摘要
鉴于射频识别(RFID)标签芯片苛刻的资源要求,为解决差分功耗分析(Differential Power Analysis,DPA)对密码算法实现方面的威胁难题,将新型DPA防护技术threshold与Piccolo密码算法相结合,提出了一种适用于RFID标签芯片应用的安全化密码算法实现方案.分别基于布尔式重组和改进型穷举搜索的方式实现了面积最优的S盒及其逆的threshold(3,3)分享,提出了基于锁存器方式解决S盒及其逆实现中潜在的毛刺威胁问题,在Chartered 0.18μm工艺和100 kHz RFID运行频率下,将该方案的资源消耗控制在2155个等效门,平均电流约为2.60μA,基于FPGA的DPA攻击安全性分析结果表明该方案适合于低成本RFID标签芯片对密码算法轻型及实现安全的要求.
Hash resource required for RFID-tags chips,a secure and lightweight cipher implementation is proposed to solve the threat posed by differential power analysis(DPA). The proposed implementation is based on Piccolo cipher, in combination with the recently proposed masking method named threshold. Boolean equation rearrangement and improved exhaustive search method was respectively appfied to S-Box and inverted S-Box to get their optimal area costs for threshold(3,3) share. A method based on latch is proposed to resist the latent glitch threat.Based on Chartered 0.18tZm and 100 kHz operating frequency for RFID applica- tions, the proposed cipher implementation costs as low as 2155 gate equivalents and consumes 2.60t~A average current. The security of the implementation is evaluated based on real power traces from an FPGA platform. DPA attack results show the proposed imple- mentation with threshold countermeasure is suitable for secure low-cost passive RFID-tag ICs.
出处
《电子学报》
EI
CAS
CSCD
北大核心
2014年第8期1465-1473,共9页
Acta Electronica Sinica
基金
国家自然科学基金(No.61202481)