ISSN 1000-1239 CN 11-1777/TP

计算机研究与发展 ›› 2017, Vol. 54 ›› Issue (10): 2205-2214.doi: 10.7544/issn1000-1239.2017.20170437

• 信息安全 • 上一篇    下一篇

物联网环境中LED轻量级密码算法的统计故障分析研究

李玮1,2,3,葛晨雨1,谷大武2,廖林峰1,高志勇1,郭筝4,刘亚5,刘志强2,石秀金1   

  1. 1(东华大学计算机科学与技术学院 上海 201620); 2(上海交通大学计算机科学与工程系 上海 200240); 3(上海市信息安全综合管理技术研究重点实验室(上海交通大学) 上海 200240); 4(上海交通大学微电子学院 上海 200240); 5(上海理工大学计算机科学与工程系 上海 200093) (liwei.cs.cn@gmail.com)
  • 出版日期: 2017-10-01
  • 基金资助: 
    国家“九七三”重点基础研究发展计划基金项目(2013CB338004);国家自然科学基金项目(61672347,61772129,61402288,61402286,61402250,61572192);上海市自然科学基金项目(15ZR1400300,16ZR1401100);上海市教育委员会科研创新重点项目(14ZZ066);上海市信息安全综合管理技术研究重点实验室开放课题(AGK201703);中央高校基本科研业务费专项资金项目(040)

Research on the LED Lightweight Cipher Against the Statistical Fault Analysis in Internet of Things

Li Wei1,2,3, Ge Chenyu1, Gu Dawu2, Liao Linfeng1, Gao Zhiyong1, Guo Zheng4, Liu Ya5, Liu Zhiqiang2, Shi Xiujin1   

  1. 1(School of Computer Science and Technology, Donghua University, Shanghai 201620); 2(Department of Computer Science and Engineering, Shanghai Jiao Tong University, Shanghai 200240); 3(Shanghai Key Laboratory of Integrate Administration Technologies for Information Security (Shanghai Jiao Tong University), Shanghai 200240); 4(School of Microelectronics, Shanghai Jiao Tong University, Shanghai 200240); 5(Department of Computer Science and Engineering, University of Shanghai for Science and Technology, Shanghai 200093)
  • Online: 2017-10-01

摘要: LED算法是于2011年密码硬件与嵌入式系统国际会议(CHES)中提出的一种典型轻量级密码算法,用于在物联网环境下保护RFID标签以及智能卡等设备的通信安全.故障分析凭借其攻击速度快、实现简单和难以防御等特点,已成为评测轻量级密码算法安全性的一种重要手段.提出了针对LED算法的新型统计故障分析方法,采用面向半字节的故障模型,分别使用SEI区分器、GF区分器和GF-SEI双重区分器对算法进行统计分析.实验结果表明:在较短时间内以99%的成功概率恢复出LED算法的64b和128b原始密钥.该攻击方法不仅可以在唯密文攻击条件下实现,而且提升了故障攻击效率,降低了故障数,为物联网环境下其他轻量级密码的安全性分析提供了重要参考.

关键词: 物联网, 轻量级密码, LED, 统计故障分析, 密码分析

Abstract: The typical lightweight cipher LED, proposed in CHES 2011, is applied in the Internet of things (IoT) to provide security for RFID tags and smart cards etc. Fault analysis has become an important method of cryptanalysis to evaluate the security of lightweight ciphers, depending on its fast speed, simple implementation, complex defense, etc. On the basis of the half byte-oriented fault model, we propose new statistical fault analysis on the LED cipher by inducing faults. Simulating experiment shows that our attack can recover its 64-bit and 128-bit secret keys with 99% probability using an SEI distinguisher, a GF distinguisher and a GF-SEI distinguisher, respectively. The attack can be implemented in the ciphertext-only attacking environment to improve the attacking efficiency and decrease the number of faults. It provides vital reference for security analysis of other lightweight ciphers in the Internet of things.

Key words: Internet of things (IoT), lightweight cipher, LED, statistical fault analysis, cryptanalysis

中图分类号: