基于ECDSA的故障攻击分析-信号与信息处理专业论文.docxVIP

万方数据 万方数据 摘要 摘要 在安全程度相同的前提下，相对与其它公钥密码，ECC（椭圆曲线密码）作 为一种新型的公钥密码体系具有使用密钥更短，存储空间更小，处理步骤更少等 优势，在智能卡领域已经成为重点发展方向之一，而作为椭圆曲线算法的数字签 名算法的 ECDSA（椭圆曲线数字签名算法）也已经成为智能卡数字签名算法的主 流。 在智能卡已被广泛应用的情况下，人们的许多私密信息就存储在智能卡芯片 内部，这就要求智能卡芯片要足够安全且能够有效保护这些私密信息，而故障攻 击技术正是智能卡芯片安全的一大威胁。因此如何防护故障攻击显得更加重要。 而本文就以智能卡芯片安全为背景来研究对芯片的故障攻击与防御。 本文从 ECC 算法基础出发，着重介绍了 ECDSA 的算法实现以及对 ECDSA 的故障攻击与防护；并且在具体智能卡芯片上实现了 ECDSA 算法及对其的故障攻 击与防护。 本文中以两种方式对芯片的 ECDSA 的故障攻击与防护的理论进行了验证，一 种方式是在芯片内部使用随机发生器实现一个程序后门，来模拟激光攻击实验， 而另一种方式是直接通过激光实验来完成故障攻击与防护，两种方式的结果一致 更加说明了本文所设计的抗故障攻击方案是可行的，也就是说在 ECDSA 的算法中 加入防护措施后能够完全防护此故障攻击，从实际芯片上证明了该防御措施的有 效性。 关键词：椭圆曲线密码 椭圆曲线数字签名 故障攻击 故障攻击防护 Abstract Abstract Comparing with other public key cryptography in the same security situation, Elliptic curve cryptography (ECC) is a new family of public-key algorithms , and it can provide shorter key lengths，smaller storage space and fewer processing steps. It becomes one of most popular direction in the field of smart cards, and the Elliptic curve digital signature algorithm (ECDSA) that is the elliptic curve analogue of the Digital Signature Algorithm has also become the mainstream of signature in the field of smart card. Smart cards are widely used in the world, and personal information is stored in the smart cards. So the secret information can’t be gotten by other people base on the high security in the smart card. But the fault attack threatens the security of the smart cards. In this time, the countermeasure on fault attack becomes more and more important. And this thesis will study the fault attack and its countermeasure on smart cards. This thesis introduce how to realize ECDSA and fault attack and its countermeasure on ECDSA in theory base on the ECC, and realize ECDSA and fault attack and its countermeasure on ECDSA in chips. In this thesis, Two methods are used to inject error. One method is the software that using random number generator instead of laser makes error, the other method is laser makes error. The same results of two ways show that the fa