Mathematical Foundations for Side-Channel Analysis of Cryptographic Systems (加密系統側信道分析的數學基礎)
Cheng, Wei, Guilley, Sylvain, Rioul, Olivier
- 出版商: Springer
- 出版日期: 2024-10-26
- 售價: $7,050
- 貴賓價: 9.5 折 $6,698
- 語言: 英文
- 頁數: 411
- 裝訂: Hardcover - also called cloth, retail trade, or trade
- ISBN: 3031643984
- ISBN-13: 9783031643989
海外代購書籍(需單獨結帳)
相關主題
商品描述
This book offers the reader a formalization, characterization and quantification of the real threat level posed by side-channel leaks from devices implementing cryptography. It exploits the best mathematical tools for quantifying information leakage and characterizing leakage-based attacks. The two possible approaches are described in detail. This includes the optimal attack strategy that can be derived (in specific contexts) or generic bounds regarding data complexity that can be computed. The tone of this book is essentially mathematical. It aims to establish formal foundations for techniques that are otherwise used as engineering recipes in industrial laboratories or empirical intuitions for deriving security levels from practical implementations. It is a systematization of knowledge and a compilation of relevant tools relating to the practice of side-channel analysis on embedded systems.
This book provides an up-to-date and improved analysis and understanding of embedded devices that conceal secrets that can be extracted by an attacker. Typical attacks involve measuring the device's power consumption or radiated electromagnetic field. As a source of noisy information, this correlates it with secrets and enabling these secrets to be retrieved. The attacker in some cases, can purchase a blank device from the same series and learn about its leakage, particularly how it relates to the secrets. This book also covers how such information can enhance hardware attacks deployed on another device.
Researchers and engineers working in the field of side-channel security for embedded systems and related countermeasures as well as hardware and software engineers focused on implementing cryptographic functionalities will want to purchase this book as a reference. Advanced-level students majoring in computer science and electrical engineering will find this book valuable as a secondary textbook.
商品描述(中文翻譯)
本書為讀者提供了對於實施加密技術的設備所產生的側信道洩漏所帶來的真實威脅水平的形式化、特徵化和量化。它利用最佳的數學工具來量化信息洩漏並特徵化基於洩漏的攻擊。書中詳細描述了兩種可能的方法,包括可以在特定情境下推導出的最佳攻擊策略,或是可以計算的有關數據複雜度的通用界限。本書的語調基本上是數學性的,旨在為那些在工業實驗室中作為工程配方使用的技術,或是從實際實施中推導安全級別的經驗直覺建立正式的基礎。這是對知識的系統化以及與嵌入式系統側信道分析實踐相關的工具的彙編。
本書提供了對隱藏秘密的嵌入式設備的最新和改進的分析與理解,這些秘密可能被攻擊者提取。典型的攻擊涉及測量設備的功耗或輻射的電磁場。作為一種噪聲信息的來源,這將其與秘密相關聯,並使這些秘密得以被檢索。在某些情況下,攻擊者可以從同一系列中購買一個空白設備,並了解其洩漏情況,特別是它與秘密的關係。本書還涵蓋了這種信息如何增強針對另一設備的硬體攻擊。
從事嵌入式系統側信道安全及相關對策的研究人員和工程師,以及專注於實施加密功能的硬體和軟體工程師,都會希望購買本書作為參考。主修計算機科學和電機工程的高級學生將會發現本書作為輔助教材非常有價值。
作者簡介
Wei CHENG is Postdoc Researcher at Secure-IC S.A.S., and also invited Associate Researcher at Télécom Paris. He obtained his Ph.D. degree in Information and Communications in December, 2021 from Télécom Paris & Institut Polytechnique de Paris, France. Before this, he received the B.S. degree from Wuhan University and the M.E. degree from the Institute of Information Engineering, CAS. His research interests include information theory, side-channel analysis, and related countermeasures (mainly on code-based masking, including inner product masking, direct sum masking, polynomial masking and other variants) of embedded systems and secure implementations. He also works on Machine Learning-based analysis on Physical Unclonable Functions (PUFs). He has received the ICE (Information, Communication and Electronics) PhD Prize of Institut Polytechnique de Paris, 2022
