white-box cryptography; linear masking; non-linear masking; shuffling; data-dependency
Abstract :
[en] The goal of white-box cryptography is to protect secret keys embedded in a cryptographic software deployed in an untrusted environment. In this article, we revisit state-of-the-art countermeasures employed in white-box cryptography, and we discuss possible ways to combine them. Then we analyze the different gray-box attack paths and study their performances in terms of required traces and computation time. Afterward, we propose a new paradigm for the gray-box attack against white-box cryptography, which exploits the data-dependency of the target implementation. We demonstrate that our approach provides substantial complexity improvements over the existing attacks. Finally, we showcase this new technique by breaking the three winning AES-128 white-box implementations from WhibOx 2019 white-box cryptography competition.
Disciplines :
Computer science
Author, co-author :
Goubin, Louis; Université Paris-Saclay, UVSQ, CNRS > Laboratoire de Mathématiques de Versailles
Rivain, Matthieu; CryptoExperts
Wang, Junwei ; University of Luxembourg > Faculty of Science, Technology and Communication (FSTC) ; CryptoExperts ; Université Paris 8
External co-authors :
yes
Language :
English
Title :
Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks
Publication date :
19 June 2020
Journal title :
IACR Transactions on Cryptographic Hardware and Embedded Systems