Kwiminyaka elishumi edlulileyo, ukongeza kwiindlela zokukhupha iimfihlo okanye ukwenza ezinye izenzo ezingagunyaziswanga, abahlaseli baye baqala ukusebenzisa ukuvuza kwedatha ngokungeyonjongo kunye nokunyanzeliswa kokwenziwa kweprogram ngokusebenzisa amajelo asecaleni.
Iindlela zokuhlasela zemveli zinokubiza malunga nolwazi, ixesha kunye namandla okusebenza. Ngakolunye uhlangothi, ukuhlaselwa kwe-channel-channel, kunokuphunyezwa ngokulula kwaye kungonakalisi kuba ziveza okanye ziqhube iipropati ezibonakalayo ezifikelelekayo ngexesha lokusebenza okuqhelekileyo.
Ngokusebenzisa iindlela zobalo ukucubungula imilinganiselo ye-channel-channel okanye ngokuzisa iziphene kumajelo angasese e-chip, umhlaseli unokufumana ukufikelela kwiimfihlo zakhe kwiiyure ezimbalwa.
Ngaphezulu kwe-5,000 yezigidi zamakhadi ahlakaniphile akhutshwayo ngonyaka kunye nobuchwepheshe obutsha be-cryptographic bungena kwiimarike, kukho imfuneko eyandayo yokuqinisekisa ukhuseleko lwezoshishino kunye nobumfihlo.
E-Netherlands, i-Riscure yenze uMhloli, obonelela ngeelebhu ze-R&D kunye nabavelisi ngezinto ezintsha, ezisebenza kakhulu zokubona isoyikiso sokhuseleko.
Inkqubo yoMngcipheko woMhloli ixhasa iindlela ezahlukeneyo zohlahlelo lwetshaneli esecaleni (SCA) njengohlalutyo lokusetyenziswa kwamandla (SPA/DPA), ixesha, iRF, kunye nohlahlelo lwemagnethi yombane (EMA) kunye nokuphazamiseka (FI) uhlaselo olufana nokuqhawuka kwamandla ombane, ukuqhwalela kwewotshi kunye laser manipulation. Inkqubo eyakhelwe-ngaphakathi yokusebenza ixhasa i-cryptographic algorithms ezininzi, iiprothokholi zesicelo, ujongano, kunye nesixhobo.
Inkqubo ikuvumela ukuba wandise kwaye usebenzise iindlela ezintsha kunye nezicelo zesiko lokubona ubuthathaka.
Inkqubo yohlalutyo lwecala lomhloli we-SCA ibandakanya:
- I-Tracer yamandla;
- ukufakwa kwesandi sombane we-EM Probe Station;
- i-icWaves ibangela ijenereyitha;
- Isihluzi seCleanWave;
- uphononongo lwangoku Probe yangoku.
Phakathi kwezinto eziphambili "ezilungileyo" sinokugxininisa ezona ziphambili:
- Sisixhobo esisodwa, esidibeneyo sokuhlalutya kweshaneli yecala kunye novavanyo lwe-injection ye-fault;
- Umhloli uhlangabezana neemfuno ze-EMVco kunye ne-CMVP yeSiqhelo esiQhelekileyo esiqinisekisiweyo;
- Yindawo evulekileyo equka ikhowudi yomthombo weemodyuli, ngaloo ndlela ivumela iindlela ezikhoyo ukuba zitshintshwe kwaye iindlela ezintsha zokuvavanya zifakwe ezinokuthi ziphuhliswe ngumsebenzisi kuMhloli;
- Isoftware ezinzileyo kunye nedibeneyo kunye ne-hardware ibandakanya ukufunyanwa kwedatha yesantya esiphezulu kwizigidi zemikhondo;
- Umjikelo wokukhutshwa kwesoftware weenyanga ezintandathu ugcina abasebenzisi behlaziyiwe kunye neendlela zamva nje zokuvavanya amajelo asecaleni endle.
Umhloli uyafumaneka kwiinguqulelo ezahlukeneyo kwiqonga elinye:
- Umhloli we-SCA inikeza zonke iinketho eziyimfuneko ekwenzeni i-DPA kunye ne-EMA uhlalutyo lwetshaneli esecaleni.
- Umhloli FI ibonelela ngokusebenza ngokupheleleyo kwenaliti yempazamo (uhlaselo lokuphazamiseka) kunye nohlalutyo lwempazamo ehlukileyo (DFA).
