摘要
在分布式物联网的大规模应用背景下,各实体设备中密码技术作为信息安全的底层支撑架构,正面临着侧信道攻击(SCA)这一物理层安全威胁的严峻挑战. SM4分组密码算法作为我国自主研制的商用密码算法标准,已深度集成于分布式物联网安全协议中,但其实现层面的侧信道脆弱性问题亟待解决.针对SM4密钥扩展算法的侧信道攻击研究存在空白,现有攻击方法多依赖多能迹统计特性,而单能迹攻击研究匮乏.研究提出一种基于贝叶斯网络结合建模侧信道攻击的单能迹侧信道攻击方法,针对单条能量轨迹,通过构建概率图模型,结合置信传播算法,实现对轮子密钥的高效推测,进而恢复主密钥.仿真实验与实测实验表明该攻击方法有效,在理想实测环境下主密钥恢复成功率达85.74%,即使在实测能迹中添加大量高斯白噪声,使得信噪比仅为10 d B的条件下,成功率仍可达70%.与传统方法相比,所提方法在成功率、所需能量轨迹数量和攻击时间等方面优势显著,为分布式物联网系统含密设备的侧信道攻击研究提供了新的思路与技术手段,也为相关防护设计提供了理论依据和参考.
In the context of large-scale applications of distributed Internet of things(IoT),cryptographic technologies,as the underlying infrastructure for information security,are facing severe challenges from side-channel attacks(SCAs)—a physical-layer security threat.The SM4 block cipher algorithm,as China’s independently developed commercial cryptographic standard,has been deeply integrated into distributed IoT security protocols.However,its implementation-level vulnerabilities to side-channel attacks remain unresolved.Research on side-channel attacks targeting the SM4 key expansion algorithm is scarce,with existing methods primarily relying on multi-trace statistical characteristics,while single-trace attack approaches are under-explored.This paper proposes a single-trace sidechannel attack method integrating Bayesian networks with side-channel attack modeling.By constructing a probabilistic graphical model and combining it with the belief propagation algorithm,the method efficiently infers round subkeys from a single power trace,ultimately recovering the master key.Simulation and practical experiments demonstrate the effectiveness of this approach,achieving an 85.74%success rate for master key recovery under ideal conditions.Even when substantial Gaussian white noise is added to practical power traces(resulting in a signal-tonoise ratio of only 10 dB),the success rate remains at 70%.Compared with traditional methods,this approach exhibits significant advantages in success rate,required power traces,and attack duration,offering new insights and technical tools for side-channel attack research on cryptographic devices in distributed IoT systems,as well as theoretical foundations for related defensive designs.
作者
吴震
赵洋
王敏
Wu Zhen;Zhao Yang;and Wang Min(School of Information and Software Engineering,University of Electronic Science and Technology of China,Chengdu 610054;School of Cybersecurity(Xin Gu Industrial College),Chengdu University of Information Technology,Chengdu 610225)
出处
《计算机研究与发展》
2025年第10期2441-2454,共14页
Journal of Computer Research and Development
基金
国家社会科学基金项目(23BSH061)。
关键词
SM4密钥扩展算法
单能迹攻击
贝叶斯网络
置信传播算法
侧信道攻击
分布式物联网
SM4 key expansion algorithm
single-trace attack
Bayesian network
belief propagation algorithm
sidechannel attack(SCA)
distributed Internet of things
作者简介
吴震,1975年生.博士研究生.主要研究方向为网络空间安全、密码实现安全.,wzhen@cuit.edu.cn;通信作者:王敏,1977年生.博士.副教授.主要研究方向为网络空间安全、侧信道攻击.wmcuit@cuit.edu.cn;赵洋,1973年生.博士,副教授.主要研究方向为隐私计算、网络空间安全.
