Workload characterization of a lightweight SSL implementation resistant to side-channel attacks

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

Volumn 5339 LNCS, Issue , 2008, Pages 349-365

  Koschuch, Manuel ^a   Großschädl, Johann ^b   Payer, Udo ^c   Hudler, Matthias ^a   Krüger, Michael ^a  

^a Fachhochschule Campus Wien   (Austria)

^b UNIVERSITY OF BRISTOL   (United Kingdom)

^c GRAZ UNIVERSITY OF TECHNOLOGY   (Austria)

Author keywords

Efficient implementation; Elliptic curve cryptography; Network security; Performance evaluation; Side channel analysis

Indexed keywords

AD HOC NETWORKS; CRYPTOGRAPHY; INTERNET; INTERNET PROTOCOLS; NETWORK PERFORMANCE; REAL TIME SYSTEMS; SECURITY OF DATA; UBIQUITOUS COMPUTING; WIRELESS NETWORKS;

ARITHMETIC OPERATIONS; BINARY FIELDS; CODE SIZE; CURVE CRYPTOGRAPHY; EFFICIENT IMPLEMENTATION; ELLIPTIC CURVE CRYPTOGRAPHY; EXECUTION TIME; LOW MEMORY; MEMORY ACCESSES; MEMORY CAPACITIES; NETWORK SPEED; OPEN SSL; PERFORMANCE EVALUATION; POINT MULTIPLICATION; PRIME FIELD; SECURE SOCKETS LAYER (SSL); SIDE-CHANNEL ANALYSIS; SIMPLE POWER ANALYSIS (SPA); WIRELESS INTERNET ACCESS; WORKLOAD CHARACTERIZATION;

NETWORK SECURITY;

EID: 58449112739     PISSN: 03029743     EISSN: 16113349     Source Type: Book Series    
DOI: 10.1007/978-3-540-89641-8_25     Document Type: Conference Paper

References (37)

