首页> 外国专利> METHOD SECURED AGAINST SIDE-CHANNEL ATTACKS PERFORMING AN ARITHMETIC OPERATION OF A CRYPTOGRAPHIC ALGORITHM MIXING BOOLEAN AND ARITHMETIC OPERATIONS

METHOD SECURED AGAINST SIDE-CHANNEL ATTACKS PERFORMING AN ARITHMETIC OPERATION OF A CRYPTOGRAPHIC ALGORITHM MIXING BOOLEAN AND ARITHMETIC OPERATIONS

机译：防止边通道攻击的方法来执行加密布尔算法和算术运算的加密算法的算术运算

页面导航

摘要
著录项
相似文献

摘要

The present invention relates to a method secured against side channel attacks performing an arithmetic operation of a cryptographic algorithm mixing Boolean and arithmetic operations, wherein said method is performed by a cryptographic device comprising a processing system having at least one hardware processor, and said operation has a first value (x) and a second value (y) as operands, comprising : - obtaining (S1) a first masked value (x'), a second masked value (y'), a first Boolean mask (r_x), a second Boolean mask (r_y), said first masked value (x') resulting from masking said first value (x) by said first Boolean mask (r_x) by performing a Boolean exclusive OR (XOR) operation between said first value (x) and said first Boolean mask (r_x), and said second masked value (y') resulting from masking said second value (y) by said second Boolean mask (r_y) by performing a Boolean exclusive OR (XOR) operation between said second value (y) and said second Boolean mask (r_y), - performing (S2) in any order a plurality of computing steps combining values among said first masked value (x'), said second masked value (y'), said first Boolean mask (r_x) and said second Boolean mask (r_y) to obtain a boolean masked result equal to the result of the arithmetic operation having said first value (x) and said second value (y) as operands, masked by a third boolean mask (r_x xor r_y) resulting from performing said Boolean exclusive OR (XOR) operation between said first Boolean mask (r_x) and said second Boolean mask (r_y) ((x + y) xor (r_x xor r_y)), wherein said computing steps perform Boolean exclusive OR (XOR) operations or arithmetic operations between said values without disclosing any information relative to the first and second values and, wherein said computing steps are executed by the hardware processor by performing a constant number of elementary operations whatever the bit-size of said first and second values, - outputting (S3) said boolean masked result of the arithmetic operation between said first value (x) and said second value (y).

机译：本发明涉及一种防止侧信道攻击的方法，该方法执行混合布尔和算术运算的密码算法的算术运算，其中所述方法由包括具有至少一个硬件处理器的处理系统的密码装置执行，并且所述运算具有作为操作数的第一值（x）和第二值（y），包括：-获得（S1）第一掩码值（x'），第二掩码值（y'），第一布尔掩码（r _{x ），第二布尔掩码（r _{y ），所述第一掩码值（x'）是通过所述第一布尔掩码（r _{通过在所述第一值（x）和所述第一布尔掩码（r _{x ）和所述第二掩码值（y'）之间执行布尔异或（XOR）操作，得到x 通过在第二个值之间执行布尔异或（XOR）操作，通过第二个布尔掩码（r _{y ）掩蔽第二个值（y） y）和所述第二布尔掩码（r _{y ），-以任意顺序执行（S2）多个计算步骤，将所述第一掩码值（x'），所述第二掩码值（y '），所述第一布尔掩码（r _{x ）和所述第二布尔掩码（r _{y ）获得布尔掩码结果，该布尔掩码结果等于具有第一个值（x）和所述第二个值（y）作为操作数，由执行上述布尔异或运算（第三个布尔掩码）（r _{x xor r _{y ）掩码所述第一布尔掩码（r _{x ）和所述第二布尔掩码（r _{y ）（（x + y）xor（r _{x xor r _{y ）），其中，所述计算步骤在所述值之间执行布尔异或（XOR）运算或算术运算，而没有公开与第一和第二值有关的任何信息，并且其中，所述计算步骤由硬件处理器通过执行常数num来执行不管所述第一和第二值的比特大小如何，-在所述第一值（x）和所述第二值（y）之间输出（S3）所述算术运算的布尔掩蔽结果。}}}}}}}}}}}}}}

著录项

公开/公告号WO2019201944A1

专利类型
公开/公告日2019-10-24

原文格式PDF
申请/专利权人 THALES DIS FRANCE SA;
展开▼

申请/专利号WO2019EP59836
发明设计人 VIGILANT DAVID;
展开▼

申请日2019-04-16
分类号H04L9;
国家 WO
入库时间 2022-08-21 11:52:46

相似文献

专利
外文文献
中文文献