International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Yoroi: Updatable Whitebox Cryptography

Authors:
Yuji Koike , University of Hyogo, Hyogo, Japan
Takanori Isobe , University of Hyogo, Hyogo, Japan; PRESTO, Japan Science and Technology Agency, Tokyo, Japan; National Institute of Information and Communications Technology, Japan
Download:
DOI: 10.46586/tches.v2021.i4.587-617
URL: https://tches.iacr.org/index.php/TCHES/article/view/9076
Search ePrint
Search Google
Abstract: Whitebox cryptography aims to provide security in the whitebox setting where the adversary has unlimited access to the implementation and its environment. In order to ensure security in the whitebox setting, it should prevent key extraction attacks and code-lifting attacks, in which the adversary steals the original cryptographic implementation instead of the key, and utilizes it as a big key. Although recent published ciphers such as SPACE, SPNbox, and Whiteblock successfully achieve security against the key extraction attacks, they only provide mitigation of codelifting attack by the so-called space hardness and incompressibility properties of the underlying tables as the space-hard/incompressible table might be eventually stolen by continuous leakage. The complete prevention of such attacks may need to periodically update the secret key. However, that entails high costs and might introduce an additional vulnerability into the system due to the necessity for the reencryption of all data by the updated key. In this paper, we introduce a new property, denominated longevity, for whitebox cryptography. This property enhances security against code-lifting attacks with continuous leakage by updating incompressible tables instead of the secret key. We propose a family of new whitebox-secure block ciphers Yoroi that has the longevity property in addition to the space hardness. By updating its implementation periodically, Yoroi provides constant security against code-lifting attacks without key updating. Moreover, the performance of Yoroi is competitive with existing ciphers implementations in the blackbox and whitebox context.
Video from TCHES 2021
BibTeX
@article{tches-2021-31327,
  title={Yoroi: Updatable Whitebox Cryptography},
  journal={IACR Transactions on Cryptographic Hardware and Embedded Systems},
  publisher={Ruhr-Universität Bochum},
  volume={2021, Issue 4},
  pages={587-617},
  url={https://tches.iacr.org/index.php/TCHES/article/view/9076},
  doi={10.46586/tches.v2021.i4.587-617},
  author={Yuji Koike and Takanori Isobe},
  year=2021
}