corresponding blinding parameter from at least said input message and said unpredictable information, such that;
(i) the value of said masked intermediate parameter is unpredictable to an attacker;
(ii) the value of said blinding parameter is unpredictable to an attacker;
(iii) the value of an intermediate value in said block cipher operation is represented by a mathematical relationship between said masked intermediate parameter and said blinding parameter;
(d) performing a plurality of rounds of said block cipher operation, where each said round includes changing said value for at least one of said parameters; and
(e) producing an output message from at least said masked intermediate parameter and said blinding parameter after said round operations in step (d).
1 Assignment
0 Petitions
Accused Products
Abstract
Methods and apparatuses are disclosed for improving DES and other cryptographic protocols against external monitoring attacks by reducing the amount (and signal-to-noise ratio) of useful information leaked during processing. An improved DES implementation of the invention instead uses two 56-bit keys (K1 and K2) and two 64-bit plaintext messages (M1 and M2), each associated with a permutation (i.e., K1P, K2P and M1P, M2P) such that K1P{K1} XOR K2P{K2} equals the “standard” DES key K, and M1P{M1} XOR M2P{M2} equals the “standard” message. During operation of the device, the tables are preferably periodically updated, by introducing fresh entropy into the tables faster than information leaks out, so that attackers will not be able to obtain the table contents by analysis of measurements. The technique is implementable in cryptographic smartcards, tamper resistant chips, and secure processing systems of all kinds.
159 Citations
8 Claims
-
1. A method for performing a symmetric block cipher operation on a message block, using a tamper resistant device, comprising:
-
(a) receiving an input message;
(b) obtaining unpredictable information;
(c) producing at least one masked intermediate parameter and a corresponding blinding parameter from at least said input message and said unpredictable information, such that;
(i) the value of said masked intermediate parameter is unpredictable to an attacker;
(ii) the value of said blinding parameter is unpredictable to an attacker;
(iii) the value of an intermediate value in said block cipher operation is represented by a mathematical relationship between said masked intermediate parameter and said blinding parameter;
(d) performing a plurality of rounds of said block cipher operation, where each said round includes changing said value for at least one of said parameters; and
(e) producing an output message from at least said masked intermediate parameter and said blinding parameter after said round operations in step (d). - View Dependent Claims (2, 3, 4, 5, 6, 7)
-
-
8. A tamper resistant device containing means for performing a symmetric block cipher operation on a message block, comprising:
-
(a) means for receiving an input message;
(b) a source of unpredictable information;
(c) means for producing at least one masked intermediate parameter and a corresponding blinding parameter from at least an input message and unpredictable information, such that;
(i) the value of said masked intermediate parameter is unpredictable to an attacker;
(ii) the value of said blinding parameter is unpredictable to an attacker;
(iii) the value of an intermediate value in said block cipher operation is represented by a mathematical relationship between said masked intermediate parameter and said blinding parameter;
(d) means for performing a round of said block cipher operation, including changing said value for at least one of said parameters; and
(e) means for producing an output message, from at least said masked intermediate parameter and said blinding parameter, incorporating the result of said round in (d).
-
Specification
-
- Resources
-
Current AssigneeCryptography Research, Inc. (Rambus Inc.)
-
Original AssigneeCryptography Research, Inc. (Rambus Inc.)
-
InventorsKocher, Paul C., Jun, Benjamin C., Jaffe, Joshua M.
-
Granted Patent
-
Time in Patent OfficeDays
-
Field of Search
-
US Class Current380/37
-
CPC Class CodesG06F 21/556 involving covert channels, ...G06F 21/602 Providing cryptographic fac...G06F 21/755 with measures against power...G06F 2207/7219 Countermeasures against sid...H04L 2209/046 of operations, operands or ...H04L 2209/08 Randomization, e.g. dummy o...H04L 2209/127 Trusted platform modules [TPM]H04L 9/003 for power analysis, e.g. di...H04L 9/0625 with splitting of the data ...
