ACM Portal
  Subscribe (Full Service)    Register (Limited Service, Free)    Login
  Search:   The ACM Digital Library   The Guide
  
ACM Home Page
Please provide us with feedback. Feedback
A side-channel leakage free coprocessor IC in 0.18µm CMOS for embedded AES-based cryptographic and biometric processing
Full text PdfPdf (2.92 MB)
Source Annual ACM IEEE Design Automation Conference archive
Proceedings of the 42nd annual Design Automation Conference table of contents
Anaheim, California, USA
SESSION: Architectures for cryptography and security applications table of contents
Pages: 222 - 227  
Year of Publication: 2005
ISBN:1-59593-058-2
Authors
K. Tiri  UC Los Angeles
D. Hwang  UC Los Angeles
A. Hodjat  UC Los Angeles
B. Lai  UC Los Angeles
S. Yang  UC Los Angeles
P. Schaumont  UC Los Angeles
I. Verbauwhede  UC Los Angeles, CA and K.U.Leuven, Belgium
Sponsors
ACM: Association for Computing Machinery
SIGDA: ACM Special Interest Group on Design Automation
Publisher
ACM  New York, NY, USA
Bibliometrics
Downloads (6 Weeks): 6,   Downloads (12 Months): 29,   Citation Count: 9
Additional Information:

abstract   references   cited by   index terms   collaborative colleagues  

Tools and Actions: Request Permissions Request Permissions    Review this Article  
DOI Bookmark: Use this link to bookmark this Article: http://doi.acm.org/10.1145/1065579.1065639
What is a DOI?

ABSTRACT

Security ICs are vulnerable to side-channel attacks (SCAs) that find the secret key by monitoring the power consumption and other information that is leaked by the switching behavior of digital CMOS gates. This paper describes a side-channel attack resistant coprocessor IC and its design techniques. The IC has been fabricated in 0.18µm CMOS. The coprocessor, which is used for embedded cryptographic and biometric processing, consists of four components: an Advanced Encryption Standard (AES) based cryptographic engine, a fingerprint-matching oracle, a template storage, and an interface unit. Two functionally identical coprocessors have been fabricated on the same die. The first, 'secure', coprocessor is implemented using a logic style called Wave Dynamic Digital Logic (WDDL) and a layout technique called differential routing. The second, 'insecure', coprocessor is implemented using regular standard cells and regular routing techniques. Measurement-based experimental results show that a differential power analysis (DPA) attack on the insecure coprocessor requires only 8,000 acquisitions to disclose the entire 128b secret key. The same attack on the secure coprocessor still does not disclose the entire secret key at 1,500,000 acquisitions. This improvement in DPA resistance of at least 2 orders of magnitude makes the attack de facto infeasible. The required number of measurements is larger than the lifetime of the secret key in most practical systems.


REFERENCES

Note: OCR errors may be found in this Reference List extracted from the full text article. ACM has opted to expose the complete List rather than only correct and linked references.

 
1
M. Renaudin , F. Bouesse , Ph. Proust , J. P. Tual , L. Sourgen , F. Germain, High Security Smartcards, Proceedings of the conference on Design, automation and test in Europe, p.10228, February 16-20, 2004
 
2
P. Kocher, R. Lee, G. McGraw, A. Raghunathan and S. Ravi, "Security as a New Dimension in Embedded System Design," DAC, pp. 753--760, 2004.
 
3
E. Oswald, S. Mangard and N. Pramstaller, "Secure and Efficient Masking of AES - A Mission Impossible?," IACR Cryptology ePrint, 2004.
 
4
Kris Tiri , Ingrid Verbauwhede, A Logic Level Design Methodology for a Secure DPA Resistant ASIC or FPGA Implementation, Proceedings of the conference on Design, automation and test in Europe, p.10246, February 16-20, 2004
 
5
K. Tiri and I. Verbauwhede, "A Digital Design Flow for Secure Integrated Circuits," submitted IEEE TCAD.
 
6
K. Tiri and I. Verbauwhede, "Place and Route for Secure Standard Cell Design," CARDIS, pp. 143--158, 2004.
 
7
D. Hwang, P. Schaumont, K. Tiri and I. Verbauwhede, "Making Embedded Systems Secure," accepted IEEE Security & Privacy Magazine.
 
