Paper 2011/520

Houssem Maghrebi and Sylvain Guilley and Claude Carlet and Jean-Luc Danger

Houssem maghebi, Sylvain Guilley, Claude Carlet, and Jean-Luc Danger

Abstract

This article provides an in-depth study of high-order (HO) Boolean masking countermeasure against side-channel attacks. We introduce the notion of HO-CPA immunity as a metric to characterize a leakage function. We show that this notion intervenes to assess both the resistance against HO-CPA attacks and the amount of leakage. Namely, the HO-CPA immunity, denoted $\mathsf{HCI} \in \N^*$, coincides with the lowest order of a successful HO-CPA and gives the dependence of leakage behavior with the noise's variance $\sigma^2$ (according to $\mathcal{O}(1/\sigma^{2 \times \mathsf{HCI}})$ in Landau notation). Then, we introduce the technique of leakage squeezing. It is an optimization of the straightforward masking where masks are recoded relevantly by bijections. Our main contribution is to show that the HO-CPA immunity of a masking countermeasure can be incremented by one or even by two at virtually no added cost. Indeed, the bijections (and inverse bijections) can be incorporated in tables that are often found in cryptographic algorithms (e.g. substitution boxes).

Note: A more pedagogical version of this report is published in the Journal of Cryptographic Engineering (JCEN): <a href="http://link.springer.com/article/10.1007/s13389-013-0067-1">http://link.springer.com/article/10.1007/s13389-013-0067-1</a>. <br /> <u>Citation:</u> "<i>Achieving side-channel high-order correlation immunity with leakage squeezing</i>", Claude Carlet, Jean-Luc Danger, Sylvain Guilley, Houssem Maghrebi, and Emmanuel Prouff. JCEN (Springer), DOI: 10.1007/s13389-013-0067-1

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Published elsewhere. Unknown status
Keywords
High-Order MaskingHigh-Order CPA Immunity ($\mathsf{HCI}$)Mutual Information Metric (MIM).
Contact author(s)
maghrebi @ enst fr
History
2014-02-04: last of 4 revisions
2011-09-22: received
See all versions
Short URL
https://ia.cr/2011/520
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2011/520,
      author = {Houssem maghebi and Sylvain Guilley and Claude Carlet and Jean-Luc Danger},
      title = {Houssem Maghrebi and Sylvain Guilley and Claude Carlet and Jean-Luc Danger},
      howpublished = {Cryptology ePrint Archive, Paper 2011/520},
      year = {2011},
      note = {\url{https://eprint.iacr.org/2011/520}},
      url = {https://eprint.iacr.org/2011/520}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.