Visible to the public Bypassing Parity Protected Cryptography Using Laser Fault Injection in Cyber-Physical System

TitleBypassing Parity Protected Cryptography Using Laser Fault Injection in Cyber-Physical System
Publication TypeConference Paper
Year of Publication2016
AuthorsHe, Wei, Breier, Jakub, Bhasin, Shivam, Chattopadhyay, Anupam
Conference NameProceedings of the 2Nd ACM International Workshop on Cyber-Physical System Security
Conference LocationNew York, NY, USA
ISBN Number978-1-4503-4288-9
Keywordscommand injection attacks, composability, concurrency and security, concurrency security, concurrent error detection (CED), controller area network security, cyber-physical system, FPGA, injection, injection attacks, laser fault injection, Lightweight Ciphers, Metrics, parity, pubcrawl, register bit-flip, Resiliency

Lightweight cryptography has been widely utilized in resource constrained embedded devices of Cyber-Physical System (CPS) terminals. The hostile and unattended environment in many scenarios make those endpoints easy to be attacked by hardware based techniques. As a resource-efficient countermeasure against Fault Attacks, parity Concurrent Error Detection (CED) is preferably integrated with security-critical algorithm in CPS terminals. The parity bit changes if an odd number of faults occur during the cipher execution. In this paper, we analyze the effectiveness of fault detection of a parity CED protected cipher (PRESENT) using laser fault injection. The experimental results show that the laser perturbation to encryption can easily flip an even number of data bits, where the faults cannot be detected by parity. Due to the similarity of different parity structures, our attack can bypass almost all parity protections in block ciphers. Some suggestions are given to enhance the security of parity implementations.

Citation Keyhe_bypassing_2016