International Association for Cryptologic Research

International Association
for Cryptologic Research

Transactions on Cryptographic Hardware and Embedded Systems 2026

Testing Security Equivalence in the Random Probing Model


Anna Guinet
Ruhr University Bochum, Bochum, Germany

Carina Graw
Ruhr University Bochum, Bochum, Germany

Lukas Koletzko
Ruhr University Bochum, Bochum, Germany

Jan Richter-Brockmann
Ruhr University Bochum, Bochum, Germany

Holger Dette
Ruhr University Bochum, Bochum, Germany

Tim Güneysu
Ruhr University Bochum, Bochum, Germany


Keywords: random probing model, equivalence testing, superiority testing, masking


Abstract

The random probing model is a theoretical model that abstracts the physical leakage of an embedded device running a cryptographic scheme with more realistic assumptions compared to the threshold probing model. It assumes that the wires of the target device leak their assigned values with probability p, and the said values may reveal information about secret data, which could lead to a security violation. From that, we can compute the probability ϵ that a side-channel adversary may learn secret data from any random combination of wires as a function of the number of wire combinations that breaches security with rate p. This model is used to evaluate the security of masked cryptographic implementations, or simply named circuits; and the research community has been focusing so far on approximating or estimating the probability ϵ for one circuit. Yet, no proposition has been made to quickly compare the probability ϵ of different circuits, e.g., a circuit and its optimized version. In this context, we present two statistical tests to make decisions about the level of security in the random probing model: the equivalence test compares the security of two circuits in terms of ϵ’s and the superiority test decides whether the undetermined ϵ of one circuit falls below a security threshold ϵ0, both with quantified uncertainty about the computations of the probabilities ϵ’s. The validity of these tests is proven mathematically sound and verified via empirical studies on small masked S-boxes.

Publication

IACR Transactions on Cryptographic Hardware and Embedded Systems, Volume 2026, Issue 1

Paper

Artifact

Artifact number
tches/2026/a8

Artifact published
March 31, 2026

Badge
IACR CHES Artifacts Available

README

ZIP (751005 Bytes)  

License
GPLv3 This work is licensed under the GNU General Public License version 3.

Some files in this archive are licensed under a different license. See the contents of this archive for more information.

Note that license information is supplied by the authors and has not been confirmed by the IACR.


BibTeX How to cite

Anna Guinet, Carina Graw, Lukas Koletzko, Jan Richter-Brockmann, Holge Dette, Tim Güneysu. (2026). Testing Security Equivalence in the Random Probing Model. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2026(1), 732–768. https://doi.org/10.46586/tches.v2026.i1.732-768. Artifact at https://artifacts.iacr.org/tches/2026/a8.