Improved Correlation Power Analysis on Bitslice Block Ciphers

Bitslice block ciphers have the advantage of allowing parallel computation using bitwise logical operations, and Boolean masking can be applied efficiently. Thus, various bitslice block ciphers, such as <inline-formula> <tex-math notation="LaTeX">\textsf {Robin} </tex-math&g...

Full description

Saved in:
Bibliographic Details
Published inIEEE access Vol. 10; pp. 39387 - 39396
Main Authors Han, Jaeseung, Kim, Yeon-Jae, Kim, Soo-Jin, Sim, Bo-Yeon, Han, Dong-Guk
Format Journal Article
LanguageEnglish
Published Piscataway IEEE 2022
The Institute of Electrical and Electronics Engineers, Inc. (IEEE)
Subjects
AES
Algorithms
Bitslice block cipher
Boolean algebra
Channel estimation
Ciphers
Correlation
correlation power analysis
CRAFT
Encryption
Fantomas
Parallel processing
Periodic structures
Power demand
Prediction algorithms
PRIDE
RECTANGLE
Registers
RoadRunneR
Robin
side-channel analysis
Online AccessGet full text

Cover

More Information
Summary:Bitslice block ciphers have the advantage of allowing parallel computation using bitwise logical operations, and Boolean masking can be applied efficiently. Thus, various bitslice block ciphers, such as <inline-formula> <tex-math notation="LaTeX">\textsf {Robin} </tex-math></inline-formula>, <inline-formula> <tex-math notation="LaTeX">\textsf {Fantomas} </tex-math></inline-formula>, <inline-formula> <tex-math notation="LaTeX">\textsf {RECTANGLE} </tex-math></inline-formula>, <inline-formula> <tex-math notation="LaTeX">\textsf {RoadRunneR} </tex-math></inline-formula>, <inline-formula> <tex-math notation="LaTeX">\textsf {PRIDE} </tex-math></inline-formula>, and <inline-formula> <tex-math notation="LaTeX">\textsf {CRAFT} </tex-math></inline-formula>, have been proposed previously. Additionally, a bitslice implementation for <inline-formula> <tex-math notation="LaTeX">\textsf {AES} </tex-math></inline-formula>, National Institute of Standards and Technology (NIST) standard block cipher, has been proposed. These ciphers construct an S-Box using only bitwise logical operators. They perform operations by storing the <inline-formula> <tex-math notation="LaTeX">i </tex-math></inline-formula>- th bits of each S-Box input/output value in one register, i.e. , they have a feature that each bit of an S-Box output is stored in a different register. Because of this feature, in correlation power analysis (CPA) for bitslice block ciphers, a single-bit of the S-Box output should be selected as an intermediate value. Moreover, depending on which bit is selected as the intermediate value, there are differences in analysis performance. Consequently, we propose an algorithm that predicts the CPA performance of each single-bit and we describe the theoretical basis of this algorithm. The effectiveness of the proposed algorithm is verified experimentally by comparing actual CPA results and predicted results on various bitslice block ciphers.
ISSN:2169-3536
2169-3536
DOI:10.1109/ACCESS.2022.3163852