Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards

Junrong Liu; Yu Yu; FranÇois Xavier Standaert; Zheng Guo; Dawu Gu; Wei Sun; Yijie Ge; Xinjun Xie

doi:10.1007/978-3-319-24174-6_24

Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards

Junrong Liu
, Yu Yu^*
, FranÇois Xavier Standaert
, Zheng Guo
, Dawu Gu
, Wei Sun
, Yijie Ge
, Xinjun Xie

^*此作品的通讯作者

Shanghai Jiao Tong University
CAS - Institute of Information Engineering
State Key Laboratory of Cryptology
Université catholique de Louvain
Shanghai Viewsource Information Science and Technology Co., Ltd
Shanghai Modern General Recognition Technology Corporation

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

49 引用（Scopus）

摘要

Side-channel attacks are an increasingly important concern for the security of cryptographic embedded devices, such as the SIM cards used in mobile phones. Previous works have exhibited such attacks against implementations of the 2G GSM algorithms (COMP-128, A5). In this paper, we show that they remain an important issue for USIM cards implementing the AES-based MILENAGE algorithm used in 3G/4G communications. In particular, we analyze instances of cards from a variety of operators and manufacturers, and describe successful Differential Power Analysis attacks that recover encryption keys and other secrets (needed to clone the USIM cards) within a few minutes. Further, we discuss the impact of the operator-defined secret parameters in MILENAGE on the difficulty to perform Differential Power Analysis, and show that they do not improve implementation security. Our results back up the observation that physical security issues raise long-term challenges that should be solved early in the development of cryptographic implementations, with adequate countermeasures.

源语言	英语
主期刊名	Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings
编辑	Peter Y.A. Ryan, Günther Pernul, Edgar Weippl
出版商	Springer Verlag
页	468-480
页数	13
ISBN（印刷版）	9783319241739
DOI	https://doi.org/10.1007/978-3-319-24174-6_24
出版状态	已出版 - 2015
已对外发布	是
活动	20th European Symposium on Research in Computer Security, ESORICS 2015 - Vienna, 奥地利期限: 21 9月 2015 → 25 9月 2015

出版系列

姓名	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
卷	9326
ISSN（印刷版）	0302-9743
ISSN（电子版）	1611-3349

会议

会议	20th European Symposium on Research in Computer Security, ESORICS 2015
国家/地区	奥地利
市	Vienna
时期	21/09/15 → 25/09/15

访问文件

10.1007/978-3-319-24174-6_24

其它文件与链接

链接到 Scopus 的出版物

引用此

Liu, J., Yu, Y., Standaert, F. X., Guo, Z., Gu, D., Sun, W., Ge, Y., & Xie, X. (2015). Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards. 在 P. Y. A. Ryan, G. Pernul, & E. Weippl (编辑), Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings (页码 468-480). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); 卷 9326). Springer Verlag. https://doi.org/10.1007/978-3-319-24174-6_24

Liu, Junrong ; Yu, Yu ; Standaert, FranÇois Xavier 等. / Small tweaks do not help : Differential power analysis of MILENAGE implementations in 3G/4G USIM cards. Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings. 编辑 / Peter Y.A. Ryan ; Günther Pernul ; Edgar Weippl. Springer Verlag, 2015. 页码 468-480 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{0246dc71b9dd4543a92362c041756698,

title = "Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards",

abstract = "Side-channel attacks are an increasingly important concern for the security of cryptographic embedded devices, such as the SIM cards used in mobile phones. Previous works have exhibited such attacks against implementations of the 2G GSM algorithms (COMP-128, A5). In this paper, we show that they remain an important issue for USIM cards implementing the AES-based MILENAGE algorithm used in 3G/4G communications. In particular, we analyze instances of cards from a variety of operators and manufacturers, and describe successful Differential Power Analysis attacks that recover encryption keys and other secrets (needed to clone the USIM cards) within a few minutes. Further, we discuss the impact of the operator-defined secret parameters in MILENAGE on the difficulty to perform Differential Power Analysis, and show that they do not improve implementation security. Our results back up the observation that physical security issues raise long-term challenges that should be solved early in the development of cryptographic implementations, with adequate countermeasures.",

keywords = "Mobile network security, SIM cards cloning, Side-channel attacks",

author = "Junrong Liu and Yu Yu and Standaert, \{Fran{\c C}ois Xavier\} and Zheng Guo and Dawu Gu and Wei Sun and Yijie Ge and Xinjun Xie",

