Masking Tables—An Underestimated Security Risk

Mike Tunstall; Carolyn A Whitnall; M E Oswald

doi:10.1007/978-3-662-43933-3_22

Masking Tables—An Underestimated Security Risk

Mike Tunstall, Carolyn A Whitnall, M E Oswald

Cryptography and Information Security

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

30 Citations (Scopus)

Abstract

The literature on side-channel analysis describes numerous masking schemes designed to protect block ciphers at the implementation level. Such masking schemes typically require the computation of masked tables prior to the execution of an encryption function. In this paper we revisit an attack which directly exploits this computation in such a way as to recover all or some of the masks used. We show that securely implementing masking schemes is only possible where one has access to a significant amount of random numbers.

Original language	English
Title of host publication	Fast Software Encryption 2013
Publisher	Springer
Pages	425-444
Volume	8424
DOIs	https://doi.org/10.1007/978-3-662-43933-3_22
Publication status	Published - 2014

Publication series

Name	Lecture Notes in Computer Science
Publisher	Springer

Access to Document

10.1007/978-3-662-43933-3_22

http://eprint.iacr.org/2013/735

Handle.net

Persistent link

SILENT: Rework of Side channels-theory and implications for society
Oswald, M. E. (Principal Investigator)
1/01/11 → 1/04/16
Project: Research

Cite this

@inproceedings{ba0c5438174749e5ab33aeb1dbe88ada,

title = "Masking Tables—An Underestimated Security Risk",

abstract = "The literature on side-channel analysis describes numerous masking schemes designed to protect block ciphers at the implementation level. Such masking schemes typically require the computation of masked tables prior to the execution of an encryption function. In this paper we revisit an attack which directly exploits this computation in such a way as to recover all or some of the masks used. We show that securely implementing masking schemes is only possible where one has access to a significant amount of random numbers.",

author = "Mike Tunstall and Whitnall, \{Carolyn A\} and Oswald, \{M E\}",

year = "2014",

doi = "10.1007/978-3-662-43933-3\_22",

language = "English",

volume = "8424",

series = "Lecture Notes in Computer Science",

publisher = "Springer",

pages = "425--444",

booktitle = "Fast Software Encryption 2013",

address = "United States",

}

TY - GEN

T1 - Masking Tables—An Underestimated Security Risk

AU - Tunstall, Mike

AU - Whitnall, Carolyn A

AU - Oswald, M E

PY - 2014

Y1 - 2014

N2 - The literature on side-channel analysis describes numerous masking schemes designed to protect block ciphers at the implementation level. Such masking schemes typically require the computation of masked tables prior to the execution of an encryption function. In this paper we revisit an attack which directly exploits this computation in such a way as to recover all or some of the masks used. We show that securely implementing masking schemes is only possible where one has access to a significant amount of random numbers.

AB - The literature on side-channel analysis describes numerous masking schemes designed to protect block ciphers at the implementation level. Such masking schemes typically require the computation of masked tables prior to the execution of an encryption function. In this paper we revisit an attack which directly exploits this computation in such a way as to recover all or some of the masks used. We show that securely implementing masking schemes is only possible where one has access to a significant amount of random numbers.

U2 - 10.1007/978-3-662-43933-3_22

DO - 10.1007/978-3-662-43933-3_22

M3 - Conference Contribution (Conference Proceeding)

VL - 8424

T3 - Lecture Notes in Computer Science

SP - 425

EP - 444

BT - Fast Software Encryption 2013

PB - Springer

ER -

Masking Tables—An Underestimated Security Risk

Abstract

Publication series

Access to Document

Handle.net

Fingerprint

Projects

SILENT: Rework of Side channels-theory and implications for society

Cite this