Abstract
When a secure component executes sensitive operations, the information carried by the power consumption can be used to recover secret information. Many different techniques have been developped to recover this secret, but only few of them focus on the recovering of the executed code itself. Indeed, the code knowledge acquired through this step of Simple Power Analysis (SPA) can help to identify implementation weaknesses and to improve further kinds of attacks. In this paper we present a new approach improving the SPA based on a pattern recognition methodology, that can be used to automatically identify the processed instructions that leak through power consumption. We firstly process a geometrical classification with chosen instructions to enable the automatic identification of any sequence of instructions. Such an analysis is used to reverse general purpose code executions of a recent secure component.
An erratum to this chapter can be found at http://dx.doi.org/10.1007/11915034_125.
This is a preview of subscription content, log in via an institution to check access.
Preview
Unable to display preview. Download preview PDF.
Similar content being viewed by others
References
Kocher, P., Jaffe, J., Jun, B.: Differential Power Analysis. In: Wiener, M.J. (ed.) CRYPTO 1999. LNCS, vol. 1666, pp. 297–388. Springer, Heidelberg (1999)
Fahn, P., Pearson, P.: IPA: A New Class of Power Attacks. In: Koç, Ç.K., Paar, C. (eds.) CHES 1999. LNCS, vol. 1717, pp. 173–186. Springer, Heidelberg (1999)
Clavier, C., Coron, J.S., Dabbous, N.: Differential Power Analysis in the Presence of Hardware Countermeasures. In: Paar, C., Koç, Ç.K. (eds.) CHES 2000. LNCS, vol. 1965, pp. 252–263. Springer, Heidelberg (2000)
Berna Ors, S., Gurkaynak, F., Oswald, E., Preneel, B.: Power-Analysis Attack on an ASCIC AES implementation. In: IEEE ITCC 2004 proceedings, vol. 2, p. 546 (2004)
Mangard, S.: A Simple Power-Analysis (SPA) attack on implementations of the AES key expansion. In: Lee, P.J., Lim, C.H. (eds.) ICISC 2002. LNCS, vol. 2587, Springer, Heidelberg (2003)
Quisquater, J.J., Samyde, D.: Automatic Code Recognition for Smartcards Using a Kohonen Neural Network. In: Proceedings of the Fifth Smart Card Research and Advanced Application Conference (CARDIS 2002), San Jose, USA (November 2002)
Clavier, C.: Side Channel Analysis for Reverse Engineering (SCARE) - An Improved Attack Against a Secret A3/A8 GSM Algorithm. Cryptology ePrint Archive, Report 2004/049 (2004), http://eprint.iacr.org/
Akkar, M.L.: Attaques et méthodes de protections de systèmes cryptographiques embarqués. Doctor Thesis, Versailles University (2004)
Bigot, J.: A scale-space approach to landmark detection. Technical Report, TR2046, PAI (Interuniversity Attraction Pole network) (2002)
Robert, F.: Shape studies based on the circumscribed disk algorithm. In: IEEE CESA 1998 proceedings, April 1-4, IEEE-IMACS, Hammamet, Tunisia (1998)
Fournigault, M., Trémeau, A., Robert-Inacio, F.: Characteristic centre point for quasi-convex shapes. In: 9th European Congres on Stereology and Image Analysis proceedings (ECSIA), Zakopane, Poland, May 10-13, vol. 2, pp. 299–304 (2005)
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2006 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Fournigault, M., Liardet, PY., Teglia, Y., Trémeau, A., Robert-Inacio, F. (2006). Reverse Engineering of Embedded Software Using Syntactic Pattern Recognition. In: Meersman, R., Tari, Z., Herrero, P. (eds) On the Move to Meaningful Internet Systems 2006: OTM 2006 Workshops. OTM 2006. Lecture Notes in Computer Science, vol 4277. Springer, Berlin, Heidelberg. https://doi.org/10.1007/11915034_76
Download citation
DOI: https://doi.org/10.1007/11915034_76
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-48269-7
Online ISBN: 978-3-540-48272-7
eBook Packages: Computer ScienceComputer Science (R0)