Formally Proved Security of Assembly Code Against Power Analysis: A Case Study on Balanced Logic

Abstract : In his keynote speech at CHES 2004, Kocher advocated that side-channel attacks were an illustration that formal cryptography was not as secure as it was believed because some assumptions (e.g., no auxiliary information is available during the computation) were not modeled. This failure is caused by formal methods' focus on models rather than implementations. In this paper we present formal methods and tools for designing protected code and proving its security against power analysis. These formal methods avoid the discrepancy between the model and the implementation by working on the latter rather than on a high-level model. Indeed, our methods allow us (a) to automatically insert a power balancing countermeasure directly at the assembly level, and to prove the correctness of the induced code transformation; and (b) to prove that the obtained code is balanced with regard to a reasonable leakage model. We also show how to characterize the hardware to use the resources which maximize the relevancy of the model. The tools implementing our methods are then demonstrated in a case study on an 8-bit AVR smartcard for which we generate a provably protected present implementation that reveals to be at least 250 times more resistant to CPA attacks.
Type de document :
Article dans une revue
Journal of Cryptographic Engineering, Springer, 2015, pp._. 〈10.1007/s13389-015-0105-2〉
Liste complète des métadonnées

https://hal.archives-ouvertes.fr/hal-01164591
Contributeur : Pablo Rauzy <>
Soumis le : mercredi 17 juin 2015 - 12:30:17
Dernière modification le : jeudi 23 novembre 2017 - 19:08:02
Document(s) archivé(s) le : mardi 25 avril 2017 - 11:23:37

Fichiers

dpl.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Collections

Citation

Pablo Rauzy, Sylvain Guilley, Zakaria Najm. Formally Proved Security of Assembly Code Against Power Analysis: A Case Study on Balanced Logic. Journal of Cryptographic Engineering, Springer, 2015, pp._. 〈10.1007/s13389-015-0105-2〉. 〈hal-01164591〉

Partager

Métriques

Consultations de la notice

190

Téléchargements de fichiers

85