Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard

Charlotte, NC, USA October 26-October 28

DOI Bookmark:

http://doi.ieeecomputersociety.org/10.1109/ITC.2004.157

International Test Conference 2004 (I ...

	This Article
	PURCHASE ARTICLE: $19 PDF HTML IEEE Xplore Subscribers
	Share
	Email this Article to a friend
	Bibliographic References
	ASCII Text BibTex RefWorks Procite/RefMan/Endnote
	Add to:
	Digg Furl Spurl Blink Simpy Google Del.icio.us Y!MyWeb
	Search
	Similar Articles Articles by Bo Yang Articles by Kaijie Wu Articles by Ramesh Karri

	ASCII Text	x
	Bo Yang, Kaijie Wu, Ramesh Karri, "Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard," Test Conference, International, pp. 339-344, International Test Conference 2004 (ITC'04), 2004.

	BibTex	x
	@article{ 10.1109/ITC.2004.157, author = {Bo Yang and Kaijie Wu and Ramesh Karri}, title = {Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard}, journal ={Test Conference, International}, volume = {0}, year = {2004}, issn = {1089-3539}, pages = {339-344}, doi = {http://doi.ieeecomputersociety.org/10.1109/ITC.2004.157}, publisher = {IEEE Computer Society}, address = {Los Alamitos, CA, USA}, }

	RefWorks Procite/RefMan/Endnote	x
	TY - CONF JO - Test Conference, International TI - Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard SN - 1089-3539 SP339 EP344 A1 - Bo Yang, A1 - Kaijie Wu, A1 - Ramesh Karri, PY - 2004 KW - null VL - 0 JA - Test Conference, International ER -

Bo Yang, Polytechnic University, Brooklyn, NY

Kaijie Wu, Polytechnic University, Brooklyn, NY

Ramesh Karri, Polytechnic University, Brooklyn, NY

Scan based test is a double edged sword. On one hand, it is a powerful test technique. On the other hand, it is an equally powerful attack tool. In this paper we show that scan chains can be used as a side channel to recover secret keys from a hardware implementation of the Data Encryption Standard (DES).

By loading pairs of known plaintexts with one-bit difference in the normal mode and then scanning out the internal state in the test mode, we first determine the position of all scan elements in the scan chain. Then, based on a systematic analysis of the structure of the nonlinear substitution boxes, and using three additional plaintexts we discover the DES secret key. Finally, some assumptions in the attack are discussed.

Citation:

Bo Yang, Kaijie Wu, Ramesh Karri, "Scan Based Side Channel Attack on Dedicated Hardware Implementations of Data Encryption Standard," itc, pp.339-344, International Test Conference 2004 (ITC'04), 2004

Peer Review Notice | Give Us Feedback

Usage of this product signifies your acceptance of the Terms of Use.