WDDL is protected against setup time violation attacks

Nidhal Selmane; Shivam Bhasin; Sylvain Guilley; Tarik Graba; Jean Luc Danger

doi:10.1109/FDTC.2009.40

WDDL is protected against setup time violation attacks

Nidhal Selmane
, Shivam Bhasin
, Sylvain Guilley
, Tarik Graba
, Jean Luc Danger

Telecom Paris

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

In order to protect crypto-systems against side channel attacks various countermeasures have been implemented such as dual-rail logic or masking. Faults attacks are a powerful tool to break some implementations of robust cryptographic algorithms such as AES and DES. Various kind of fault attacks scenarios have been published. However, very few publications available in the public literature detail the practical realization of such attacks. In this paper we present the result of a practical fault attack on AES in WDDL and its comparison with its non-protected equivalent. The practical faults on an FPGA running an AES encryptor are realized by under-powering it and further exploited using Piret's attack. The results show that WDDL is protected against setup violation attacks by construction because a faulty bit is replaced by a null bit in the ciphertext. Therefore, the fault leaks no exploitable information. We also give a theoretical model for the above results. Other references have already studied the potential of fault protection of the resynchronizing gates (delay-insensitive). In this paper, we show that non-resynchronizing gates (hence combinatorial DPL such as WDDL) are natively immune to setup time violation attacks.

Original language	English
Title of host publication	Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009
Pages	73-83
Number of pages	11
DOIs	https://doi.org/10.1109/FDTC.2009.40
Publication status	Published - 1 Dec 2009
Event	6th International Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2009 - Lausanne, Switzerland Duration: 6 Sept 2009 → 6 Sept 2009

Publication series

Name	Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009

Conference

Conference	6th International Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2009
Country/Territory	Switzerland
City	Lausanne
Period	6/09/09 → 6/09/09

Keywords

AES
FPGA
Protection against faults
Setup violation fault attacks
WDDL

Access to Document

10.1109/FDTC.2009.40

Cite this

Selmane, N., Bhasin, S., Guilley, S., Graba, T., & Danger, J. L. (2009). WDDL is protected against setup time violation attacks. In Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009 (pp. 73-83). Article 5412854 (Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009). https://doi.org/10.1109/FDTC.2009.40

@inproceedings{4342f6e0a73a4cad8997478ebba7753f,

title = "WDDL is protected against setup time violation attacks",

abstract = "In order to protect crypto-systems against side channel attacks various countermeasures have been implemented such as dual-rail logic or masking. Faults attacks are a powerful tool to break some implementations of robust cryptographic algorithms such as AES and DES. Various kind of fault attacks scenarios have been published. However, very few publications available in the public literature detail the practical realization of such attacks. In this paper we present the result of a practical fault attack on AES in WDDL and its comparison with its non-protected equivalent. The practical faults on an FPGA running an AES encryptor are realized by under-powering it and further exploited using Piret's attack. The results show that WDDL is protected against setup violation attacks by construction because a faulty bit is replaced by a null bit in the ciphertext. Therefore, the fault leaks no exploitable information. We also give a theoretical model for the above results. Other references have already studied the potential of fault protection of the resynchronizing gates (delay-insensitive). In this paper, we show that non-resynchronizing gates (hence combinatorial DPL such as WDDL) are natively immune to setup time violation attacks.",

keywords = "AES, FPGA, Protection against faults, Setup violation fault attacks, WDDL",

author = "Nidhal Selmane and Shivam Bhasin and Sylvain Guilley and Tarik Graba and Danger, \{Jean Luc\}",

year = "2009",

month = dec,

day = "1",

doi = "10.1109/FDTC.2009.40",

language = "English",

isbn = "9780769538242",

series = "Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009",

pages = "73--83",

booktitle = "Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009",

note = "6th International Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2009 ; Conference date: 06-09-2009 Through 06-09-2009",

}

Selmane, N, Bhasin, S, Guilley, S, Graba, T & Danger, JL 2009, WDDL is protected against setup time violation attacks. in Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009., 5412854, Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009, pp. 73-83, 6th International Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2009, Lausanne, Switzerland, 6/09/09. https://doi.org/10.1109/FDTC.2009.40

WDDL is protected against setup time violation attacks. / Selmane, Nidhal; Bhasin, Shivam; Guilley, Sylvain et al.
Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009. 2009. p. 73-83 5412854 (Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - WDDL is protected against setup time violation attacks

AU - Selmane, Nidhal

AU - Bhasin, Shivam

AU - Guilley, Sylvain

AU - Graba, Tarik

AU - Danger, Jean Luc

PY - 2009/12/1

Y1 - 2009/12/1

N2 - In order to protect crypto-systems against side channel attacks various countermeasures have been implemented such as dual-rail logic or masking. Faults attacks are a powerful tool to break some implementations of robust cryptographic algorithms such as AES and DES. Various kind of fault attacks scenarios have been published. However, very few publications available in the public literature detail the practical realization of such attacks. In this paper we present the result of a practical fault attack on AES in WDDL and its comparison with its non-protected equivalent. The practical faults on an FPGA running an AES encryptor are realized by under-powering it and further exploited using Piret's attack. The results show that WDDL is protected against setup violation attacks by construction because a faulty bit is replaced by a null bit in the ciphertext. Therefore, the fault leaks no exploitable information. We also give a theoretical model for the above results. Other references have already studied the potential of fault protection of the resynchronizing gates (delay-insensitive). In this paper, we show that non-resynchronizing gates (hence combinatorial DPL such as WDDL) are natively immune to setup time violation attacks.

AB - In order to protect crypto-systems against side channel attacks various countermeasures have been implemented such as dual-rail logic or masking. Faults attacks are a powerful tool to break some implementations of robust cryptographic algorithms such as AES and DES. Various kind of fault attacks scenarios have been published. However, very few publications available in the public literature detail the practical realization of such attacks. In this paper we present the result of a practical fault attack on AES in WDDL and its comparison with its non-protected equivalent. The practical faults on an FPGA running an AES encryptor are realized by under-powering it and further exploited using Piret's attack. The results show that WDDL is protected against setup violation attacks by construction because a faulty bit is replaced by a null bit in the ciphertext. Therefore, the fault leaks no exploitable information. We also give a theoretical model for the above results. Other references have already studied the potential of fault protection of the resynchronizing gates (delay-insensitive). In this paper, we show that non-resynchronizing gates (hence combinatorial DPL such as WDDL) are natively immune to setup time violation attacks.

KW - AES

KW - FPGA

KW - Protection against faults

KW - Setup violation fault attacks

KW - WDDL

U2 - 10.1109/FDTC.2009.40

DO - 10.1109/FDTC.2009.40

M3 - Conference contribution

AN - SCOPUS:77950515261

SN - 9780769538242

T3 - Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009

SP - 73

EP - 83

BT - Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009

T2 - 6th International Workshop on Fault Diagnosis and Tolerance in Cryptography, FDTC 2009

Y2 - 6 September 2009 through 6 September 2009

ER -

Selmane N, Bhasin S, Guilley S, Graba T, Danger JL. WDDL is protected against setup time violation attacks. In Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009. 2009. p. 73-83. 5412854. (Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 6th International Workshop, FDTC 2009). doi: 10.1109/FDTC.2009.40

WDDL is protected against setup time violation attacks

Abstract

Publication series

Conference

Keywords

Access to Document

Fingerprint

Cite this