Paper 2022/1201

Leakage Certification Made Simple

Aakash Chowdhury, University of Klagenfurt
Arnab Roy, University of Klagenfurt
Carlo Brunetta, Simula UiB
Elisabeth Oswald, University of Klagenfurt and University of Birmingham
Abstract

Side channel evaluations benefit from sound characterisations of adversarial leakage models, which are the determining factor for attack success. Two questions are of interest: can we estimate a quantity that captures the ideal adversary (who knows the distributions that are involved in an attack), and can we judge how good one (or several) given leakage models are in relation to the ideal adversary? Existing work has led to a proliferation of custom quantities (the hypothetical information HI, perceived informatino PI, training information TI, and learnable information LI). These quantities all provide only (loose) bounds for the ideal adversary, they are slow to estimate, convergence guarantees are only for discrete distributions, and they have bias. Our work shows that none of these quantities is necessary: it is possible to characterise the ideal adversary precisely via the mutual information between the device inputs and the observed side channel traces. We achieve this result by a careful characterisation of the distributions in play. We also put forward a mutual information based approach to leakage certification, with a consistent estimator, and demonstrate via a range of case studies that our approach is simpler, faster, and correct.

Metadata
Available format(s)
PDF
Category
Implementation
Publication info
Preprint.
Keywords
Side channelsEvaluationLeakage CertificationMutual Information Estimation
Contact author(s)
aakash chowdhury @ aau at
arnab roy @ aau at
carlob @ simula no
elisabeth oswald @ aau at
History
2023-05-26: last of 4 revisions
2022-09-12: received
See all versions
Short URL
https://ia.cr/2022/1201
License
Creative Commons Attribution-NonCommercial
CC BY-NC

BibTeX

@misc{cryptoeprint:2022/1201,
      author = {Aakash Chowdhury and Arnab Roy and Carlo Brunetta and Elisabeth Oswald},
      title = {Leakage Certification Made Simple},
      howpublished = {Cryptology ePrint Archive, Paper 2022/1201},
      year = {2022},
      note = {\url{https://eprint.iacr.org/2022/1201}},
      url = {https://eprint.iacr.org/2022/1201}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.