Research On Security Analysis And Countermeasures Of Dual Rail AES Implementation

In the current information age,electronic equipment has been integrated into all aspects of our lives,and with it comes the question of how to protect the information se-curity of individual users.Among all the technologies that ensure information security,cryptography is the most basic and critical.The emergence of side-channel attacks has brought new threats to cryptographic devices.Different from traditional cryptanalysis,side channel analysis utilizes the char-acteristics of circuits:the power consumption of the circuits is related to the processed data.Therefore,the attackers only need to collect the physical information leaked when the device performs encryption and decryption,then execute the side channel attacks.The advanced encryption standard AES is currently the most commonly used symmetric block cipher,and its side channel attacks and countermeasures are one of the research hotspots.Dual Rail AES is a countermeasure,which is designed to resist side channel attacks by flattening the power consumption of the circuit.This paper analyzes the secu-rity of Dual complementary AES implemented on the hardware platform,and proposes countermeasures considering the vulnerabilities.The main works are as follows:Use Hamming Weight,Hamming Distance and Switching Distance models to com-prehensively analyze the security of Dual complementary AES implemented on the hardware platform.We find that although this dual rail countermeasure can resist at-tacks based on the Hamming Weight model,it becomes ineffective when attackers uti-lize Hamming Distance and Switching Distance models.We can recover the secret key using less than 4000 power traces,indicating that this Dual Rail AES countermeasure is flawed.Regarding the shortcomings of Dual Rail AES found in the first part of the work,we consider the circuit characteristics to propose two side channel countermeasures:Dual Rail AES pre-charge and Dual Rail AES Switching Register.both are designed to break the dependence of power consumption on the input and output of each round.Then we implement these two countermeasures on the hardware platform and use three power models to comprehensively verify their security.The results show that both of these countermeasures can resist side channel attacks.Then,considering the redun-dancy of Dual Rail AES,we use a random number generator to design a countermea-sure to resist fault attacks.Finally,we combine the two side channel countermeasures with the fault attack countermeasure respectively.We compare their resource usage,and propose a Dual Rail countermeasure that can resist both side channel attacks and fault attacks.