- I-Inspector Core kunye ne-SP (Ukwenziwa kweSignali) inikezela ngokusebenza kwe-SCA engundoqo ephunyezwe kwiimodyuli ezahlukeneyo ukubonelela ngephakheji yesoftware efikelelekayo yokufumana idatha okanye ukusetyenzwa ngasemva.
Umhloli we-SCA
Nje ukuba iziphumo zokulinganisa zifunyenwe, iindlela ezahlukeneyo zokucwangcisa umqondiso ziyafumaneka ukuvelisa amanqaku amaninzi aphezulu, aphantsi kwengxolo. Kuphuhliswe imisebenzi yokwenziwa komqondiso ethathela ingqalelo umahluko ongephi phakathi kwe-EM trace, umkhondo wamandla, kunye nokulungiswa komqondiso womkhondo weRF. Umboniso onamandla womhloli womzobo uvumela abasebenzisi ukuba benze uhlalutyo lwexesha okanye bajonge umkhondo, umzekelo, ubuthathaka be-SPA.
Ukwenza i-DPA xa kuphunyezwa i-ECC
Kuphumezo oluninzi lokhuseleko olujongwa njenge-SPA-resistant kwezi ntsuku, ugqaliselo lovavanyo luqhelekile kwiindlela zovavanyo olwahlukileyo (oko kukuthi, i-DPA/CPA). Ukuza kuthi ga ngoku, uMhloli unikezela ngoluhlu olubanzi lweendlela ezilungelelanisiweyo ezigubungela uluhlu olubanzi lwe-cryptographic algorithms kunye ne-algorithms esetyenziswa ngokubanzi njenge (3)DES, AES, RSA kunye ne-ECC.
Imitha ye-EM ye-chip ukufumana eyona ndawo ilungileyo xa kuphunyezwa i-DEMA
Iimpawu eziphambili
- Esi sisombululo sidibanisa uhlalutyo lwamandla (i-SPA / DPA / CPA), i-electromagnetic (SEMA / DEMA / EMA-RF), kunye neendlela zokuvavanya ezingadibananga (RFA).
- Isantya sokufumana idatha siphuculwe kakhulu yi-oscilloscope's tight integration kunye noMhloli.
- Iindlela zokulinganisa eziphezulu zisetyenziselwa ukuthintela i-jitter yewotshi kunye ne-randomization
- Umsebenzisi unokuqwalasela iimodyuli ze-cryptanalysis ezixhasa uhlaselo oluphambili kunye noluphezulu kuzo zonke ii-algorithms ezinkulu ezifana (3) ne-DES, i-AES, i-RSA kunye ne-ECC.
- Inkxaso eyandisiweyo ye-domain-specific algorithms isetyenziswa, kubandakanywa i-SEED, i-MISTY1, i-DSA, kuquka i-Camellia.
Hardware
Ukongeza kwindawo yokusebenzela yoMhloli wePC, iSCA isebenzisa ihardware elungiselelwe idatha yesitishi esisecaleni kunye nokufumana umqondiso:
- Power Tracer for SPA/DPA/CPA on smart cards
- Isikhululo se-EM Probe se-SEMA / DEMA / EMA RF
- Uphando lwangoku lwe-SPA/DPA/CPA kwizixhobo ezizinzisiweyo
- I-CleanWave filter ene-Micropross MP300 TCL1/2 ye-RFA kunye ne-RF EMA
- I-oscilloscope ehambelana ne-IVI
Izinto ezivavanywa rhoqo zifuna imilinganiselo, ukutshintsha, kunye nolawulo lwe-hardware oluyimfuneko ukwenza i-SCA. Umphathi we-Hardware oguquguqukayo woMhloli, indawo evulekileyo yophuhliso, kunye neenketho zojongano olubanzi zibonelela ngesiseko esiluqilima semilinganiselo ephezulu kusetyenziswa izixhobo zesiko.
