Thomas S. Messerges. Securing the AES Finalists Against Power Analysis Attacks. In Proceedings of the Fast Software Encryption Workshop, 2000.  Home/Search   Document Not in Database   Summary   Related Articles   Check

....side channel attacks. For instance, Daemen and Rijmen proposed replacing each wire of a circuit by two wires, one carrying the original bit and the other its complement [15] Messerges proposed data masking , where each value is split into two shares using a 2 out of 2 secret sharing scheme [27]; Goubin and Patarin suggested a duplication method based on similar methods [21] and many other proposals can be found in the literature. However, none of those schemes have been proven secure, and unsurprisingly, some have since been broken [11, 14] This experience suggests that the field ....

T.S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks," FSE'00, Springer-Verlag, 2000.

....shown in [8] that even inner rounds can be aimed by Power Analysis type attacks, so that the splitting should be performed on all rounds of the algorithm. This makes the issue of the memory and time computation overhead even more crucial, especially for embedded systems such as smart cards. In [13], Thomas Messerges investigated on DPA attacks applied on the AES candidates. He developped a general countermeasure, consisting in masking all the inputs and outputs of each elementary operations used by the microprocessor. This generic technique allowed him to evaluate the impact of these ....

....two di erent kinds of masking have to be used. There is thus a need for a method to convert back and forth between Boolean masking and arithmetic masking. This is typically the case for IDEA [12] and for three AES candidates: MARS [2] RC6 [16] and TWOFISH [17] Thomas Messerges proposed in [13] an algorithm in order to perform this conversion between a mask and a mask . Unfortunately, we show in the present paper that the BooleanToArithmetic algorithm proposed by T. Messerges is not sucient to prevent Di erential Power Analysis. In a similar way, the ArithmeticToBoolean ....

[Article contains additional citation context not shown here]

Thomas S. Messerges, \Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

....[21] is limited to bit slice ciphers, and hence is only applicable to Serpent. It is still unclear as to what performance penalties would be entailed if the techniques described in this study were implemented. A more general case study is summarized below. 3.6.4.1 A Case Study in Defense In Ref. [65], a study was made of smart card implementations of the finalists. In this study, implementations were augmented with defenses against power analysis attacks. The performance degradation caused by these defenses was measured. The results of this study are summarized in Table 14; these results were ....

....implementations of the finalists. In this study, implementations were augmented with defenses against power analysis attacks. The performance degradation caused by these defenses was measured. The results of this study are summarized in Table 14; these results were obtained from Table 2 of Ref. [65]. The study compared the results both with and without masking used as a defense against power analysis attacks. The approach in Ref. 65] can be considered a generalization of software balancing. In software balancing, the bit wise complements of data words are generated; in Ref. 65] random ....

[Article contains additional citation context not shown here]

T. Messerges, Securing the AES Finalists Against Power Analysis Attacks, in the preproceedings of the Fast Software Encryption Workshop 2000, April 10-12, 2000.

No context found.

Thomas S. Messerges. Securing the AES Finalists Against Power Analysis Attacks. In Proceedings of the Fast Software Encryption Workshop, 2000.

No context found.

Thomas S. Messerges. Securing the AES Finalists Against Power Analysis Attacks. In Proceedings of the Fast Software Encryption Workshop, 2000.

No context found.

T.S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks," FSE'00, Springer-Verlag, 2000.

No context found.

Thomas S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

No context found.

T. Messerges. Securing the aes finalists against power analysis attacks. In B. Schneier, editor, Fast Software Encryption - FSE 00, volume 1978.

No context found.

Thomas S. Messerges. Securing the AES Finalists Against Power Analysis Attacks. In Proceedings of the Fast Software Encryption Workshop, 2000.

No context found.

Thomas S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

No context found.

Thomas S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

No context found.

Messerges, T. S.: Securing the AES finalists against power analysis attacks, In Proc. Fast Software Encryption Workshop 2000.

No context found.

T.S. Messerges. Securing the AES Finalists Against Power Analysis Attacks. In B. Schneier, editor, 7th International Workshop on Fast Software Encryption --- FSE 2000, volume LNCS 1978, pages 150--164. Springer-Verlag, 2001.

No context found.

Messerges, T.: Securing the AES finalists against power analysis attacks. Proc. Fast Software Encryption Workshop 2000.

No context found.

Thomas S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

No context found.

T. Messerges, "Securing the AES Finalists Against Power Analysis Attacks", FSE 2000.

No context found.

Thomas S. Messerges, "Securing the AES Finalists Against Power Analysis Attacks ", in Proceedings of Fast Software Encryption Workshop 2000, SpringerVerlag, April 2000.

No context found.

T. Messerges, "Securing the AES finalists against power analysis attacks," Fast Software Encryption - FSE 2000, Lecture Notes in Computer Science, vol. 1978, pp. 150-164, 2001.

No context found.

Thomas S. Messerges. Securing the AES finalists against Power Analysis Attacks. In the Preproceedings of Fast Software Encryption Workshop 2000.

Online articles have much greater impact   More about CiteSeer.IST   Add search form to your site   Submit documents   Feedback  

CiteSeer.IST - Copyright Penn State and NEC