面向高安全等级密码芯片的侧信道分析方法与测评技术研究

项目名称： 面向高安全等级密码芯片的侧信道分析方法与测评技术研究

项目编号： No.61472416

项目类型： 面上项目

立项/批准年度： 2015

项目学科： 自动化技术、计算机技术

项目作者： 周永彬

作者单位： 中国科学院信息工程研究所

项目金额： 85万元

中文摘要： 密码芯片是一类重要的基础安全功能单元，在众多安全攸关信息处理设备与信息系统中应用十分广泛。具有优良侧信道安全性是高安全等级密码芯片必须满足的一项共性技术要求。但是，高安全等级密码芯片的侧信道安全性分析与测评面临着一系列严峻的科学方法与工程技术挑战，是近年来世界各国竞相研究发展的密码技术领域核心关键技术。因此，项目拟对面向高安全等级密码芯片的侧信道分析方法与测评关键技术进行研究，主要内容包括新颖区分器的构造与分析、侧信道攻击威胁量化度量指标及其关联性、安全保障能力综合评估模型与框架、掩码类保护方案的设计与分析以及快速技术验证原型工具与系统研制等。项目研究旨在为审视密码芯片中存在的潜在安全漏洞提供方法支持，为建立科学的密码芯片测评技术指标体系提供参考数据，为开展密码芯片安全性量化评估工作提供技术指导，为国产高安全等级密码芯片的自主设计与研发提供技术支撑。

中文关键词： 密码芯片；侧信道分析；安全等级；分析测评；量化度量

英文摘要： Cryptographic chips are one crucial kind of basic security units, which are widely used in a huge amount of security-critical information processing devices and systems. Good side-channel attack resistance belongs to one specific type of common security requirements for all high security level cryptographic chips. However, the research of cryptanalysis approaches and security evaluation techniques for side-channel security of high security level cryptographic chips is facing extremely serious scientific and engineering challenges. Motivated by these challenges, the project proposes to investigate side-channel cryptanalysis approaches and evaluation techniques for high security level cryptographic chips.Topics of this proposal will mainly cover the following: construction and analysis of new side-channel distinguishers, development of practical quantitative security metrics and understanding of their relationships, development of comprehensive evaluation model and framework for side-channel resistance, design and analysis of provable secure masking countermeasures, and design and development of rapid prototype tools or systems. The project aims to provide scientific approaches for examining the potential security vulnerabilities existed in cryptographic chips, to provide valuable reference data to establish a scientific security evaluation framework for chips, to provide technical guidance for the security assurance evaluation of chips, and to provide technical supports to the design and development of high security level cryptographic chips.

英文关键词： cryptographic chips;side-channel attacks;security level;security testting and evaluation;quantitative metric