International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Quantitative Fault Injection Analysis

Authors:
Jakob Feldtkeller , Ruhr University Bochum
Tim Gueneysu , Ruhr University Bochum, Germany
Patrick Schaumont , Worcester Polytechnic Institute
Download:
Search ePrint
Search Google
Presentation: Slides
Conference: ASIACRYPT 2023
Abstract: Active fault injection is a credible threat to real-world digital systems computing on sensitive data. Arguing about security in the presence of faults is non-trivial, and state-of-the-art criteria are overly conservative and lack the ability of fine-grained comparison. However, comparing two alternative implementations for their security is required to find a satisfying compromise between security and performance. In addition, the comparison of alternative fault scenarios can help optimize the implementation of effective countermeasures. In this work, we use quantitative information flow analysis to establish a vulnerability metric for hardware circuits under fault injection that measures the severity of an attack in terms of information leakage. Potential use cases range from comparing implementations with respect to their vulnerability to specific fault scenarios to optimizing countermeasures. We automate the computation of our metric by integrating it into a state-of-the-art evaluation tool for physical attacks and provide new insights into the security under an active fault attacker.
BibTeX
@inproceedings{asiacrypt-2023-33502,
  title={Quantitative Fault Injection Analysis},
  publisher={Springer-Verlag},
  author={Jakob Feldtkeller and Tim Gueneysu and Patrick Schaumont},
  year=2023
}