Umhloli we-SCA
Injineli yokhuseleko lwangaphakathi ekhokelayo uJoh John Connor uthi ngenkqubo:
βUmhloli uyiguqule indlela esivavanya ngayo umahluko phakathi kweemveliso zethu. I-DPA. Amandla alo alele kwinto yokuba idibanisa ukuqokelela kunye neenkqubo zokuhlalutya ezivumela ukuba sivavanye ngokukhawuleza ukusebenza koyilo olutsha lwe-cryptographic hardware. Ngaphezu koko, ujongano lwayo oluphezulu lwegraphical luvumela umsebenzisi ukuba abe nombono wokusayinwa kwamandla ukusuka kwidatha eqokelelweyo eqokelelweyo nganye okanye ngaxeshanye-ixabiseke kakhulu xa ulungiselela idatha ye-DPA ngexesha lohlaselo-ngelixa iilayibrari zayo ezinamandla zokuhlalutya zixhasa i-algorithms yokurhweba esetyenziswa ngokuqhelekileyo. Isoftware kunye nohlaziyo lwetekhnoloji ngexesha elifanelekileyo oluxhaswa yiRiscure lusinceda sigcine ukhuseleko lweemveliso zethu. β
Umhloli FI
Umhloli we-FI - Isitofu seFault - unikezela ngoluhlu olubanzi lweempawu ukwenza uvavanyo lwenaliti yempazamo kwikhadi elihlakaniphile kunye nobuchwepheshe besixhobo esifakwe ngaphakathi. Iindlela zovavanyo ezixhaswayo ziquka ukugruzuka kwewotshi, ukuqhwalela kombane, kunye nohlaselo lwelaser optical. Uhlaselo lwe-fault injection-ekwaziwa ngokuba yi-perturbation attack-tshintsha indlela yokuziphatha kwe-chip, ebangela ukusilela okusebenzisekayo.
Nge-Inspector FI, abasebenzisi banokuvavanya ukuba isitshixo sinokukhutshwa ngokubangela ukungaphumeleli kwimisebenzi ye-cryptographic ye-chip, ngokudlula isheke efana nokuqinisekiswa okanye isimo sobomi, okanye ukuguqula indlela inkqubo eqhuba ngayo kwi-chip.
Iinketho ezininzi eziqwalaselweyo
Umhloli we-FI uquka inani elikhulu leeparameters ezilungelelanisiweyo zokulawula ukutshintshwa kunye nokuphazamiseka okufana ne-pulses yobude obuhlukeneyo, ukuphindaphinda kwe-pulse, kunye notshintsho lwezinga lombane. Isoftware ibonisa iziphumo, ebonisa ukuziphatha okulindelweyo, ukusetwa kwakhona kwekhadi, kunye nokuziphatha okungalindelekanga, kunye nokugawulwa kweenkcukacha. Iimodyuli zohlaselo ze-DFA ziyafumaneka kwii-algorithms ezinkulu zokufihla. Ukusebenzisa i "wizard", abasebenzisi banokwenza inkqubo yokuphazamiseka ngokwesiko nge-API.
Iimpawu eziphambili
- Ukuchaneka okungahambelaniyo kunye nokuphinda kuveliswe ngokulula kunye nexesha layo yonke ihardware yeglitching.
- Iimeko zoyilo lohlaselo usebenzisa inkqubo yomyalelo enamandla kunye noMhloli we-IDE odibeneyo.
- Iinketho zoqwalaselo olubanzi loMhloli wovavanyo lokutofa ngokuzenzekela.
- Izixhobo ze-Laser zokutshiza okuninzi ngasemva nangaphambili kumacala ekhadi, ezenzelwe ukuvavanya usebenzisa indlela yokutofa i-glitch.
- Iimodyuli ze-DFA zokuphunyezwa kwe-algorithms yoguqulelo oludumileyo, kubandakanya i-RSA, i-AES, kunye ne-3DES
- Ukuphuculwa kwe-laser yamanqaku amaninzi kunika ithuba lokuchaphazela i-microcircuit kwiindawo ezininzi kanye.
- Ulungelelwaniso oluxhomekeke ekusebenzeni kusetyenziswa i-icWaves trigger generator inokuthintela ukuchasana nokuthintela ilahleko yesampulu.
Hardware
Umhloli we-FI unokusetyenziswa kunye namacandelo e-hardware alandelayo ukwenza uhlaselo:
- I-VC Glitcher eneamplifier eyongezelelweyo
- Isikhululo se-laser ye-Diode enokuphuculwa kwamanqaku amaninzi
- I-PicoScope 5203 okanye i-oscilloscope ehambelana ne-IVI
Umhloli we-FI one-VC Glitcher, i-icWaves Trigger Generator, i-Glitch Amplifier kunye neSikhululo seLaser
Ijenereyitha ye-VC Glitcher yenza undoqo woyilo lwenaliti ye-Inspector system's glitch injection. Ukusebenzisa itekhnoloji ye-FPGA ekhawulezayo kakhulu, iimpazamo ezimfutshane njenge-nanoseconds zingenziwa. I-hardware inomsebenzisi-friendly programming interface. Inkqubo engalunganga eyenziwe ngumsebenzisi ilayishwe kwiFPGA phambi kokuba uvavanyo luqhutywe. I-VC Glitcher ibandakanya isekethe edibeneyo yokwazisa i-voltage glitches kunye ne-clock glitches, kunye nesiphumo somzila wokulawula isikhululo se-laser.
