Idea: Embedded Fault Injection Simulator on Smartcard
Smartcard implementations are prone to perturbation attacks that consist in changing the normal behavior of components in order to create exploitable errors. Perturbation attacks could be realized by different means such as laser beams involving costly and complex injection platforms. In the context of black box or grey box evaluation, there is a strong necessity of identifying fault injection vulnerabilities in developed products. This is why we propose to integrate the injection mechanism straight into the smartcard project. The embedded fault simulator program is thus integrated with the chip software and its effects can be analyzed by side-channel observations, which is not the case with any existing fault simulators. In this paper, we present this new concept and its architectural design. We show then how to implement the simulator on a real smartcard product. Finally, to validate this approach, we study the functional and side-channel impact of fault injection on a standard algorithm provided by the host smartcard.
KeywordsFault injection simulation fault attack smartcard embedded secure software
Unable to display preview. Download preview PDF.
- 1.Kocher, P.C.: Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems. In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol. 1109, pp. 104–113. Springer, Heidelberg (1996)Google Scholar
- 8.Skorobogatov, S.: Optical Fault Masking Attacks. In: FDTC, pp. 23–29. IEEE Computer Society (2010)Google Scholar
- 9.Berthomé, P., Heydemann, K., Kauffmann-Tourkestansky, X., Lalande, J.-F.: High Level Model of Control Flow Attacks for Smart Card Functional Security. In: ARES, pp. 224–229. IEEE Computer Society (2012)Google Scholar
- 10.Grinschgl, J., Aichinger, T., Krieg, A., Steger, C., Weiss, R., Bock, H., Haid, J.: Automatized Fault Attack Emulation for Penetration Testing. In: 12th International Common Criteria Conference (2011)Google Scholar
- 11.Kosuri, V.K., Fazal, N.: FPGA Modeling of Fault-Injection Attacks on Cryptographic Devices. IJERA 3, 937–943 (2013)Google Scholar
- 12.Machemie, J.-B., Mazin, C., Lanet, J.-L., Cartigny, J.: SmartCM a smart card fault injection simulator. In: WIFS, pp. 1–6. IEEE (2011)Google Scholar
- 13.ISO/IEC 7816-4 Identification cards – Integrated circuit cards – Part 4: Organization, security and commands for interchange(2013)Google Scholar
- 14.Moro, N., Dehbaoui, A., Heydemann, K., Robisson, B., Encrenaz, E.: Electromagnetic Fault Injection: Towards a Fault Model on a 32-bit Microcontroller. In: FDTC, pp. 77–88. IEEE (2013)Google Scholar