{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T18:23:31Z","timestamp":1740162211685,"version":"3.37.3"},"reference-count":34,"publisher":"Springer Science and Business Media LLC","issue":"4","license":[{"start":{"date-parts":[[2020,7,1]],"date-time":"2020-07-01T00:00:00Z","timestamp":1593561600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"},{"start":{"date-parts":[[2020,7,1]],"date-time":"2020-07-01T00:00:00Z","timestamp":1593561600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/creativecommons.org\/licenses\/by\/4.0"}],"funder":[{"DOI":"10.13039\/501100003977","name":"Israel Science Foundation","doi-asserted-by":"crossref","award":["923\/16"],"award-info":[{"award-number":["923\/16"]}],"id":[{"id":"10.13039\/501100003977","id-type":"DOI","asserted-by":"crossref"}]},{"DOI":"10.13039\/501100001659","name":"Deutsche Forschungsgemeinschaft","doi-asserted-by":"crossref","award":["Po 1220\/7-2"],"award-info":[{"award-number":["Po 1220\/7-2"]}],"id":[{"id":"10.13039\/501100001659","id-type":"DOI","asserted-by":"crossref"}]}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":["J Cryptogr Eng"],"published-print":{"date-parts":[[2020,11]]},"abstract":"<jats:title>Abstract<\/jats:title><jats:p>Today\u2019s electronic systems must simultaneously fulfill strict requirements on security and reliability. In particular, their cryptographic modules are exposed to faults, which can be due to natural failures (e.g., radiation or electromagnetic noise) or malicious fault-injection attacks. We present an architecture based on a new class of error-detecting codes that combine robustness properties with a minimal distance. The new architecture guarantees (with some probability) the detection of faults injected by an intelligent and strategic adversary who can precisely control the disturbance. At the same time it supports automatic correction of low-multiplicity faults. To this end, we discuss an efficient technique to correct single nibble\/byte errors while avoiding full syndrome analysis. We also examine a Compact Protection Code (CPC)-based system level fault manager that considers this code an inner code (and the CPC as its outer code). We report experimental results obtained by physical fault injection on the SAKURA-G FPGA board. The experimental results reconfirm the assumption that faults may cause an arbitrary number of bit flips. They indicate that a combined inner\u2013outer coding scheme can significantly reduce the number of fault events that go undetected due to erroneous corrections of the inner code.<\/jats:p>","DOI":"10.1007\/s13389-020-00234-7","type":"journal-article","created":{"date-parts":[[2020,7,1]],"date-time":"2020-07-01T14:36:46Z","timestamp":1593614206000},"page":"321-336","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":1,"title":["Error control scheme for malicious and natural faults in cryptographic modules"],"prefix":"10.1007","volume":"10","author":[{"given":"Mael","family":"Gay","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Batya","family":"Karp","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Osnat","family":"Keren","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-6563-2725","authenticated-orcid":false,"given":"Ilia","family":"Polian","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2020,7,1]]},"reference":[{"key":"234_CR1","doi-asserted-by":"publisher","unstructured":"Admaty, N., Litsyn, S., Keren, O.: Puncturing, expurgating and expanding the q-ary BCH based robust codes. In: IEEE Convention of the Electrical & Electronics Engineers in Israel, pp. 1\u20135 (2012). https:\/\/doi.org\/10.1109\/EEEI.2012.6376995","DOI":"10.1109\/EEEI.2012.6376995"},{"issue":"2","key":"234_CR2","doi-asserted-by":"publisher","first-page":"370","DOI":"10.1109\/JPROC.2005.862424","volume":"94","author":"H Bar-El","year":"2006","unstructured":"Bar-El, H., Choukri, H., Naccache, D., Tunstall, M., Whelan, C.: The sorcerer\u2019s apprentice guide to fault attacks. Proceedings of the IEEE 94(2), 370\u2013382 (2006)","journal-title":"Proceedings of the IEEE"},{"issue":"2","key":"234_CR3","doi-asserted-by":"publisher","first-page":"101","DOI":"10.1007\/s001450010016","volume":"14","author":"D Boneh","year":"2001","unstructured":"Boneh, D., DeMillo, R.A., Lipton, R.J.: On the importance of eliminating errors in cryptographic computations. J. Cryptol. 