计算机工程
計算機工程
계산궤공정
COMPUTER ENGINEERING
2014年
5期
103-108,114
,共7页
侧信道攻击%有限域求逆%乘法掩码%SM4算法%多路径掩码方法
側信道攻擊%有限域求逆%乘法掩碼%SM4算法%多路徑掩碼方法
측신도공격%유한역구역%승법엄마%SM4산법%다로경엄마방법
Side-channel Attack(SCA)%finite field inverse%multiplicative masking%SM4 algorithm%multi-path masking method
SM4是国内于2006年公布的第1个商用的分组密码算法。为提高SM4算法安全性,抵御功耗分析、电磁辐射等侧信道攻击,提出一种抗侧信道攻击的SM4多路径乘法掩码方法。该方法在轮函数中采用多条数据路径,并对引进随机数后的S盒用有限域乘法求逆变换加以改进,使中间结果与标准 SM4算法的中间结果完全不同,从而掩盖 SM4加密过程中的所有关键信息,增加侧信道分析的难度。实验结果表明,与标准 SM4算法和普通的 SM4乘法掩码算法相比,该方法在芯片的功耗和硬件资源增加不大的情况下,能有效消除中间数据所产生的能量消耗,增强算法安全性,可成功抵御各种侧信道攻击。
SM4是國內于2006年公佈的第1箇商用的分組密碼算法。為提高SM4算法安全性,牴禦功耗分析、電磁輻射等側信道攻擊,提齣一種抗側信道攻擊的SM4多路徑乘法掩碼方法。該方法在輪函數中採用多條數據路徑,併對引進隨機數後的S盒用有限域乘法求逆變換加以改進,使中間結果與標準 SM4算法的中間結果完全不同,從而掩蓋 SM4加密過程中的所有關鍵信息,增加側信道分析的難度。實驗結果錶明,與標準 SM4算法和普通的 SM4乘法掩碼算法相比,該方法在芯片的功耗和硬件資源增加不大的情況下,能有效消除中間數據所產生的能量消耗,增彊算法安全性,可成功牴禦各種側信道攻擊。
SM4시국내우2006년공포적제1개상용적분조밀마산법。위제고SM4산법안전성,저어공모분석、전자복사등측신도공격,제출일충항측신도공격적SM4다로경승법엄마방법。해방법재륜함수중채용다조수거로경,병대인진수궤수후적S합용유한역승법구역변환가이개진,사중간결과여표준 SM4산법적중간결과완전불동,종이엄개 SM4가밀과정중적소유관건신식,증가측신도분석적난도。실험결과표명,여표준 SM4산법화보통적 SM4승법엄마산법상비,해방법재심편적공모화경건자원증가불대적정황하,능유효소제중간수거소산생적능량소모,증강산법안전성,가성공저어각충측신도공격。
SM4 is the first bloc cipher published in the year of 2006 by the government of China. In order to resist Side-channel Attack (SCA) such as power analysis and electromagnetic radiation, a multi-path multiplicative masking method is proposed for SM4 algorithm to improve the security of SM4 algorithm. Through multi data paths, and transform S box by multiplicative inversion in the finite field when the random number is joined, which makes all intermediate variables among the proposed SM4 scheme different from that of the standard method. It not only realizes the cover of all the key information in encryption process, but also enhances the difficulties of SCA. Through compared with the traditional algorithm and the existing schemes, the experimental results show that the mask scheme can weaken the correlation between the energy consumption characteristics and the operating of the intermediate data effectively without increasing much power and hardware resources. Thus the proposed method bears all kinds of side-channel attacks and the security of the new SM4 is improved.