Jump to content

Differential fault analysis

From Wikipedia, the free encyclopedia
This is an old revision of this page, as edited by Its-bo (talk | contribs) at 19:27, 9 March 2008 (This contribution is a result of the seminar "Alternative Cryptology" which was held at the chair for communication security at the Ruhr-University Bochum, Germany). The present address (URL) is a permanent link to this revision, which may differ significantly from the current revision.
(diff) ← Previous revision | Latest revision (diff) | Newer revision → (diff)

The DFA works in the following way (with a smartcard as attacked example): While the smartcard ist performing the cryptographic operation, physical stress is induced. Types of physical stress (which can also be combined) are:

  • high temperature
  • unspecified supply voltages
  • high clock frequency or strokes
  • strong electronic fields
  • ionizing radiation energy

With this physical stress applied to the smart card, single bits can flip during calculation. The attacker can repeat this several times to gain additional information, and with some mathematics it is possible to break DES, Triple-DES, Idea, RC5, Feal, and so on. [1][2] For DES and Triple-DES about 200 single-flipped bits are necessary to obtain the key. [3]


References

  1. ^ Eli Biham, Adi Shamir: The next Stage of Differential Fault Analysis: How to break completely unknown cryptosystems (1996)
  2. ^ Dan Boneh and Richard A. DeMillo and Richard J. Lipton: On the Importance of Checking Computations, Eurocrypt (1996)
  3. ^ Ramesh Karri, et al.: Fault-Based Side-Channel Cryptanalysis Tolerant Rijndael Symmetric Block Cipher Architecture (2002)
Retrieved from "https://en.wikipedia.org/w/index.php?title=Differential_fault_analysis&oldid=197057521"