On the optimality and practicability of mutual information analysis in some scenarios
International audience The best possible side-channel attack maximizes the success rate and would correspond to a maximum likelihood distinguisher if the leak- age probabilities were totally known or accurately estimated in a profiling phase. When profiling is unavailable, however, it is not clear w...
Main Authors: | , , , |
---|---|
Other Authors: | , , , , , , , , , |
Format: | Conference Object |
Language: | English |
Published: |
HAL CCSD
2016
|
Subjects: | |
Online Access: | https://telecom-paris.hal.science/hal-02300055 https://telecom-paris.hal.science/hal-02300055v1/document https://telecom-paris.hal.science/hal-02300055v1/file/201607cheriseyguilleyheuserrioul.pdf |
id |
ftuniparissaclay:oai:HAL:hal-02300055v1 |
---|---|
record_format |
openpolar |
spelling |
ftuniparissaclay:oai:HAL:hal-02300055v1 2024-10-13T14:08:52+00:00 On the optimality and practicability of mutual information analysis in some scenarios Cherisey, Eloi De Guilley, Sylvain Heuser, Annelie Rioul, Olivier Département Communications & Electronique (COMELEC) Télécom ParisTech Secure and Safe Hardware (SSH) Laboratoire Traitement et Communication de l'Information (LTCI) Institut Mines-Télécom Paris (IMT)-Télécom Paris Institut Mines-Télécom Paris (IMT)-Institut Polytechnique de Paris (IP Paris)-Institut Polytechnique de Paris (IP Paris)-Institut Mines-Télécom Paris (IMT)-Télécom Paris Institut Mines-Télécom Paris (IMT)-Institut Polytechnique de Paris (IP Paris)-Institut Polytechnique de Paris (IP Paris) Secure-IC S.A.S Institut Mines-Télécom Paris (IMT) Communications Numériques (COMNUM) Longyearbyen, Svalbard, Norway 2016-07-17 https://telecom-paris.hal.science/hal-02300055 https://telecom-paris.hal.science/hal-02300055v1/document https://telecom-paris.hal.science/hal-02300055v1/file/201607cheriseyguilleyheuserrioul.pdf en eng HAL CCSD info:eu-repo/semantics/OpenAccess ArticCrypt 2016 https://telecom-paris.hal.science/hal-02300055 ArticCrypt 2016, Jul 2016, Longyearbyen, Svalbard, Norway Side-channel analysis unprofiled distinguishers MIA CPA LRA max- imum likelihood [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] [MATH.MATH-IT]Mathematics [math]/Information Theory [math.IT] [INFO.INFO-DM]Computer Science [cs]/Discrete Mathematics [cs.DM] [INFO.INFO-HC]Computer Science [cs]/Human-Computer Interaction [cs.HC] [INFO.INFO-TS]Computer Science [cs]/Signal and Image Processing [SPI.SIGNAL]Engineering Sciences [physics]/Signal and Image processing [MATH.MATH-ST]Mathematics [math]/Statistics [math.ST] [MATH.MATH-PR]Mathematics [math]/Probability [math.PR] [MATH.MATH-FA]Mathematics [math]/Functional Analysis [math.FA] [MATH.MATH-CA]Mathematics [math]/Classical Analysis and ODEs [math.CA] [MATH.MATH-GM]Mathematics [math]/General Mathematics [math.GM] [INFO.INFO-IT]Computer Science [cs]/Information Theory [cs.IT] info:eu-repo/semantics/conferenceObject Conference papers 2016 ftuniparissaclay 2024-10-03T23:59:11Z International audience The best possible side-channel attack maximizes the success rate and would correspond to a maximum likelihood distinguisher if the leak- age probabilities were totally known or accurately estimated in a profiling phase. When profiling is unavailable, however, it is not clear whether Mutual Information Analysis (MIA), Correlation Power Analysis (CPA), or Linear Regression Analysis (LRA) would be the most successful in a given scenario. In this paper, we show that MIA coincides with the maximum likelihood expression when leakage probabilities are replaced by online estimated prob- abilities.We then exhibit two case-studies where MIA outperforms CPA. One case is when the leakage model is known but the noise is not Gaussian. The second case is when the leakage model is partially unknown and the noise is Gaussian. In the latter scenario MIA is more efficient than LRA of any order. Conference Object Longyearbyen Svalbard Archives ouvertes de Paris-Saclay Longyearbyen Norway Svalbard |
institution |
Open Polar |
collection |
Archives ouvertes de Paris-Saclay |
op_collection_id |
ftuniparissaclay |
language |
English |
topic |
Side-channel analysis unprofiled distinguishers MIA CPA LRA max- imum likelihood [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] [MATH.MATH-IT]Mathematics [math]/Information Theory [math.IT] [INFO.INFO-DM]Computer Science [cs]/Discrete Mathematics [cs.DM] [INFO.INFO-HC]Computer Science [cs]/Human-Computer Interaction [cs.HC] [INFO.INFO-TS]Computer Science [cs]/Signal and Image Processing [SPI.SIGNAL]Engineering Sciences [physics]/Signal and Image processing [MATH.MATH-ST]Mathematics [math]/Statistics [math.ST] [MATH.MATH-PR]Mathematics [math]/Probability [math.PR] [MATH.MATH-FA]Mathematics [math]/Functional Analysis [math.FA] [MATH.MATH-CA]Mathematics [math]/Classical Analysis and ODEs [math.CA] [MATH.MATH-GM]Mathematics [math]/General Mathematics [math.GM] [INFO.INFO-IT]Computer Science [cs]/Information Theory [cs.IT] |
