Power Analysis On Stream Cipher Grain Family

In resource-constrained environments,lightweight cryptography provides an effective solution for balancing security and various other performance metrics such as memory requirements,throughput,and energy requirements.Among them,the Grain family cipher algorithm is a classic lightweight stream cipher algorithm,which currently mainly includes Grain v0,Grain vl,Grain-128,Grain-128 a and Grain-128 AEAD.At the same time,the sidechannel analysis technology has caused a serious threat to the security of various cryptographic algorithms.However,the research on the effectiveness of lightweight stream ciphers against side-channel analysis,especially energy analysis,is still very limited.The main contributions of this thesis are as follows:On the one hand: Firstly,the existing cryptanalysis methods for the Grain family,as well as the characteristics and attack processes of various energy analysis methods are reviewed.Secondly,referring to the simple power analysis process proposed by Burman for LFSR and Zadeh for NFSR,a differential power analysis based on the energy consumption difference of adjacent clocks which is suitable for FSR as the attack point is proposed,and the method is theoretically demonstrated.The robustness of Grain v1,Grain-128 and Grain-128 a was deduced.The actual simulation results show that Grain-128 a has the highest security.On the other hand: Considering that correlation power analysis(CPA)is more robust and effective than differential power analysis(DPA),based on the classical CPA proposed by Brier et al.,a single clock improved CPA is proposed.The method increases the signal-tonoise ratio by adding a control group in the process of collecting the power curve,and using the control group to reduce the part of the power curve that is irrelevant to the information of interest.And because the Hamming distance power consumption model is closer to the real power consumption change than the Hamming weight power consumption model,the Hamming distance is used to replace the Hamming weight to improve the accuracy of the selection function.Using FSR as the attack point,the three versions of Grain v1,Grain-128 and Grain-128 a in stream cipher Grain family are attacked and deduced,and their respective complexities are given.And the effectiveness of the new CPA is verified.