The Myth of Generic DPA…and the Magic of Learning

  • Carolyn Whitnall
  • Elisabeth Oswald
  • François-Xavier Standaert
Conference paper

DOI: 10.1007/978-3-319-04852-9_10

Volume 8366 of the book series Lecture Notes in Computer Science (LNCS)
Cite this paper as:
Whitnall C., Oswald E., Standaert FX. (2014) The Myth of Generic DPA…and the Magic of Learning. In: Benaloh J. (eds) Topics in Cryptology – CT-RSA 2014. CT-RSA 2014. Lecture Notes in Computer Science, vol 8366. Springer, Cham

Abstract

A generic DPA strategy is one which is able to recover secret information from physically observable device leakage without any a priori knowledge about the device’s leakage characteristics. Here we provide much-needed clarification on results emerging from the existing literature, demonstrating precisely that such methods (strictly defined) are inherently restricted to a very limited selection of target functions. Continuing to search related techniques for a ‘silver bullet’ generic attack appears a bootless errand. However, we find that a minor relaxation of the strict definition—the incorporation of some minimal non-device-specific intuition—produces scope for generic-emulating strategies, able to succeed against a far wider range of targets. We present stepwise regression as an example of such, and demonstrate its effectiveness in a variety of scenarios. We also give some evidence that its practical performance matches that of ‘best bit’ DoM attacks which we take as further indication for the necessity of performing profiled attacks in the context of device evaluations.

Keywords

side-channel analysis differential power analysis 

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

Copyright information

© Springer International Publishing Switzerland 2014

Authors and Affiliations

  • Carolyn Whitnall
    • 1
  • Elisabeth Oswald
    • 1
  • François-Xavier Standaert
    • 2
  1. 1.Department of Computer ScienceUniversity of BristolBristolUK
  2. 2.UCL Crypto GroupUniversité catholique de LouvainLouvain-la-NeuveBelgium