Sylvain GUILLEY is General Manager and CTO at Secure-IC, a French company with global footprint offering security for embedded systems. Sylvain is also adjunct professor at Télécom-Paris and research associate at Ecole Normale Supérieure (ENS). His research interests are trusted computing, cyber-physical security, secure prototyping in FPGA and ASIC, and formal / mathematical methods. Since 2012, he organizes the PROOFS annual workshop, which brings together researchers whose objective is to increase the trust in the security of embedded systems. Sylvain is also lead editor of international standards, such as ISO/IEC 20897 (Physically Unclonable Functions), ISO/IEC 20085 (Calibration of non-invasive testing tools), and ISO/IEC TR 24485 (White Box Cryptography). He is leading the topic "High Level Principles for Design & Architecture" in the editing team of TR68 (Autonomous Vehicles---Singapore, Standards Development Organisation), and is member of the French BNA (Bureau de Normalisation de l'Automobile). Sylvain is associate editor of the Springer Nature Journal of Cryptography Engineering (JCEN). He has co-authored 350+ research papers and filed 40+ invention patents. He is member of the IACR, senior member of the IEEE and the CryptArchi club. He is an alumnus from Ecole Polytechnique and Télécom-Paris
Olivier RIOUL is full Professor at the Department of Communication and Electronics at Télécom Paris, Institut Polytechnique de Paris, France. He graduated from École Polytechnique and from École Nationale Supérieure des Télécommunications, Paris, France, where he obtained his PhD degree. His research interests are in applied mathematics and include various, sometimes unconventional, applications of information theory such as inequalities in statistics, hardware security, and experimental psychology. He has been teaching information theory and statistics at various universities for twenty years and has published a textbook which has become a classical French reference in the field.
作者簡介(中文翻譯)
魏承(Wei CHENG)是 Secure-IC S.A.S. 的博士後研究員,同時也是巴黎電信學院(Télécom Paris)的受邀副研究員。他於2021年12月在法國巴黎電信學院及巴黎理工學院(Institut Polytechnique de Paris)獲得資訊與通信博士學位。在此之前,他獲得了武漢大學的學士學位及中國科學院信息工程研究所的碩士學位。他的研究興趣包括資訊理論、側信道分析及相關的對策(主要針對基於代碼的掩碼技術,包括內積掩碼、直接和掩碼、多項式掩碼及其他變體)在嵌入式系統及安全實現中的應用。他還從事基於機器學習的物理不可複製函數(PUFs)分析。他曾獲得巴黎理工學院2022年ICE(資訊、通信與電子)博士獎。
西爾萬·吉耶(Sylvain GUILLEY)是 Secure-IC 的總經理及首席技術官,該公司是一家在全球範圍內提供嵌入式系統安全的法國公司。西爾萬同時也是巴黎電信學院的兼任教授及法國高等師範學校(Ecole Normale Supérieure, ENS)的研究助理。他的研究興趣包括可信計算、網絡物理安全、FPGA 和 ASIC 的安全原型設計,以及形式/數學方法。自2012年以來,他組織了 PROOFS 年度研討會,聚集了旨在提高嵌入式系統安全信任度的研究人員。西爾萬還是國際標準的主編,如 ISO/IEC 20897(物理不可複製函數)、ISO/IEC 20085(非侵入式測試工具的校準)及 ISO/IEC TR 24485(白盒加密)。他在 TR68(自動駕駛車輛---新加坡標準開發組織)的編輯團隊中負責“設計與架構的高級原則”主題,並且是法國汽車標準化局(Bureau de Normalisation de l'Automobile)的成員。西爾萬是 Springer Nature Journal of Cryptography Engineering(JCEN)的副編輯。他共同撰寫了350多篇研究論文並申請了40多項發明專利。他是 IACR 的成員,IEEE 的高級會員及 CryptArchi 俱樂部的成員。他是巴黎高等師範學院及巴黎電信學院的校友。
奧利維耶·里奧(Olivier RIOUL)是法國巴黎理工學院(Institut Polytechnique de Paris)巴黎電信學院(Télécom Paris)通信與電子系的全職教授。他畢業於巴黎高等師範學院(École Polytechnique)及巴黎國立電信學院(École Nationale Supérieure des Télécommunications),並在此獲得博士學位。他的研究興趣在於應用數學,並包括資訊理論的各種應用,有時甚至是非常規的應用,如統計學中的不等式、硬體安全及實驗心理學。他在多所大學教授資訊理論和統計學已有二十年,並出版了一本已成為該領域經典法國參考書籍的教科書。