Isikhululo se-Diode Laser siqukethe i-custom ye-high-power diode lasers kunye ne-optics yesiko elawulwa ngokukhawuleza kunye nokuguquguqukayo yi-VC Glitcher. Isixhobo sithatha uvavanyo lwe-optical ukuya kwinqanaba elilandelayo ngokubonelela ngeempazamo ezininzi ezisebenzayo, ulawulo oluchanekileyo lwamandla, kunye nokuphendula ngokukhawuleza kunye nokuqikelelwa kokutshintsha kwe-pulse.
Ngokuphucula isikhululo se-laser ye-diode kwi-multi-point version, iindawo ezininzi zinokuvavanywa kwi-chip ngokusebenzisa iiparitha zexesha ezahlukeneyo kunye nokubonelela ngee-voltages.
Ukwazisa okusekwe kumqondiso kusetyenziswa i-icWaves trigger generator
I-Clock jitter, i-random process interrupts, kunye nobude benkqubo exhomekeke kwidatha ifuna utshintsho oluguquguqukayo lwempazamo kunye nokuqokelelwa kwedatha yecala lesiteshi. Ijeneretha ye-icWaves yenkqubo yomhloli yenza i-trigger pulse ekuphenduleni ukubonwa kwexesha lokwenyani lomahluko ukusuka kwimodeli enikiweyo kunikezelo lwamandla lwechip okanye isiginali ye-EM. Isixhobo sibandakanya isihluzo senotshi ekhethekileyo yokuqinisekisa ukuba imodeli ehambelana nayo ifunyenwe nakwimiqondiso enengxolo.
Umkhondo wereferensi osetyenzisiweyo ukutshatisa imodeli ngaphakathi kwesixhobo seFPGA unokuguqulwa kusetyenziswa imisebenzi yokwenziwa komqondiso woMhloli. Ikhadi elihlakaniphile elifumanise isitofu sempazamo linokuqalisa indlela yokukhusela ukususa idatha ebuthathaka okanye ukuvala ikhadi. Icandelo le-icWaves lingasetyenziselwa ukubangela ukuvalwa kwekhadi nanini na ukusetyenziswa kwamandla okanye iprofayile ye-EM itenxa ekusebenzeni okusemgangathweni.
Isikhululo seLaser (LS) esinenketho yokufikelela kwiindawo ezininzi,
ngemicroscope kunye netafile yokulungelelanisa
Imekobume yoPhuhliso eDityanisiweyo (IDE)
Indawo yophuhliso loMhloli yenzelwe ukubonelela ngokuguquguquka okukhulu kumsebenzisi ukuba asebenzise i-SCA kunye ne-FI nayiphi na injongo.
- Vula i-API: yenza kube lula ukuphumeza iimodyuli ezintsha
- Ikhowudi yomthombo: Imodyuli nganye iza nekhowudi yayo yomthombo, ngoko ke iimodyuli zinokuhlengahlengiswa kwiminqweno yomsebenzisi okanye zisetyenziswe njengesiseko sokwenza iimodyuli ezintsha.
Umhloli FI
Umhloli udibanisa i-fault injection kunye neendlela zokuhlalutya kwe-channel-channel kwiphakheji enye yokusebenza okuphezulu.
Umzekelo wohlalutyo lokungaphumeleli kokuziphatha:
Inkalo yohlaselo lwesitishi esecaleni ikhula ngokukhawuleza, kunye neziphumo zophando olutsha ezipapashwa minyaka le, zisiya zisaziwa esidlangalaleni, okanye ukwenziwa kwesiqinisekiso seenkqubo kunye nemigangatho kube sinyanzelo. Umhloli uvumela abasebenzisi ukuba bahlale benolwazi ngophuhliso olutsha kunye nohlaziyo oluqhelekileyo lwesoftware olusebenzisa ubuchule obutsha.
umthombo: www.habr.com