Vade mecum on side-channels attacks and countermeasures for the designer and the evaluator

2011 6th International Conference on Design & Technology of Integrated Systems in Nanoscale Era (DTIS) Pub Date : 2011-04-06 DOI:10.1109/DTIS.2011.5941419

S. Guilley, O. Meynard, Maxime Nassar, Guillaume Duc, P. Hoogvorst, Houssem Maghrebi, Aziz Elaabid, S. Bhasin, Youssef Souissi, Nicolas Debande, L. Sauvage, J. Danger

{"title":"Vade mecum on side-channels attacks and countermeasures for the designer and the evaluator","authors":"S. Guilley, O. Meynard, Maxime Nassar, Guillaume Duc, P. Hoogvorst, Houssem Maghrebi, Aziz Elaabid, S. Bhasin, Youssef Souissi, Nicolas Debande, L. Sauvage, J. Danger","doi":"10.1109/DTIS.2011.5941419","DOIUrl":null,"url":null,"abstract":"Implementation-level attacks are nowadays well known and most designers of security embedded systems are aware of them. However, both the number of vulnerabilities and of protections have seriously grown since the first public reporting of these threats in 1996. It is thus difficult to assess the correct countermeasures association to cover all the possible attack paths. The goal of this paper is to give a clear picture of the possible adequation between actually risks and mitigation techniques. A specific focus is made on two protection techniques addressing primarily side-channel attacks: masking and hiding. For the first time, we provide with a way to estimate a tradeoff depending on the environmental conditions (amount of noise) and on the designer skills (ability to balance the design). This tradeoff is illustrated in a decision diagram, helpful for the security designer to justify choices and to account for the cost overhead.","PeriodicalId":409387,"journal":{"name":"2011 6th International Conference on Design & Technology of Integrated Systems in Nanoscale Era (DTIS)","volume":"21 4 1","pages":"0"},"PeriodicalIF":0.0000,"publicationDate":"2011-04-06","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"4","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"2011 6th International Conference on Design & Technology of Integrated Systems in Nanoscale Era (DTIS)","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/10.1109/DTIS.2011.5941419","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}

引用次数: 4

Abstract

Implementation-level attacks are nowadays well known and most designers of security embedded systems are aware of them. However, both the number of vulnerabilities and of protections have seriously grown since the first public reporting of these threats in 1996. It is thus difficult to assess the correct countermeasures association to cover all the possible attack paths. The goal of this paper is to give a clear picture of the possible adequation between actually risks and mitigation techniques. A specific focus is made on two protection techniques addressing primarily side-channel attacks: masking and hiding. For the first time, we provide with a way to estimate a tradeoff depending on the environmental conditions (amount of noise) and on the designer skills (ability to balance the design). This tradeoff is illustrated in a decision diagram, helpful for the security designer to justify choices and to account for the cost overhead.

查看原文

微信好友朋友圈 QQ好友复制链接

本刊更多论文

为设计人员和评估人员提供关于侧信道攻击和对策的建议

实现级攻击现在是众所周知的，大多数安全嵌入式系统的设计者都意识到这一点。然而，自从1996年首次公开报告这些威胁以来，漏洞和保护的数量都在严重增长。因此，很难评估正确的对策关联以覆盖所有可能的攻击路径。本文的目标是对实际风险和缓解技术之间可能存在的不足给出一个清晰的描述。特别关注两种主要解决侧信道攻击的保护技术:掩蔽和隐藏。我们第一次提供了一种根据环境条件(噪音量)和设计师技能(平衡设计的能力)来评估权衡的方法。决策图中说明了这种权衡，这有助于安全设计人员证明选择的合理性，并说明成本开销。

本文章由计算机程序翻译，如有差异，请以英文原文为准。

求助全文

约1分钟内获得全文去求助

来源期刊

2011 6th International Conference on Design & Technology of Integrated Systems in Nanoscale Era (DTIS)

自引率

0.00%

发文量