Differential power analysis—resistant cryptographic processing
First Claim
Patent Images
1. A cryptographic processing device for securely performing a cryptographic processing operation in a manner resistant to discovery of a secret by external monitoring of variations in the amount of power consumed, comprising:
- (a) an input interface for receiving a quantity to be processed;
(b) a source of unpredictable information;
(c) a processor for performing said cryptographic processing operation in a manner decorrelated from externally-monitorable signals produced by said device, by using outputs from said source to select between operating on an instruction and inserting a delay before operating on said instruction, wherein inserting said delay includes performing a no-operation processor instruction prior to said cryptographic processing operation, said selection being based on a determination of whether the received quantity is to be processed cryptographically; and
(d) an output interface for providing said processed quantity to a recipient thereof.
1 Assignment
0 Petitions
Accused Products
Abstract
Information leaked from smart cards and other tamper resistant cryptographic devices can be statistically analyzed to determine keys or other secret data. A data collection and analysis system is configured with an analog-to-digital converter connected to measure the device'"'"'s consumption of electrical power, or some other property of the target device, that varies during the device'"'"'s processing. As the target device performs cryptographic operations, data from the A/D converter are recorded for each cryptographic operation. The stored data are then processed using statistical analysis, yielding the entire key, or partial information about the key that can be used to accelerate a brute force search or other attack.
-
Citations
5 Claims
-
1. A cryptographic processing device for securely performing a cryptographic processing operation in a manner resistant to discovery of a secret by external monitoring of variations in the amount of power consumed, comprising:
-
(a) an input interface for receiving a quantity to be processed; (b) a source of unpredictable information; (c) a processor for performing said cryptographic processing operation in a manner decorrelated from externally-monitorable signals produced by said device, by using outputs from said source to select between operating on an instruction and inserting a delay before operating on said instruction, wherein inserting said delay includes performing a no-operation processor instruction prior to said cryptographic processing operation, said selection being based on a determination of whether the received quantity is to be processed cryptographically; and (d) an output interface for providing said processed quantity to a recipient thereof. - View Dependent Claims (2, 3)
-
-
4. A method of securely performing a cryptographic processing operation in a manner resistant to information leakage attacks, using a cryptographic processing device that consumes power and produces externally monitorable signals, comprising:
-
(a) receiving a quantity to be processed; (b) generating unpredictable information; (c) determining whether to process the received quantity cryptographically; and (d) based on the determination, cryptographically processing said quantity, including using said unpredictable information to conceal a correlation between externally-monitorable signals produced by said device and said processing by selecting between operating on an instruction and inserting a delay before operating on said instruction, wherein said delay insertion includes a no-operation processor instruction. - View Dependent Claims (5)
-
Specification
-
- Resources
Litigation Campaign Assessment
Thank you for your request. You will receive a custom alert email when the Litigation Campaign Assessment is available.
×
-
Current AssigneeCryptography Research, Inc. (Rambus Inc.)
-
Original AssigneeRambus Inc.
-
InventorsKocher, Paul C., Jaffe, Joshua M., Jun, Benjamin C.
-
Primary Examiner(s)Barron, Jr., Gilberto
-
Assistant Examiner(s)Nobahar, Abdulhakim
-
Application NumberUS12/637,565Publication NumberTime in Patent Office1,786 DaysField of Search726/9, 726/20, 726/22, 726/25, 713/159, 713/172, 713/185, 713/189, 713/193, 713/194, 713/300, 713/310, 713322-324, 713/340, 713/400, 713/401, 713500-503, 713/600, 713/601, 380/1, 380/28, 380/29, 380204-207, 380/218, 380252-254US Class Current380/1CPC Class CodesG06F 1/06 Clock generators producing ...G06F 1/266 Arrangements to supply powe...G06F 1/3225 of memory devicesG06F 21/755 with measures against power...G06F 21/77 in smart cardsG06F 2207/7223 Randomisation as countermea...G06F 2207/7266 Hardware adaptation, e.g. d...G06F 7/00 Methods or arrangements for...G06K 19/073 Special arrangements for ci...G06K 19/07363 by preventing analysis of t...G06Q 20/341 Active cards, i.e. cards in...G06Q 20/382 insuring higher security of...G06Q 20/409 Device specific authenticat...G07F 7/08 by coded identity card or c...G07F 7/082 Features insuring the integ...G07F 7/1008 Active credit-cards provide...G09C 1/00 Apparatus or methods whereb...H04L 2209/04 Masking or blindingH04L 2209/08 Randomization, e.g. dummy o...H04L 2209/56 Financial cryptography, e.g...View All
