LPN-based Attacks in the White-box Setting
Uloženo v:
| Název: | LPN-based Attacks in the White-box Setting |
|---|---|
| Autoři: | CHARLÈS, Alex, UDOVENKO, Aleksei |
| Přispěvatelé: | Interdisciplinary Centre for Security, Reliability and Trust (SnT) > CryptoLUX – Cryptography |
| Zdroj: | IACR Transactions on Cryptographic Hardware and Embedded Systems, 2023 (4), 318 - 343 (2023-08-31) |
| Informace o vydavateli: | Ruhr-University of Bochum |
| Rok vydání: | 2023 |
| Sbírka: | University of Luxembourg: ORBilu - Open Repository and Bibliography |
| Témata: | Cryptanalysis, DCA, Dummy Shuffling, LDA, LPN, Masking, White-box Cryptography, Learning parity with noise, Linear decoding, Linear decoding analyse attack, Masking schemes, White-box cryptographies, Software, Engineering, computing & technology, Computer science, Ingénierie, informatique & technologie, Sciences informatiques |
| Popis: | peer reviewed ; In white-box cryptography, early protection techniques have fallen to the automated Differential Computation Analysis attack (DCA), leading to new countermeasures and attacks. A standard side-channel countermeasure, Ishai-Sahai-Wagner’s masking scheme (ISW, CRYPTO 2003) prevents Differential Computation Analysis but was shown to be vulnerable in the white-box context to the Linear Decoding Analysis attack (LDA). However, recent quadratic and cubic masking schemes by Biryukov-Udovenko (ASIACRYPT 2018) and Seker-Eisenbarth-Liskiewicz (CHES 2021) prevent LDA and force to use its higher-degree generalizations with much higher complexity. In this work, we study the relationship between the security of these and related schemes to the Learning Parity with Noise (LPN) problem and propose a new automated attack by applying an LPN-solving algorithm to white-box implementations. The attack effectively exploits strong linear approximations of the masking scheme and thus can be seen as a combination of the DCA and LDA techniques. Different from previous attacks, the complexity of this algorithm depends on the approximation error, henceforth allowing new practical attacks on masking schemes which previously resisted automated analysis. We demonstrate it theoretically and experimentally, exposing multiple cases where the LPN-based method significantly outperforms LDA and DCA methods, including their higher-order variants. This work applies the LPN problem beyond its usual post-quantum cryptography boundary, strengthening its interest for the cryptographic community, while expanding the range of automated attacks by presenting a new direction for breaking masking schemes in the white-box model. ; R-AGR-3748 - C19/IS/13641232/APLICA (01/09/2020 - 30/08/2022) - BIRYUKOV Alexei |
| Druh dokumentu: | article in journal/newspaper |
| Jazyk: | English |
| ISSN: | 2569-2925 |
| Relation: | https://tches.iacr.org/index.php/TCHES/article/download/11168/10607; FNR13641232 - Analysis And Protection Of Lightweight Cryptographic Algorithms, 2019 (01/01/2021-31/12/2023) - Alex Biryukov; urn:issn:2569-2925; https://orbilu.uni.lu/handle/10993/57631; info:hdl:10993/57631; https://orbilu.uni.lu/bitstream/10993/57631/1/TCHES2023_4_13.pdf |
| DOI: | 10.46586/tches.v2023.i4.318-343 |
| Dostupnost: | https://orbilu.uni.lu/handle/10993/57631 https://orbilu.uni.lu/bitstream/10993/57631/1/TCHES2023_4_13.pdf https://doi.org/10.46586/tches.v2023.i4.318-343 |
| Rights: | open access ; http://purl.org/coar/access_right/c_abf2 ; info:eu-repo/semantics/openAccess |
| Přístupové číslo: | edsbas.5CD3CE7B |
| Databáze: | BASE |
Nájsť tento článok vo Web of Science Buďte první, kdo okomentuje tento záznam!