note = "Publisher Copyright: {\textcopyright} Springer International Publishing Switzerland 2015.; 20th European Symposium on Research in Computer Security, ESORICS 2015 ; Conference date: 21-09-2015 Through 25-09-2015",

year = "2015",

doi = "10.1007/978-3-319-24174-6\_24",

language = "英语",

isbn = "9783319241739",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Verlag",

pages = "468--480",

editor = "Ryan, \{Peter Y.A.\} and G{\"u}nther Pernul and Edgar Weippl",

booktitle = "Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings",

address = "德国",

}

Liu, J, Yu, Y, Standaert, FX, Guo, Z, Gu, D, Sun, W, Ge, Y & Xie, X 2015, Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards. 在 PYA Ryan, G Pernul & E Weippl (编辑), Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), 卷 9326, Springer Verlag, 页码 468-480, 20th European Symposium on Research in Computer Security, ESORICS 2015, Vienna, 奥地利, 21/09/15. https://doi.org/10.1007/978-3-319-24174-6_24

Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards. / Liu, Junrong; Yu, Yu; Standaert, FranÇois Xavier 等.
Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings. 编辑 / Peter Y.A. Ryan; Günther Pernul; Edgar Weippl. Springer Verlag, 2015. 页码 468-480 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); 卷 9326).

科研成果: 书/报告/会议事项章节 › 会议稿件 › 同行评审

TY - GEN

T1 - Small tweaks do not help

T2 - 20th European Symposium on Research in Computer Security, ESORICS 2015

AU - Liu, Junrong

AU - Yu, Yu

AU - Standaert, FranÇois Xavier

AU - Guo, Zheng

AU - Gu, Dawu

AU - Sun, Wei

AU - Ge, Yijie

AU - Xie, Xinjun

PY - 2015

Y1 - 2015

N2 - Side-channel attacks are an increasingly important concern for the security of cryptographic embedded devices, such as the SIM cards used in mobile phones. Previous works have exhibited such attacks against implementations of the 2G GSM algorithms (COMP-128, A5). In this paper, we show that they remain an important issue for USIM cards implementing the AES-based MILENAGE algorithm used in 3G/4G communications. In particular, we analyze instances of cards from a variety of operators and manufacturers, and describe successful Differential Power Analysis attacks that recover encryption keys and other secrets (needed to clone the USIM cards) within a few minutes. Further, we discuss the impact of the operator-defined secret parameters in MILENAGE on the difficulty to perform Differential Power Analysis, and show that they do not improve implementation security. Our results back up the observation that physical security issues raise long-term challenges that should be solved early in the development of cryptographic implementations, with adequate countermeasures.

AB - Side-channel attacks are an increasingly important concern for the security of cryptographic embedded devices, such as the SIM cards used in mobile phones. Previous works have exhibited such attacks against implementations of the 2G GSM algorithms (COMP-128, A5). In this paper, we show that they remain an important issue for USIM cards implementing the AES-based MILENAGE algorithm used in 3G/4G communications. In particular, we analyze instances of cards from a variety of operators and manufacturers, and describe successful Differential Power Analysis attacks that recover encryption keys and other secrets (needed to clone the USIM cards) within a few minutes. Further, we discuss the impact of the operator-defined secret parameters in MILENAGE on the difficulty to perform Differential Power Analysis, and show that they do not improve implementation security. Our results back up the observation that physical security issues raise long-term challenges that should be solved early in the development of cryptographic implementations, with adequate countermeasures.

KW - Mobile network security

KW - SIM cards cloning

KW - Side-channel attacks

UR - https://www.scopus.com/pages/publications/84951285097

U2 - 10.1007/978-3-319-24174-6_24

DO - 10.1007/978-3-319-24174-6_24

M3 - 会议稿件

AN - SCOPUS:84951285097

SN - 9783319241739

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 468

EP - 480

BT - Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings

A2 - Ryan, Peter Y.A.

A2 - Pernul, Günther

A2 - Weippl, Edgar

PB - Springer Verlag

Y2 - 21 September 2015 through 25 September 2015

ER -

Liu J, Yu Y, Standaert FX, Guo Z, Gu D, Sun W 等. Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards. 在 Ryan PYA, Pernul G, Weippl E, 编辑, Computer Security – ESORICS 2015 - 20th European Symposium on Research in Computer Security, Proceedings. Springer Verlag. 2015. 页码 468-480. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-319-24174-6_24

Small tweaks do not help: Differential power analysis of MILENAGE implementations in 3G/4G USIM cards

摘要

出版系列

会议

访问文件

其它文件与链接

指纹

引用此