TY - GEN
T1 - A fast and provably secure higher-order masking of AES S-box
AU - Kim, Hee Seok
AU - Hong, Seokhie
AU - Lim, Jongin
PY - 2011
Y1 - 2011
N2 - This paper proposes an efficient and secure higher-order masking algorithm for AES S-box that consumes the most computation time of the higher-order masked AES. During the past few years, much of the research has focused on finding higher-order masking schemes for this AES S-box, but these are still slow for embedded processors use. Our proposed higher-order masking of AES S-box is constructed based on the inversion operation over the composite field. We replace the subfield operations over the composite field into the table lookup operation, but these precomputation tables do not require much ROM space because these are the operations over GF(24). In the implementation results, we show that the higher-order masking scheme using our masked S-box is about 2.54 (second-order masking) and 3.03 (third-order masking) times faster than the fastest method among the existing higher-order masking schemes of AES.
AB - This paper proposes an efficient and secure higher-order masking algorithm for AES S-box that consumes the most computation time of the higher-order masked AES. During the past few years, much of the research has focused on finding higher-order masking schemes for this AES S-box, but these are still slow for embedded processors use. Our proposed higher-order masking of AES S-box is constructed based on the inversion operation over the composite field. We replace the subfield operations over the composite field into the table lookup operation, but these precomputation tables do not require much ROM space because these are the operations over GF(24). In the implementation results, we show that the higher-order masking scheme using our masked S-box is about 2.54 (second-order masking) and 3.03 (third-order masking) times faster than the fastest method among the existing higher-order masking schemes of AES.
KW - AES
KW - differential power analysis
KW - higher-order DPA
KW - higher-order masking
KW - side channel attack
UR - http://www.scopus.com/inward/record.url?scp=80053483211&partnerID=8YFLogxK
U2 - 10.1007/978-3-642-23951-9_7
DO - 10.1007/978-3-642-23951-9_7
M3 - Conference contribution
AN - SCOPUS:80053483211
SN - 9783642239502
T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
SP - 95
EP - 107
BT - Cryptographic Hardware and Embedded Systems - 13th International Workshop, CHES 2011, Proceedings
T2 - 13th International Workshop on Cryptographic Hardware and Embedded Systems, CHES 2011
Y2 - 28 September 2011 through 1 October 2011
ER -