A Critical Analysis of ISO 17825 (‘Testing Methods for the Mitigation of Non-invasive attack classes against cryptographic modules')

Carolyn A Whitnall, M E Oswald

Research output: Chapter in Book/Report/Conference proceedingConference Contribution (Conference Proceeding)

26 Citations (Scopus)

Abstract

The ISO standardisation of ‘Testing methods for the mitigation of non-invasive attack classes against cryptographic modules’ (ISO/IEC 17825:2016) specifies the use of the Test Vector Leakage Assessment (TVLA) framework as the sole measure to assess whether or not an implementation of (symmetric) cryptography is vulnerable to differential side-channel attacks. It is the only publicly available standard of this kind, and the first side-channel assessment regime to exclusively rely on a TVLA instantiation.

TVLA essentially specifies statistical leakage detection tests with the aim of removing the burden of having to test against an ever increasing number of attack vectors. It offers the tantalising prospect of ‘conformance testing’: if a device passes TVLA, then, one is led to hope, the device would be secure against all (first-order) differential side-channel attacks.

In this paper we provide a statistical assessment of the specific instantiation of TVLA in this standard. This task leads us to inquire whether (or not) it is possible to assess the side-channel security of a device via leakage detection (TVLA) only. We find a number of grave issues in the standard and its adaptation of the original TVLA guidelines. We propose some innovations on existing methodologies and finish by giving recommendations for best practice and the responsible reporting of outcomes.
Original languageEnglish
Title of host publicationAdvances in Cryptology – ASIACRYPT 2019
PublisherSpringer
Pages256-284
Number of pages28
Volume11923
ISBN (Electronic)978-3-030-34618-8
ISBN (Print)978-3-030-34617-1
DOIs
Publication statusPublished - 8 Dec 2019

Publication series

NameLecture Notes in Computer Science
PublisherSpringer
ISSN (Electronic)1611-3349

Fingerprint

Dive into the research topics of 'A Critical Analysis of ISO 17825 (‘Testing Methods for the Mitigation of Non-invasive attack classes against cryptographic modules')'. Together they form a unique fingerprint.

Cite this