Electromagnetic glitch on the AES round counter

This article presents a Round Addition Analysis on a software implementation of the Advanced Encryption Standard (AES) algorithm. The round keys are computed on-the-fly during each encryption. A non-invasive transient fault injection is achieved on the AES round counter. The attack is performed by injecting a very short electromagnetic glitch on a 32-bit microcontroller based on the arm Cortex-M3 processor. Using this experimental setup, we are able to disrupt the round counter increment at the end of the penultimate round and execute one additional round. This faulty execution enables us to recover the encryption key with only two pairs of corresponding correct and faulty ciphertexts.

Mots clés

fault injection microcontroller round addition aes electromagnetic glitch

Domaines

Cryptographie et sécurité [cs.CR] Electronique Systèmes embarqués

Fichier principal

COSADE_2013_HAL.pdf (559.36 Ko)

Origine	Fichiers produits par l'(les) auteur(s)

Nicolas Moro : Connectez-vous pour contacter le contributeur

https://hal-emse.ccsd.cnrs.fr/emse-00837514

Soumis le : lundi 24 février 2014-14:29:04

Dernière modification le : mardi 17 septembre 2024-15:46:15

Archivage à long terme le : samedi 24 mai 2014-10:36:28

Dates et versions

emse-00837514 , version 1 (24-02-2014)

Identifiants

HAL Id : emse-00837514 , version 1
DOI : 10.1007/978-3-642-40026-1

Citer

Amine Dehbaoui, Amir-Pasha Mirbaha, Nicolas Moro, Jean-Max Dutertre, Assia Tria. Electromagnetic glitch on the AES round counter. Fourth International Workshop on Constructive Side-Channel Analysis and Secure Design - COSADE'2013, Mar 2013, Paris, France. pp 17-31, ⟨10.1007/978-3-642-40026-1⟩. ⟨emse-00837514⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

EMSE CEA CMP-ENSMSE SAS-ENSMSE DRT LETI CEA-GRE INSTITUT-MINES-TELECOM

447 Consultations

1370 Téléchargements