Journal of Cryptographic Engineering

, 1:123

Univariate side channel attacks and leakage modeling

  • Julien Doget
  • Emmanuel Prouff
  • Matthieu Rivain
  • François-Xavier Standaert
Regular Paper

DOI: 10.1007/s13389-011-0010-2

Cite this article as:
Doget, J., Prouff, E., Rivain, M. et al. J Cryptogr Eng (2011) 1: 123. doi:10.1007/s13389-011-0010-2

Abstract

Differential power analysis is a powerful cryptanalytic technique that exploits information leaking from physical implementations of cryptographic algorithms. During the two last decades, numerous variations of the original principle have been published. In particular, the univariate case, where a single instantaneous leakage is exploited, has attracted much research effort. In this paper, we argue that several univariate attacks among the most frequently used by the community are not only asymptotically equivalent, but can also be rewritten one in function of the other, only by changing the leakage model used by the adversary. In particular, we prove that most univariate attacks proposed in the literature can be expressed as correlation power analyses with different leakage models. This result emphasizes the major role plays by the model choice on the attack efficiency. In a second point of this paper, we hence also discuss and evaluate side channel attacks that involve no leakage model but rely on some general assumptions about the leakage. Our experiments show that such attacks, named robust, are a valuable alternative to the univariate differential power analyses. They only loose bit of efficiency in case a perfect model is available to the adversary, and gain a lot in case such information is not available.

Keywords

Side channel attackCorrelationRegressionModel

Copyright information

© Springer-Verlag 2011

Authors and Affiliations

  • Julien Doget
    • 1
    • 2
    • 3
  • Emmanuel Prouff
    • 1
  • Matthieu Rivain
    • 4
  • François-Xavier Standaert
    • 2
  1. 1.Oberthur TechnologiesNanterreFrance
  2. 2.Université Catholique de Louvain-la-Neuve, UCL Crypto GroupLouvain-la-NeuveBelgium
  3. 3.Département de MathématiquesUniversité Paris 8Saint-DenisFrance
  4. 4.CryptoExpertsParisFrance