Multi-bit blinding: A countermeasure for RSA against side channel attacks

Abdullah Aljuffri; Cezar Reinbrecht; Said Hamdioui; Mottaqiallah Taouil

doi:10.1109/VTS50974.2021.9441035

Multi-bit blinding: A countermeasure for RSA against side channel attacks

Abdullah Aljuffri, Cezar Reinbrecht, Said Hamdioui, Mottaqiallah Taouil

Research output: Chapter in Book/Conference proceedings/Edited volume › Conference contribution › Scientific › peer-review

2 Citations (Scopus)

Abstract

Asymmetric algorithms such as RSA are considered secure from an algorithmic point of view, yet their implementations are typically vulnerable as they are used by attackers to comprise the secret key. Many countermeasures have been proposed to thwart these attacks. However, they are typically broken as the key can be easily compromised when attackers succeed figuring out which part of the traces belong to the square and multiply operations. In this paper, a new countermeasure is proposed against side channel attacks, referred to as multi-bit blinding. The proposed method provides a constant execution behavior regardless of the key value without additional cost (i.e., dummy/extra operations). It realizes this by considering multiple bits of the key (i.e., two in this paper) simultaneously and always perform the same operations on them independent of the two-bit value. This makes attacks much harder as the attacker cannot retrieve the key simply by identifying the operations. Instead, the attackers need to guess the correct values of the operations as well. As a case study, the security of an RSA algorithm implementation based on the proposed method is evaluated. Our experimental results show that the new method is secure against profiled and non-profiled side channel attacks with less overhead than currently published countermeasures.

Original language	English
Title of host publication	2021 IEEE 39th VLSI Test Symposium (VTS)
Place of Publication	Piscataway
Publisher	IEEE
Number of pages	6
ISBN (Electronic)	978-1-6654-1949-9
ISBN (Print)	978-1-6654-3005-0
DOIs	https://doi.org/10.1109/VTS50974.2021.9441035
Publication status	Published - 2021
Event	39th IEEE VLSI Test Symposium, VTS 2021 - Virtual Interactive Live Event/San Diego, United States Duration: 26 Apr 2021 → 28 Apr 2021

Conference

Conference	39th IEEE VLSI Test Symposium, VTS 2021
Country/Territory	United States
City	Virtual Interactive Live Event/San Diego
Period	26/04/21 → 28/04/21

Keywords

Asymmetric cryptography
Countermeasures
RSA
Side channel analysis

Access to Document

10.1109/VTS50974.2021.9441035

Cite this

@inproceedings{fc7b1f7b993b4699bbcd6bf1d42c268e,

title = "Multi-bit blinding: A countermeasure for RSA against side channel attacks",

abstract = "Asymmetric algorithms such as RSA are considered secure from an algorithmic point of view, yet their implementations are typically vulnerable as they are used by attackers to comprise the secret key. Many countermeasures have been proposed to thwart these attacks. However, they are typically broken as the key can be easily compromised when attackers succeed figuring out which part of the traces belong to the square and multiply operations. In this paper, a new countermeasure is proposed against side channel attacks, referred to as multi-bit blinding. The proposed method provides a constant execution behavior regardless of the key value without additional cost (i.e., dummy/extra operations). It realizes this by considering multiple bits of the key (i.e., two in this paper) simultaneously and always perform the same operations on them independent of the two-bit value. This makes attacks much harder as the attacker cannot retrieve the key simply by identifying the operations. Instead, the attackers need to guess the correct values of the operations as well. As a case study, the security of an RSA algorithm implementation based on the proposed method is evaluated. Our experimental results show that the new method is secure against profiled and non-profiled side channel attacks with less overhead than currently published countermeasures. ",

keywords = "Asymmetric cryptography, Countermeasures, RSA, Side channel analysis",

author = "Abdullah Aljuffri and Cezar Reinbrecht and Said Hamdioui and Mottaqiallah Taouil",

year = "2021",

doi = "10.1109/VTS50974.2021.9441035",

language = "English",

isbn = "978-1-6654-3005-0",

booktitle = "2021 IEEE 39th VLSI Test Symposium (VTS)",

publisher = "IEEE ",

address = "United States",

note = "39th IEEE VLSI Test Symposium, VTS 2021 ; Conference date: 26-04-2021 Through 28-04-2021",

}

TY - GEN

T1 - Multi-bit blinding

T2 - 39th IEEE VLSI Test Symposium, VTS 2021

AU - Aljuffri, Abdullah

AU - Reinbrecht, Cezar

AU - Hamdioui, Said

AU - Taouil, Mottaqiallah

PY - 2021

Y1 - 2021

N2 - Asymmetric algorithms such as RSA are considered secure from an algorithmic point of view, yet their implementations are typically vulnerable as they are used by attackers to comprise the secret key. Many countermeasures have been proposed to thwart these attacks. However, they are typically broken as the key can be easily compromised when attackers succeed figuring out which part of the traces belong to the square and multiply operations. In this paper, a new countermeasure is proposed against side channel attacks, referred to as multi-bit blinding. The proposed method provides a constant execution behavior regardless of the key value without additional cost (i.e., dummy/extra operations). It realizes this by considering multiple bits of the key (i.e., two in this paper) simultaneously and always perform the same operations on them independent of the two-bit value. This makes attacks much harder as the attacker cannot retrieve the key simply by identifying the operations. Instead, the attackers need to guess the correct values of the operations as well. As a case study, the security of an RSA algorithm implementation based on the proposed method is evaluated. Our experimental results show that the new method is secure against profiled and non-profiled side channel attacks with less overhead than currently published countermeasures.

AB - Asymmetric algorithms such as RSA are considered secure from an algorithmic point of view, yet their implementations are typically vulnerable as they are used by attackers to comprise the secret key. Many countermeasures have been proposed to thwart these attacks. However, they are typically broken as the key can be easily compromised when attackers succeed figuring out which part of the traces belong to the square and multiply operations. In this paper, a new countermeasure is proposed against side channel attacks, referred to as multi-bit blinding. The proposed method provides a constant execution behavior regardless of the key value without additional cost (i.e., dummy/extra operations). It realizes this by considering multiple bits of the key (i.e., two in this paper) simultaneously and always perform the same operations on them independent of the two-bit value. This makes attacks much harder as the attacker cannot retrieve the key simply by identifying the operations. Instead, the attackers need to guess the correct values of the operations as well. As a case study, the security of an RSA algorithm implementation based on the proposed method is evaluated. Our experimental results show that the new method is secure against profiled and non-profiled side channel attacks with less overhead than currently published countermeasures.

KW - Asymmetric cryptography

KW - Countermeasures

KW - RSA

KW - Side channel analysis

UR - http://www.scopus.com/inward/record.url?scp=85107512574&partnerID=8YFLogxK

U2 - 10.1109/VTS50974.2021.9441035

DO - 10.1109/VTS50974.2021.9441035

M3 - Conference contribution

AN - SCOPUS:85107512574

SN - 978-1-6654-3005-0

BT - 2021 IEEE 39th VLSI Test Symposium (VTS)

PB - IEEE

CY - Piscataway

Y2 - 26 April 2021 through 28 April 2021

ER -

Multi-bit blinding: A countermeasure for RSA against side channel attacks

Abstract

Conference

Keywords

Access to Document

Other files and links

Fingerprint

Cite this