TY - JOUR AU - Zhang, Fan AU - Lou, Xiaoxuan AU - Zhao, Xinjie AU - Bhasin, Shivam AU - He, Wei AU - Ding, Ruyi AU - Qureshi, Samiya AU - Ren, Kui PY - 2018/08/14 Y2 - 2024/03/28 TI - Persistent Fault Analysis on Block Ciphers JF - IACR Transactions on Cryptographic Hardware and Embedded Systems JA - TCHES VL - 2018 IS - 3 SE - Articles DO - 10.13154/tches.v2018.i3.150-172 UR - https://tches.iacr.org/index.php/TCHES/article/view/7272 SP - 150-172 AB - <p>Persistence is an intrinsic nature for many errors yet has not been caught enough attractions for years. In this paper, the feature of persistence is applied to fault attacks, and the <em>persistent fault attack</em> is proposed. Different from traditional fault attacks, adversaries can prepare the fault injection stage before the encryption stage, which relaxes the constraint of the tight-coupled time synchronization. The <em>persistent fault analysis</em> (PFA) is elaborated on different implementations of AES-128, specially fault hardened implementations based on Dual Modular Redundancy (DMR). Our experimental results show that PFA is quite simple and efficient in breaking these typical implementations. To show the feasibility and practicability of our attack, a case study is illustrated on the shared library Libgcrypt with rowhammer technique. Approximately 8200 ciphertexts are enough to extract the master key of AES-128 when PFA is applied to Libgcrypt1.6.3 with redundant encryption based DMR. This work puts forward a new direction of fault attacks and can be extended to attack other implementations under more interesting scenarios.</p> ER -