Research On Side Channel Protection Like Random Delay Insertion And Its Attack And Security Evaluation Method

After decades of development,side channel attacks have seriously threatened the security of cryptographic devices,and become an effective means to extract secret information from cryptographic devices.Therefore,it is necessary to develop various techniques to resist side channel attacks.The side channel protection method like RDI(Random Delay Insertion)studied in this paper is such a protection technology that can resist side channel attack.It increases the difficulty and cost of attack by inserting dummy instructions and randomly disrupting the execution sequence.This paper extensively studies RDI protection and its corresponding attack and security evaluation methods.The main work is divided into the following aspects:1)A new analysis model for RDI protection is proposed,and the attack efficiency of direct CPA(Correlation Power Analysis)and integrated attack against RDI protection is analyzed by using this model.The same conclusions and conditions are obtained as those in the existing literature.2)A new and more effective attack method for RDI protection is proposed,which is called WIA(Weighted Integration Attack)The attack efficiency of WIA under various conditions is analyzed in detail.The simulation results show that WIA is superior to the traditional CPA attack.In addition,the security evaluation experiment is carried out by using the theoretical analysis results of WIA with a set of measured data,which verifies the correctness of the theoretical analysis results.3)A protection enhancement scheme for WIA and two simple probability distribution generation algorithms are proposed,and the effectiveness of this method is verified by a set of measured data.The experimental results show that the attacker's cost can be significantly increased by adjusting the probability distribution of the random variable which controls the randomness of RDI protection.4)Combining WIA with other non-profiling attack methods,two new attack methods,WIA-VPA and WIA-MIA,are proposed.The simulation results show that WIA-VPA is better than traditional VPA,WIA-MIA is obviously superior to traditional MIA.5)Applying WIA to unprotected situations,the condition of locating the target median power consumption position in WIA is removed by simple exhaustive thinking,but it also brings huge overhead to the actual calculation.For this reason,the matrix inversion part of the WIA-CPA attack algorithm is optimized by recursive thinking.6)Based on Bayesian decision theory,an elegant distinguisher(corresponding attack method called MCPA)is deduced,which can integrate WIA and high- order attack perfectly.The simulation results show that MCPA is superior to traditional CPA.