针对基于SM3的HMAC的互信息能量分析攻击Mutualinformation.PDF

第 37 卷第 Z1 期 通 信 学 报 Vol.37 No.Z1 2016 年 10 月 Journal on Communications October 2016 doi:10.11959/j.issn.1000-436x.2016248 针对基于 SM3 的 HMAC 的互信息能量分析攻击 吴震 1 ，王敏 1 ，饶金涛 1 ，杜之波 1 ，王胜 2 ，张凌浩 2 （1. 成都信息工程大学 信息安全工程学院，四川 成都 610225 ； 2. 国网四川省电力公司电力科学研究院，四川 成都 610072 ） 摘 要：提出了对应的互信息能量分析攻击，该方法结合了能量分析的基本原理和信息论的基础，利用能量泄露的中 间值和能量迹计算两者的互信息大小，从而达到提取密钥的目的。利用该方法针对基于 SM3 的 HMAC 算法进行了实 测攻击，实验表明，该方法可以成功恢复出 SM3 算法初始状态从而提取出正确的密钥，扩展了侧信道攻击的方法。 关键词：HAMC 算法；SM3 算法；能量分析攻击；互信息能量分析攻击；初始状态 中图分类号：TP309.1 文献标识码：A Mutual information power analysis attack of HMAC based on SM3 1 1 1 1 2 2 WU Zhen , WANG Min , RAO Jin-tao , DU Zhi-bo , WANG Sheng , ZHANG Ling-hao (1. College of Information Security Engineering, Chengdu University of Information Technology, Chengdu 610225, China; 2. State Grid Sichuan Electric Power Research Institute, Chengdu 610072, China) Abstract: A novel method of mutual information power analysis attack was proposed. The method was built on the basis of the basic principle of power analysis and the basic theory of information. For the purpose of attacking the key, the mutual in- formation values was computed using two values between the mediate variable with the power traces. An experiment was im- plemented on the algorithm of HMAC based on SM3 using this method. The experimental results show the proposed attack method is effective because the initial value of state variable can be successfully retrieved to compute the real true key. Key words: HAMC algorithm, SM3 algorithm, power analysis a