spellingShingle |
Side-channel analysis unprofiled distinguishers MIA CPA LRA max- imum likelihood [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] [MATH.MATH-IT]Mathematics [math]/Information Theory [math.IT] [INFO.INFO-DM]Computer Science [cs]/Discrete Mathematics [cs.DM] [INFO.INFO-HC]Computer Science [cs]/Human-Computer Interaction [cs.HC] [INFO.INFO-TS]Computer Science [cs]/Signal and Image Processing [SPI.SIGNAL]Engineering Sciences [physics]/Signal and Image processing [MATH.MATH-ST]Mathematics [math]/Statistics [math.ST] [MATH.MATH-PR]Mathematics [math]/Probability [math.PR] [MATH.MATH-FA]Mathematics [math]/Functional Analysis [math.FA] [MATH.MATH-CA]Mathematics [math]/Classical Analysis and ODEs [math.CA] [MATH.MATH-GM]Mathematics [math]/General Mathematics [math.GM] [INFO.INFO-IT]Computer Science [cs]/Information Theory [cs.IT] Cherisey, Eloi De Guilley, Sylvain Heuser, Annelie Rioul, Olivier On the optimality and practicability of mutual information analysis in some scenarios |
topic_facet |
Side-channel analysis unprofiled distinguishers MIA CPA LRA max- imum likelihood [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR] [MATH.MATH-IT]Mathematics [math]/Information Theory [math.IT] [INFO.INFO-DM]Computer Science [cs]/Discrete Mathematics [cs.DM] [INFO.INFO-HC]Computer Science [cs]/Human-Computer Interaction [cs.HC] [INFO.INFO-TS]Computer Science [cs]/Signal and Image Processing [SPI.SIGNAL]Engineering Sciences [physics]/Signal and Image processing [MATH.MATH-ST]Mathematics [math]/Statistics [math.ST] [MATH.MATH-PR]Mathematics [math]/Probability [math.PR] [MATH.MATH-FA]Mathematics [math]/Functional Analysis [math.FA] [MATH.MATH-CA]Mathematics [math]/Classical Analysis and ODEs [math.CA] [MATH.MATH-GM]Mathematics [math]/General Mathematics [math.GM] [INFO.INFO-IT]Computer Science [cs]/Information Theory [cs.IT] |
description |
International audience The best possible side-channel attack maximizes the success rate and would correspond to a maximum likelihood distinguisher if the leak- age probabilities were totally known or accurately estimated in a profiling phase. When profiling is unavailable, however, it is not clear whether Mutual Information Analysis (MIA), Correlation Power Analysis (CPA), or Linear Regression Analysis (LRA) would be the most successful in a given scenario. In this paper, we show that MIA coincides with the maximum likelihood expression when leakage probabilities are replaced by online estimated prob- abilities.We then exhibit two case-studies where MIA outperforms CPA. One case is when the leakage model is known but the noise is not Gaussian. The second case is when the leakage model is partially unknown and the noise is Gaussian. In the latter scenario MIA is more efficient than LRA of any order. |
author2 |
Département Communications & Electronique (COMELEC) Télécom ParisTech Secure and Safe Hardware (SSH) Laboratoire Traitement et Communication de l'Information (LTCI) Institut Mines-Télécom Paris (IMT)-Télécom Paris Institut Mines-Télécom Paris (IMT)-Institut Polytechnique de Paris (IP Paris)-Institut Polytechnique de Paris (IP Paris)-Institut Mines-Télécom Paris (IMT)-Télécom Paris Institut Mines-Télécom Paris (IMT)-Institut Polytechnique de Paris (IP Paris)-Institut Polytechnique de Paris (IP Paris) Secure-IC S.A.S Institut Mines-Télécom Paris (IMT) Communications Numériques (COMNUM) |
format |
Conference Object |
author |
Cherisey, Eloi De Guilley, Sylvain Heuser, Annelie Rioul, Olivier |
author_facet |
Cherisey, Eloi De Guilley, Sylvain Heuser, Annelie Rioul, Olivier |
author_sort |
Cherisey, Eloi De |
title |
On the optimality and practicability of mutual information analysis in some scenarios |
title_short |
On the optimality and practicability of mutual information analysis in some scenarios |
title_full |
On the optimality and practicability of mutual information analysis in some scenarios |
title_fullStr |
On the optimality and practicability of mutual information analysis in some scenarios |
title_full_unstemmed |
On the optimality and practicability of mutual information analysis in some scenarios |
title_sort |
on the optimality and practicability of mutual information analysis in some scenarios |
publisher |
HAL CCSD |
publishDate |
2016 |
url |
https://telecom-paris.hal.science/hal-02300055 https://telecom-paris.hal.science/hal-02300055v1/document https://telecom-paris.hal.science/hal-02300055v1/file/201607cheriseyguilleyheuserrioul.pdf |
op_coverage |
Longyearbyen, Svalbard, Norway |
geographic |
Longyearbyen Norway Svalbard |
geographic_facet |
Longyearbyen Norway Svalbard |
genre |
Longyearbyen Svalbard |
genre_facet |
Longyearbyen Svalbard |
op_source |
ArticCrypt 2016 https://telecom-paris.hal.science/hal-02300055 ArticCrypt 2016, Jul 2016, Longyearbyen, Svalbard, Norway |
op_rights |
info:eu-repo/semantics/OpenAccess |
_version_ |
1812815655862272000 |