14(2), 101\u2013119 (2001)","journal-title":"J. Cryptol."},{"key":"234_CR4","doi-asserted-by":"crossref","unstructured":"Breier, J., He, W., Jap, D., Bhasin, S., Chattopadhyay, A.: Attacks in reality: the limits of concurrent error detection codes against laser fault injection. J. Hardw. Syst. Sec. (2017)","DOI":"10.1007\/s41635-017-0020-3"},{"key":"234_CR5","first-page":"145","volume-title":"Small Scale Variants of the AES","author":"C Cid","year":"2005","unstructured":"Cid, C., Murphy, S., Robshaw, M.J.B.: Small Scale Variants of the AES, pp. 145\u2013162. Springer, Berlin (2005)"},{"key":"234_CR6","doi-asserted-by":"crossref","unstructured":"Cramer, R., et\u00a0al.: Detection of algebraic manipulation with applications to robust secret sharing and fuzzy extractors. In: EUROCRYPT, pp. 471\u2013488. Springer, Berlin (2008)","DOI":"10.1007\/978-3-540-78967-3_27"},{"issue":"3","key":"234_CR7","doi-asserted-by":"crossref","first-page":"547","DOI":"10.46586\/tches.v2018.i3.547-572","volume":"2018","author":"C Dobraunig","year":"2018","unstructured":"Dobraunig, C., Eichlseder, M., Korak, T., Mangard, S., Mendel, F., Primas, R.: SIFA: exploiting ineffective fault inductions on symmetric cryptography. IACR Trans. Cryptogr. Hardw. Embed. Syst. 2018(3), 547\u2013572 (2018)","journal-title":"IACR Trans. Cryptogr. Hardw. Embed. Syst."},{"key":"234_CR8","unstructured":"Dziembowski, S., Pietrzak, K., Wichs, D.: Non-malleable codes. Cryptology ePrint Archive. Report 2009\/608 (2009)"},{"issue":"12","key":"234_CR9","doi-asserted-by":"publisher","first-page":"8007","DOI":"10.1109\/TIT.2011.2162718","volume":"57","author":"S Engelberg","year":"2011","unstructured":"Engelberg, S., Keren, O.: A comment on the Karpovsky\u2013Taubin code. IEEE Transactions on Information Theory 57(12), 8007\u20138010 (2011)","journal-title":"IEEE Transactions on Information Theory"},{"key":"234_CR10","doi-asserted-by":"publisher","DOI":"10.1109\/LES.2019.2907232","author":"M Gay","year":"2019","unstructured":"Gay, M., Karp, B., Keren, O., Polian, I.: Towards error-correcting architectures for cryptographic circuits based on Rabii\u2013Keren codes. IEEE Embed. Syst. Lett. (2019). https:\/\/doi.org\/10.1109\/LES.2019.2907232","journal-title":"IEEE Embed. Syst. Lett."},{"key":"234_CR11","doi-asserted-by":"crossref","unstructured":"Jovanovic, P., Kreuzer, M., Polian, I.: A fault attack on the LED block cipher. In: COSADE, Lecture Notes in Computer Science, vol. 7275, pp. 120\u2013134. Springer (2012)","DOI":"10.1007\/978-3-642-29912-4_10"},{"key":"234_CR12","unstructured":"Karp, B., Gay, M., Keren, O., Polian, I.: Detection and correction of malicious and natural faults in cryptographic modules. In: Batina, L., K\u00fchne, U., Mentens, N. (eds.) PROOFS 2018, Kalpa Publications in Computing, vol. 7, pp. 68\u201382. EasyChair (2018)"},{"key":"234_CR13","unstructured":"Karpovsky, M., Kulikowski, K., Wang, Z.: Robust error detection in communication and computational channels. In: Int\u2019l Workshop Spectral Methods & Multirate Signal Proc. (2007)"},{"issue":"8","key":"234_CR14","doi-asserted-by":"publisher","first-page":"1818","DOI":"10.1109\/TIT.2004.831844","volume":"50","author":"M Karpovsky","year":"2004","unstructured":"Karpovsky, M., Taubin, A.: New class of nonlinear systematic error detecting codes. IEEE Trans. Inf. Theory 50(8), 1818\u20131819 (2004)","journal-title":"IEEE Trans. Inf. Theory"},{"issue":"11","key":"234_CR15","doi-asserted-by":"publisher","first-page":"2716","DOI":"10.1109\/TC.2013.146","volume":"63","author":"MG Karpovsky","year":"2014","unstructured":"Karpovsky, M.G., Wang, Z.: Design of strongly secure communication and computation channels by nonlinear error detecting codes. IEEE Trans. Comput. 