面向SM4侧信道攻击的高效方案的设计与实现

打开文本图片集

中图分类号：TP391 文献标识码：A

Abstract： In response to the issue that the SM4 algorithm is unable to resist DPA attacks，both direct hardware and software collection of its power consumption data require a large amount of energy traces and have a low success rate. For this reason， this paper proposes to use different Hamming weight models to evaluate the DPA attack of the algorithm in the pre-silicon development stage， and develops the corresponding experimental verification platform using Synopsys' EDA tools. Different guess keys and plaintext data are used to simulate the output of the attack point. The attack expansion key rk is 32 bits in total. By applying the multi-bit Hamming weight model to the Matlab cracking program and taking the output of the first round S-box as the attack point，it is concluded that the lower eight bits rk0 of the initial key are ， the second lower eight bits rk1 are 8′h86 ， and so on. The results show that using different Hamming weight models to evaluate the effect of DPA atacks in the pre-silicon development stage avoids the problem of long time but poor effect in obtaining power consumption curves during the software and hardware acquisition process. At the same time， it verifies the general effect and accurate performance of the developed software acquisition platform.

Keywords： SM4；differential power analysis attack； hamming weight； power consumption data acquisition platform

随着云计算、大数据、人工智能等新技术的发展，国内外对信息安全的重视和保护日益严格。（剩余9745字）