Transactions on Cryptographic Hardware and Embedded Systems 2026
Testing Security Equivalence in the Random Probing Model
Anna Guinet
Ruhr University Bochum, Bochum, Germany
Carina Graw
Ruhr University Bochum, Bochum, Germany
Lukas Koletzko
Ruhr University Bochum, Bochum, Germany
Jan Richter-Brockmann
Ruhr University Bochum, Bochum, Germany
Holger Dette
Ruhr University Bochum, Bochum, Germany
Tim Güneysu
Ruhr University Bochum, Bochum, Germany
Keywords: random probing model, equivalence testing, superiority testing, masking
Abstract
The random probing model is a theoretical model that abstracts the physical leakage of an embedded device running a cryptographic scheme with more realistic assumptions compared to the threshold probing model. It assumes that the wires of the target device leak their assigned values with probability p, and the said values may reveal information about secret data, which could lead to a security violation. From that, we can compute the probability ϵ that a side-channel adversary may learn secret data from any random combination of wires as a function of the number of wire combinations that breaches security with rate p. This model is used to evaluate the security of masked cryptographic implementations, or simply named circuits; and the research community has been focusing so far on approximating or estimating the probability ϵ for one circuit. Yet, no proposition has been made to quickly compare the probability ϵ of different circuits, e.g., a circuit and its optimized version. In this context, we present two statistical tests to make decisions about the level of security in the random probing model: the equivalence test compares the security of two circuits in terms of ϵ’s and the superiority test decides whether the undetermined ϵ of one circuit falls below a security threshold ϵ0, both with quantified uncertainty about the computations of the probabilities ϵ’s. The validity of these tests is proven mathematically sound and verified via empirical studies on small masked S-boxes.
Publication
IACR Transactions on Cryptographic Hardware and Embedded Systems, Volume 2026, Issue 1
PaperArtifact
Artifact number
tches/2026/a8
Artifact published
March 31, 2026
Badge
✅ IACR CHES Artifacts Available
License
This work is licensed under the GNU General Public License version 3.
Some files in this archive are licensed under a different license. See the contents of this archive for more information.
Note that license information is supplied by the authors and has not been confirmed by the IACR.
BibTeX How to cite
Anna Guinet, Carina Graw, Lukas Koletzko, Jan Richter-Brockmann, Holge Dette, Tim Güneysu. (2026). Testing Security Equivalence in the Random Probing Model. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2026(1), 732–768. https://doi.org/10.46586/tches.v2026.i1.732-768. Artifact at https://artifacts.iacr.org/tches/2026/a8.