63(11), 2716\u20132728 (2014)","journal-title":"IEEE Trans. Comput."},{"issue":"1","key":"234_CR16","first-page":"206","volume":"63","author":"O Keren","year":"2015","unstructured":"Keren, O., Karpovsky, M.: Relations between the entropy of a source and the error masking probability for security-oriented codes. IEEE Trans. Commun. 63(1), 206\u2013214 (2015)","journal-title":"IEEE Trans. Commun."},{"issue":"3","key":"234_CR17","doi-asserted-by":"publisher","first-page":"615","DOI":"10.1134\/S0005117911030118","volume":"72","author":"O Keren","year":"2011","unstructured":"Keren, O., Levin, I., Stankovic, R.S.: A technique for linearization of logic functions defined by disjoint cubes. I.\u2014Theoretical aspects. Autom. Remote Control 72(3), 615\u2013625 (2011)","journal-title":"Autom. Remote Control"},{"key":"234_CR18","volume-title":"Fault-Tolerant Systems","author":"I Koren","year":"2010","unstructured":"Koren, I., Krishna, C.: Fault-Tolerant Systems. Morgan Kaufmann, Burlington (2010)"},{"issue":"1","key":"234_CR19","doi-asserted-by":"publisher","first-page":"88","DOI":"10.1109\/TIFS.2011.2169666","volume":"7","author":"Y Li","year":"2012","unstructured":"Li, Y., Ohta, K., Sakiyama, K.: New fault-based side-channel attack using fault sensitivity. IEEE Trans. Inf. Forensics Secur. 7(1), 88\u201397 (2012)","journal-title":"IEEE Trans. Inf. Forensics Secur."},{"key":"234_CR20","volume-title":"Power Analysis Attacks\u2014Revealing the Secrets of Smart Cards","author":"S Mangard","year":"2007","unstructured":"Mangard, S., Oswald, E., Popp, T.: Power Analysis Attacks\u2014Revealing the Secrets of Smart Cards. Springer, Berlin (2007)"},{"key":"234_CR21","doi-asserted-by":"crossref","unstructured":"Neumeier, Y., Keren, O.: A new efficiency criterion for security oriented error correcting codes. In: 2014 19th IEEE European Test Symposium (ETS), pp. 1\u20136. IEEE (2014)","DOI":"10.1109\/ETS.2014.6847800"},{"issue":"5","key":"234_CR22","doi-asserted-by":"publisher","first-page":"2813","DOI":"10.1109\/TIT.2014.2310464","volume":"60","author":"Y Neumeier","year":"2014","unstructured":"Neumeier, Y., Keren, O.: Robust generalized punctured cubic codes. IEEE Trans. Inf. Theory 60(5), 2813\u20132822 (2014)","journal-title":"IEEE Trans. Inf. Theory"},{"key":"234_CR23","doi-asserted-by":"crossref","unstructured":"Ngo, X.T., Bhasin, S., Danger, J., Guilley, S., Najm, Z.: Linear complementary dual code improvement to strengthen encoded circuit against hardware Trojan horses. In: IEEE International Symposium on Hardware Oriented Security and Trust, pp. 82\u201387 (2015)","DOI":"10.1109\/HST.2015.7140242"},{"issue":"3","key":"234_CR24","doi-asserted-by":"publisher","first-page":"398","DOI":"10.1137\/0604040","volume":"4","author":"K Phelps","year":"1983","unstructured":"Phelps, K.: A combinatorial construction of perfect codes. SIAM J. Algebraic Discrete Methods 4(3), 398\u2013403 (1983)","journal-title":"SIAM J. Algebraic Discrete Methods"},{"key":"234_CR25","doi-asserted-by":"crossref","unstructured":"Polian, I., Regazzoni, F.: Counteracting malicious faults in cryptographic circuits. In: IEEE European Test Symposium (2017)","DOI":"10.1109\/ETS.2017.7968230"},{"key":"234_CR26","doi-asserted-by":"crossref","unstructured":"Rabii, H., Keren, O.: A new construction of minimum distance robust codes. In: International Castle Meeting on Coding Theory and Applications, pp. 272\u2013282. Springer (2017)","DOI":"10.1007\/978-3-319-66278-7_23"},{"key":"234_CR27","doi-asserted-by":"publisher","DOI":"10.1007\/s12095-018-0340-3","author":"H Rabii","year":"2018","unstructured":"Rabii, H., Keren, O.: A new class of security oriented error correcting robust codes. Cryptogr. Commun. (2018). https:\/\/doi.org\/10.1007\/s12095-018-0340-3","journal-title":"Cryptogr. Commun."