Fault Attack on the DVB Common Scrambling Algorithm

  • Kai Wirt
Conference paper
Part of the Lecture Notes in Computer Science book series (LNCS, volume 3481)

Abstract

The Common Scrambling Algorithm (CSA) is used to encrypt streams of video data in the Digital Video Broadcasting (DVB) system. The algorithm uses a combination of a stream and a block cipher, apparently for a larger security margin. However these two algorithms share a common key.

In this paper we present a fault attack on the block cipher which can be launched without regarding the stream cipher part. This attack allows us to reconstruct the common key and thus breaks the complete Algorithm.

Keywords

block cipher cryptanalysis fault attack dvb pay tv 
This is a preview of subscription content, log in to check access.

Preview

Unable to display preview. Download preview PDF.

Unable to display preview. Download preview PDF.

References

  1. [ABF+02]
    Aumueller, C., Bier, P., Fischer, W., Hofreiter, P., Seifert, J.-P.: Fault attacks on rsa with crt: Concrete results and practical countermeasures. In: Kaliski Jr., B.S., Koç, Ç.K., Paar, C. (eds.) CHES 2002. LNCS, vol. 2523, pp. 260–275. Springer, Heidelberg (2003)CrossRefGoogle Scholar
  2. [BDJ97]
    Boneh, D., DeMillo, R.A., Lipton, R.J.: On the importance of checking cryptographic protocols for faults. In: Fumy, W. (ed.) EUROCRYPT 1997. LNCS, vol. 1233, pp. 37–51. Springer, Heidelberg (1997)Google Scholar
  3. [Bew98]
    Bewick, S.: Descrambling DVB data according to ETSI common scrambling specification. UK Patent Applications GB2322994A / GB2322995A (1998)Google Scholar
  4. [BS97]
    Biham, E., Shamir, A.: Differential fault analysis of secret key cryptosystems. In: Kaliski Jr., B.S. (ed.) CRYPTO 1997. LNCS, vol. 1294, pp. 513–525. Springer, Heidelberg (1997)Google Scholar
  5. [BS03]
    Bloemer, J., Seifert, J.-P.: Fault based cryptanalysis of the advanced encryption standard (aes). In: Wright, R.N. (ed.) FC 2003. LNCS, vol. 2742, pp. 162–181. Springer, Heidelberg (2003)CrossRefGoogle Scholar
  6. [Eur96]
    European Telecommunications Standards Institute. ETSI Technical Report 289: Support for use of scrambling and Conditional Access (CA) within digital broadcasting systems (1996)Google Scholar
  7. [Pse03]
    Pseudononymous authors. CSA – known facts and speculations (2003), http://csa.irde.to
  8. [WAJ98]
    Watts,D.D., Ashley, R.S.P., Jacobus, K.G.: System and apparatus for blockwise encryption and decryption of data. US Patent Application US5799089 (1998)Google Scholar
  9. [WW04]
    Weinmann, R.-P., Wirt, K.: Analysis of the dvb common scrambling algorithm. In: Proceedings on Eighth IFIP TC-6 TC-11 Conference on Communications and Multimedia Security. Kluwer Academic Publishers, Dordrecht (2004)Google Scholar

Copyright information

© Springer-Verlag Berlin Heidelberg 2005

Authors and Affiliations

  • Kai Wirt
    • 1
  1. 1.Department of Computer ScienceTechnical University DarmstadtDarmstadtGermany

Personalised recommendations