• DocumentCode
    3451881
  • Title

    DFA Mechanism on the AES Key Schedule

  • Author

    Takahashi, Junko ; Fukunaga, Toshinori ; Yamakoshi, Kimihiro

  • Author_Institution
    Nippon Telegraph & Telephone Corp., Tokyo
  • fYear
    2007
  • fDate
    10-10 Sept. 2007
  • Firstpage
    62
  • Lastpage
    74
  • Abstract
    This paper describes a DFA (differential fault analysis) mechanism on the AES key scheduling process and shows how an entire 128-bit AES key can be retrieved. We make a detailed analysis of the DFA mechanism on the AES key schedule and propose general attack rules. As a result of reconsidering the best attack approach on the basis of analysis, we present a more efficient attack than the previous one. We show that we can retrieve an entire 128-bit AES key using 2-pairs of correct and faulty ciphertexts with a 48-bit brute-force search, 4-pairs of them with a 16-bit brute-force search and 7-pairs of them without brute-force search. These steps are enough to calculate the key with feasible computation resources.
  • Keywords
    cryptography; fault tolerant computing; AES key scheduling process; DFA mechanism; brute-force search; differential fault analysis; faulty ciphertexts; general attack rules; Algorithm design and analysis; Cryptography; Doped fiber amplifiers; Equations; Fault diagnosis; Information analysis; Laboratories; Processor scheduling; Telegraphy; Telephony;
  • fLanguage
    English
  • Publisher
    ieee
  • Conference_Titel
    Fault Diagnosis and Tolerance in Cryptography, 2007. FDTC 2007. Workshop on
  • Conference_Location
    Vienna
  • Print_ISBN
    978-0-7695-2982-0
  • Type

    conf

  • DOI
    10.1109/FDTC.2007.13
  • Filename
    4318986
    • Link To Document
    https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=3451881