1. Acliçmez, O., Schindler, W., Koç, Ç.K.: Improving Brumley and Boneh timing attack on unprotected SSL implementations. In: Proceedings of the 12th ACM Conference on Computer and Communications Security (CCS 2005), pp. 139-146. ACM Press, New York (2005)
2. Avanzi, R.M.: Side channel attacks on implementations of curve-based cryptographic primitives. Cryptology ePrint Archive, Report 2005/017 (2005), http://eprint.iacr.org
3. Bernstein, D.J.: Cache-timing attacks on AES (preprint, 2005), http://cr.yp.to/mac.html#cachetiming
4. Blake, I.F., Seroussi, G., Smart, N.P.: Elliptic Curves in Cryptography. Cambridge University Press, Cambridge (1999)
5. Blake, I.F., Seroussi, G., Smart, N.P.: Advances in Elliptic Curve Cryptography. Cambridge University Press, Cambridge (2005)
6. Blake-Wilson, S., Bolyard, N., Gupta, V., Hawk, C., Möller, B.: Elliptic Curve Cryptography (ECC) Cipher Suites for Transport Layer Security (TLS). Internet Engineering Task Force, Network Working Group, RFC 4492 (2006)
7. Brumley, D., Boneh, D.: Remote timing attacks are practical. In: Proceedings of 12th USENIX Security Symposium (SECURITY 2003), pp. 1-14. USENIX (2003)
8. Canvel, B., Hiltgen, A.P., Vaudenay, S., Vuagnoux, M.: Password interception in an SSL/TLS channel. In: Boneh, D. (ed.) CRYPTO 2003. LNCS, vol. 2729, pp. 583-599. Springer, Heidelberg (2003)
9. Chevallier-Mames, B., Ciet, M., Joye, M.: Low-cost solutions for preventing simple side-channel analysis: Side-channel atomicity. IEEE Transactions on Computers 53(6), 760-768 (2004)
10. Coron, J.-S.: Resistance against differential power analysis for elliptic curve cryptosystems. In: Koç, Ç.K., Paar, C. (eds.) CHES 1999. LNCS, vol. 1717, pp. 292-302. Springer, Heidelberg (1999)
11. Dierks, T., Rescorla, E.K.: The Transport Layer Security (TLS) Protocol Version 1.1. Internet Engineering Task Force, Network Working Group, RFC 4346 (2006)
12. Freier, A.O., Karlton, P., Kocher, P.C.: The SSL Protocol Version 3.0. Internet Draft (1996), http://wp.netscape.com/eng/ssl3/draft302.txt
13. Goubin, L.: A refined power-analysis attack on elliptic curve cryptosystems. In:Desmedt, Y.G. (ed.) PKC 2003. LNCS, vol. 2567, pp. 199-210. Springer, Heidelbergm (2002)
14. Gupta, V., Gupta, S., Chang Shantz, S., Stebila, D.: Performance analysis of elliptic curve cryptography for SSL. In: Proceedings of the 3rd ACM Workshop on Wireless Security (WiSe 2002), pp. 87-94. ACM Press, New York (2002)
15. Gura, N., Eberle, H., Chang Shantz, S.: Generic implementations of elliptic curve cryptography using partial reduction. In: Proceedings of the 9th ACM Conference on Computer and Communications Security (CCS 2002), pp. 108-116. ACM Press, New York (2002)
16. Hankerson, D.R., Menezes, A.J., Vanstone, S.A.: Guide to Elliptic Curve Cryptography. Springer, Heidelberg (2004)
17. Joye, M.: Highly regular right-to-left algorithms for scalar multiplication. In: Paillier, P., Verbauwhede, I. (eds.) CHES 2007. LNCS, vol. 4727, pp. 135-147. Springer, Heidelberg (2007)
18. Kaufman, C., Perlman, R., Speciner, M.: Network Security: Private Communication in a Public World. Prentice Hall, Englewood Cliffs (2002)
19. k). Designs, Codes and Cryptography 14(1), 57-69 (1998)
20. Kocher, P.C.: Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems. In: Koblitz, N. (ed.) CRYPTO 1996. LNCS, vol. 1109, pp. 104-113. Springer, Heidelberg (1996)
21. Kocher, P.C., Jaffe, J., Jun, B.: Differential power analysis. In: Wiener, M. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 388-397. Springer, Heidelberg (1999)
22. Lenzlinger, B., Zingg, A.: Mini Web Server supporting SSL. M.Sc. Thesis, Zurich University of Applied Sciences Winterthur (2000)
23. m) without precomputation. In: Koç, Ç.K., Paar, C. (eds.) CHES 1999. LNCS, vol. 1717, pp. 316-327. Springer, Heidelberg (1999)
24. 2m. In: Roy, B., Okamoto, E. (eds.) INDOCRYPT 2000. LNCS, vol. 1977, pp. 203-212. Springer, Heidelberg (2000)
25. Mangard, S., Oswald, E., Popp, T.: Power Analysis Attacks: Revealing the Secrets of Smart Cards. Springer, Heidelberg (2007)
26. Möller, B.: Securing elliptic curve point multiplication against side-channel attacks. In: Davida, G.I., Frankel, Y. (eds.) ISC 2001. LNCS, vol. 2200, pp. 324-334. Springer, Heidelberg (2001)
27. Montgomery, P.L.: Modular multiplication without trial division. Mathematics of Computation 44(170), 519-521 (1985)
28. National Institute of Standards and Technology (NIST). Recommend Elliptic Curves for Federal Government use. Technical report (1999), http://csrc.nist.gov/CryptoToolkit
29. Okeya, K., Sakurai, K.: A second-order DPA attack breaks a window-method based countermeasure against side channel attacks. In: Chan, A.H., Gligor, V.D. (eds.) ISC 2002. LNCS, vol. 2433, pp. 389-401. Springer, Heidelberg (2002)
30. Osvik, D.A., Shamir, A., Tromer, E.: Cache attacks and countermeasures: The case of AES. In: Pointcheval, D. (ed.) CT-RSA 2006. LNCS, vol. 3860, pp. 1-20. Springer, Heidelberg (2006)
31. PeerSec Networks, Inc. MatrixSSL 1.7.1 (September 2005), http://www.matrixssl.org
32. Solinas, J.A.: Low-Weight Binary Representations for Pairs of Integers. Technical report CORR 2001-41, University of Waterloo, Waterloo, Canada (2001)
33. Stebila, D., Thériault, N.: Unified point addition formulae and side-channel attacks. In: Goubin, L., Matsui, M. (eds.) CHES 2006. LNCS, vol. 4249, pp. 354-368. Springer, Heidelberg (2006)
34. Walter, CD., Thompson, S.: Distinguishing exponent digits by observing modular-subtractions. In: Naccache, D. (ed.) CT-RSA 2001. LNCS, vol. 2020, pp. 192-207. Springer, Heidelberg (2001)
35. Walter, CD.: Simple power analysis of unified code for ECC double and add. In: Joye, M., Quisquater, J.-J. (eds.) CHES 2004. LNCS, vol. 3156, pp. 191-204. Springer, Heidelberg (2004)
36. Yanik, T., Savaş, E., Koç, Ç.K.: Incomplete reduction in modular arithmetic. IEE Proceedings - Computers and Digital Techniques 149(2), 46-52 (2002)
37. Zhao, L., Iyer, R., Makineni, S., Bhuyan, L.: Anatomy and performance of SSL processing. In: Proceedings of the 5th International Symposium on Performance Analysis of Systems and Software (ISPASS 2005), pp. 197-206. IEEE Computer Society Press, Los Alamitos (2005)