8
S. Moore, R. Anderson, R. Mullins, G. Taylor and J. Fournier, "Balanced self-checking asynchronous logic for smart card applications" Microprocessors and Microsystems 27.9, pp. 421--430, 2003.
 
9
N. Pramstaller, F. Gurkaynak, S. Hane, H. Kaeslin, N. Felber, and W. Fichtner, "Towards an AES Crypto-chip Resistant to Differential Power Analysis", ESSCIRC, pp. 307--310, 2004.

CITED BY  9
Kris Tiri , Ingrid Verbauwhede, Simulation models for side-channel information leaks, Proceedings of the 42nd annual conference on Design automation, June 13-17, 2005, San Diego, California, USA
Patrick Schaumont , Doris Ching , Ingrid Verbauwhede, An interactive codesign environment for domain-specific coprocessors, ACM Transactions on Design Automation of Electronic Systems (TODAES), v.11 n.1, p.70-87, January 2006
Kuan Jen Lin , Shan Chien Fan , Shih Hsien Yang , Cheng Chia Lo, Overcoming glitches and dissipation timing skews in design of DPA-resistant cryptographic hardware, Proceedings of the conference on Design, automation and test in Europe, April 16-20, 2007, Nice, France
Jude Angelo Ambrose , Roshan G. Ragel , Sri Parameswaran, A smart random code injection to mask power analysis based side channel attacks, Proceedings of the 5th IEEE/ACM international conference on Hardware/software codesign and system synthesis, September 30-October 03, 2007, Salzburg, Austria
Jude Angelo Ambrose , Roshan G. Ragel , Sri Parameswaran, RIJID: random code injection to mask power analysis based side channel attacks, Proceedings of the 44th annual conference on Design automation, June 04-08, 2007, San Diego, California
Patrick Schaumont , David Hwang , Shenglin Yang , Ingrid Verbauwhede, Multilevel Design Validation in a Secure Embedded System, IEEE Transactions on Computers, v.55 n.11, p.1380-1390, November 2006
Patrick Schaumont , Ingrid Verbauwhede, A Component-Based Design Environment for ESL Design, IEEE Design & Test, v.23 n.5, p.338-347, September 2006
Romuald Mosqueron , Julien Dubois , Marco Mattavelli , David Mauvilet, Smart camera based on embedded HW/SW coprocessor, EURASIP Journal on Embedded Systems, 2008, p.1-13, January 2008
Jude Angelo Ambrose , Sri Parameswaran , Aleksandar Ignjatovic, MUTE-AES: a multiprocessor architecture to prevent power analysis based side channel attack of the AES algorithm, Proceedings of the 2008 IEEE/ACM International Conference on Computer-Aided Design, November 10-13, 2008, San Jose, California

INDEX TERMS

Primary Classification:
  B. Hardware
  B.7 INTEGRATED CIRCUITS
      B.7.0 General

Additional Classification:
  E. Data
  E.3 DATA ENCRYPTION


General Terms:
Design, Security


Keywords:
countermeasure, differential power analysis, encryption, security IC, side-channel attack, smart card

Collaborative Colleagues:
K. Tiri: colleagues
D. Hwang: colleagues
A. Hodjat: colleagues
B. Lai: colleagues
S. Yang: colleagues
P. Schaumont: colleagues
I. Verbauwhede: colleagues

The ACM Portal is published by the Association for Computing Machinery. Copyright © 2009 ACM, Inc.
Terms of Usage   Privacy Policy   Code of Ethics   Contact Us

Useful downloads: Adobe Acrobat    QuickTime    Windows Media Player    Real Player