},{"issue":"3","key":"234_CR28","doi-asserted-by":"publisher","first-page":"511","DOI":"10.1109\/TDSC.2018.2816638","volume":"16","author":"H Rabii","year":"2019","unstructured":"Rabii, H., Neumeier, Y., Keren, O.: High rate robust codes with low implementation complexity. IEEE Trans. Dependable Secure Comput. 16(3), 511\u2013520 (2019)","journal-title":"IEEE Trans. Dependable Secure Comput."},{"key":"234_CR29","doi-asserted-by":"crossref","unstructured":"Selmke, B., Heyszl, J., Sigl, G.: Attack on a DFA protected AES by simultaneous laser fault injections. In: FDTC, pp. 36\u201346. IEEE Computer Society (2016)","DOI":"10.1109\/FDTC.2016.16"},{"key":"234_CR30","doi-asserted-by":"crossref","unstructured":"Tomashevich, V., Neumeier, Y., Kumar, R., Keren, O., Polian, I.: Protecting cryptographic hardware against malicious attacks by nonlinear robust codes. In: DFT, pp. 40\u201345 (2014)","DOI":"10.1109\/DFT.2014.6962084"},{"key":"234_CR31","doi-asserted-by":"crossref","unstructured":"Tunstall, M., Mukhopadhyay, D., Ali, S.: Differential fault analysis of the advanced encryption standard using a single fault. In: Works Information Security Theory & Practice, pp. 224\u2013233 (2011)","DOI":"10.1007\/978-3-642-21040-2_15"},{"key":"234_CR32","unstructured":"Vasil\u2019ev, J.: On nongroup close-packed codes. Probl. Kibern. 8 (1962), 337\u2013339. English translation in Probleme der Kybernetik 8, 92\u201395 (1965)"},{"key":"234_CR33","doi-asserted-by":"crossref","unstructured":"Wang, Z., Karpovsky, M.: Algebraic manipulation detection codes and their applications for design of secure cryptographic devices. In: IEEE Int\u2019l On-Line Test Symposium, pp. 234\u2013239 (2011)","DOI":"10.1109\/IOLTS.2011.5994535"},{"key":"234_CR34","doi-asserted-by":"crossref","unstructured":"van Woudenberg, J.G.J., Witteman, M.F., Menarini, F.: Practical optical fault injection on secure microcontrollers. In: FDTC, pp. 91\u201399 (2011)","DOI":"10.1109\/FDTC.2011.12"}],"container-title":["Journal of Cryptographic Engineering"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s13389-020-00234-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/article\/10.1007\/s13389-020-00234-7\/fulltext.html","content-type":"text\/html","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/s13389-020-00234-7.pdf","content-type":"application\/pdf","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2021,7,1]],"date-time":"2021-07-01T00:34:10Z","timestamp":1625099650000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/s13389-020-00234-7"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2020,7,1]]},"references-count":34,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2020,11]]}},"alternative-id":["234"],"URL":"https:\/\/doi.org\/10.1007\/s13389-020-00234-7","relation":{},"ISSN":["2190-8508","2190-8516"],"issn-type":[{"type":"print","value":"2190-8508"},{"type":"electronic","value":"2190-8516"}],"subject":[],"published":{"date-parts":[[2020,7,1]]},"assertion":[{"value":"2 February 2019","order":1,"name":"received","label":"Received","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"8 June 2020","order":2,"name":"accepted","label":"Accepted","group":{"name":"ArticleHistory","label":"Article History"}},{"value":"1 July 2020","order":3,"name":"first_online","label":"First Online","group":{"name":"ArticleHistory","label":"Article History"}}]}}