摘要
针对在旁路分析过程中由于噪声的影响,使用传统的简单分析方法无法观测出RSA的加密过程这一问题,提出基于模板匹配的旁路分析方法。通过提取加密操作的旁路电磁轨迹特征为加密操作构建模板,采用模板匹配的方法实现对未知测试轨迹中加密操作的识别,根据密钥与加密操作的相关性得出密钥序列。在此基础上,对移动设备PCM-9589F凌动主板进行RSA加密算法的电磁旁路分析研究,针对目标设备自身无法触发示波器采样这一问题,设计一种旁路信号采集平台,采用基于模板匹配的方法提取OpenSSL加密库中1024位RSA加密算法的二进制密钥序列,有效解决因旁路信号质量低,无法破解密钥的难题。
In view of the effects of noise in side-channel analysis,the encryption process of RSA can’t be observed directly using traditional SPA method,a side-channel analysis method based on template matching was proposed.Statistical method was used to construct the operations templates containing the characteristics of the electromagnetic trajectory of the encryption operations,the encryption operations were recognized by matching with the templates.Because the encryption operations were related to the keys indirectly inferred by recognizing the encryption operations.On this basis,the RSA electromagnetic side-channel analysis for mobile device PCM-9589F multi-board was studied.In allusion to the problem that the target device can’t trigger the oscilloscope sampling,a signal acquisition platform was designed.The 1024 bits’binary keys sequences of RSA in OpenSSL encryption library were extracted using template matching method.And it solves the problem that the keys can’t be cracked due to the inferior quality of side-channel signal effectively.
作者
胡晓阳
陈开颜
张阳
谢方方
徐子言
HU Xiao-yang;CHEN Kai-yan;ZHANG Yang;XIE Fang-fang;XU Zi-yan(Equipment Simulation Training Center,Shijiazhuang Campus of Army Engineering University,Shijiazhuang 453000,China)
出处
《计算机工程与设计》
北大核心
2019年第9期2446-2450,共5页
Computer Engineering and Design
基金
国家自然科学基金项目(51377170)
国家青年科学基金项目(61602505)
关键词
旁路分析
特征提取
模板匹配
操作识别
移动设备
side-channel analysis
feature extraction
template matching
operations recognizing
mobile device
作者简介
胡晓阳(1993),男,吉林长春人,硕士研究生,研究方向为旁路攻击;陈开颜(1970),女,辽宁营口人,博士,副教授,研究方向为密码学;张阳(1984),男,河北南宫人,博士研究生,讲师,研究方向为信息安全、控制安全;谢方方(1984),女,安徽元安人,硕士研究生,讲师,研究方向为信息安全;徐子言(1993),男,甘肃天水人,硕士研究生,助理工程师,研究方向为信息安全。E-mail:1060954514@qq.com。
