Visible to the public Theoretical Round Modification Fault Analysis on AEGIS-128 with Algebraic Techniques

TitleTheoretical Round Modification Fault Analysis on AEGIS-128 with Algebraic Techniques
Publication TypeConference Paper
Year of Publication2018
AuthorsZhang, F., Dong, X., Zhao, X., Wang, Y., Qureshi, S., Zhang, Y., Lou, X., Tang, Y.
Conference Name2018 IEEE 15th International Conference on Mobile Ad Hoc and Sensor Systems (MASS)
KeywordsAd hoc networks, advanced fault analysis, advanced round modification fault analysis, AEGIS, AEGIS-128, AEGIS-256, Algebraic Fault Analysis, algebraic techniques, authenticated encryption, authentication, Ciphers, Circuit faults, composability, compositionality, cryptography, Encryption, Fault attack, pubcrawl, Round modification, theoretical cryptography, theoretical level, theoretical round modification fault analysis, vanilla RMFA
AbstractThis paper proposed an advanced round modification fault analysis (RMFA) at the theoretical level on AEGIS-128, which is one of seven finalists in CAESAR competition. First, we clarify our assumptions and simplifications on the attack model, focusing on the encryption security. Then, we emphasize the difficulty of applying vanilla RMFA to AEGIS-128 in the practical case. Finally we demonstrate our advanced fault analysis on AEGIS-128 using machine-solver based algebraic techniques. Our enhancement can be used to conquer the practical scenario which is difficult for vanilla RMFA. Simulation results show that when the fault is injected to the initialization phase and the number of rounds is reduced to one, two samples of injections can extract the whole 128 key bits within less than two hours. This work can also be extended to other versions such as AEGIS-256.
Citation Keyzhang_theoretical_2018