{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2026,4,30]],"date-time":"2026-04-30T10:06:15Z","timestamp":1777543575758,"version":"3.51.4"},"reference-count":38,"publisher":"Association for Computing Machinery (ACM)","issue":"4","license":[{"start":{"date-parts":[[2018,11,16]],"date-time":"2018-11-16T00:00:00Z","timestamp":1542326400000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"French National Research Agency (ANR) as part of the projects COGITO and PROSECCO"},{"name":"INS-2013","award":["ANR-13-INSE-0006-01, AAP-2015, and ANR-15-CE39"],"award-info":[{"award-number":["ANR-13-INSE-0006-01, AAP-2015, and ANR-15-CE39"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Archit. Code Optim."],"published-print":{"date-parts":[[2018,12,31]]},"abstract":"We present an approach and a tool to answer the need for effective, generic, and easily applicable protections against side-channel attacks. The protection mechanism is based on code polymorphism, so that the observable behaviour of the protected component is variable and unpredictable to the attacker. Our approach combines lightweight specialized runtime code generation with the optimization capabilities of static compilation. It is extensively configurable. Experimental results show that programs secured by our approach present strong security levels and meet the performance requirements of constrained systems.<\/jats:p>","DOI":"10.1145\/3281662","type":"journal-article","created":{"date-parts":[[2018,11,16]],"date-time":"2018-11-16T13:08:54Z","timestamp":1542373734000},"page":"1-27","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":19,"title":["Automated Software Protection for the Masses Against Side-Channel Attacks"],"prefix":"10.1145","volume":"15","author":[{"ORCID":"https:\/\/orcid.org\/0000-0001-7634-5767","authenticated-orcid":false,"given":"Nicolas","family":"Belleville","sequence":"first","affiliation":[{"name":"Univ Grenoble Alpes, CEA, List, F-38000 Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Damien","family":"Courouss\u00e9","sequence":"additional","affiliation":[{"name":"Univ Grenoble Alpes, CEA, List, F-38000 Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Karine","family":"Heydemann","sequence":"additional","affiliation":[{"name":"Sorbonne Universit\u00e9, CNRS, LIP6, F-75005, Paris, France"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Henri-Pierre","family":"Charles","sequence":"additional","affiliation":[{"name":"Univ Grenoble Alpes, CEA, List, F-38000 Grenoble, France"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2018,11,16]]},"reference":[{"key":"e_1_2_1_1_1","doi-asserted-by":"publisher","DOI":"10.1145\/1609956.1609960"},{"key":"e_1_2_1_2_1","doi-asserted-by":"publisher","DOI":"10.1145\/2463209.2488833"},{"key":"e_1_2_1_3_1","doi-asserted-by":"publisher","DOI":"10.1145\/2228360.2228376"},{"key":"e_1_2_1_4_1","doi-asserted-by":"publisher","DOI":"10.1145\/2744769.2744859"},{"key":"e_1_2_1_5_1","doi-asserted-by":"publisher","DOI":"10.1109\/TCAD.2015.2430320"},{"key":"e_1_2_1_6_1","volume-title":"Proceedings of the IFIP International Workshop on Information Security Theory and Practices. Springer, 1\u201321","author":"Amarilli A.","unstructured":"A. Amarilli , S. M\u00fcller , D. Naccache , D. Page , P. Rauzy , and M. Tunstall . 2011. Can code polymorphism limit information leakage? In Proceedings of the IFIP International Workshop on Information Security Theory and Practices. Springer, 1\u201321 . A. Amarilli, S. M\u00fcller, D. Naccache, D. Page, P. Rauzy, and M. Tunstall. 2011. Can code polymorphism limit information leakage? In Proceedings of the IFIP International Workshop on Information Security Theory and Practices. Springer, 1\u201321."},{"key":"e_1_2_1_7_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2013.9"},{"key":"e_1_2_1_8_1","volume-title":"CEUR Workshop Proceedings 1816","author":"Barenghi A.","year":"2017","unstructured":"A. Barenghi and G. Pelosi . 2017. An enhanced dataflow analysis to automatically tailor side channel attack countermeasures to software block ciphers . CEUR Workshop Proceedings 1816 ( 2017 ), 8--18. A. Barenghi and G. Pelosi. 2017. An enhanced dataflow analysis to automatically tailor side channel attack countermeasures to software block ciphers. CEUR Workshop Proceedings 1816 (2017), 8--18."},{"key":"e_1_2_1_9_1","doi-asserted-by":"publisher","DOI":"10.1109\/TC.2013.219"},{"key":"e_1_2_1_10_1","first-page":"107","article-title":"deGoal a tool to embed dynamic code generators into applications","volume":"8409","author":"Charles H.-P.","year":"2014","unstructured":"H.-P. Charles , D. Courouss\u00e9 , V. Lom\u00fcller , F. A. Endo , and R. Gauguey . 2014 . deGoal a tool to embed dynamic code generators into applications . LNCS 8409 (2014), 107 -- 112 . H.-P. Charles, D. Courouss\u00e9, V. Lom\u00fcller, F. A. Endo, and R. Gauguey. 2014. deGoal a tool to embed dynamic code generators into applications. LNCS 8409 (2014), 107--112.","journal-title":"LNCS"},{"key":"e_1_2_1_11_1","doi-asserted-by":"publisher","DOI":"10.1145\/2764967.2782785"},{"key":"e_1_2_1_12_1","first-page":"142","article-title":"JITDefender: A defense against JIT spraying attacks","volume":"354","author":"Chen P.","year":"2011","unstructured":"P. Chen , Y. Fang , B. Mao , and L. Xie . 2011 . JITDefender: A defense against JIT spraying attacks . IFIP AICT 354 (2011), 142 -- 153 . P. Chen, Y. Fang, B. Mao, and L. Xie. 2011. JITDefender: A defense against JIT spraying attacks. IFIP AICT 354 (2011), 142--153.","journal-title":"IFIP AICT"},{"key":"e_1_2_1_13_1","doi-asserted-by":"publisher","DOI":"10.1049\/iet-ifs.2012.0142"},{"key":"e_1_2_1_14_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-04138-9_12"},{"key":"e_1_2_1_15_1","volume-title":"Analysis and improvement of the random delay countermeasure of CHES","author":"Coron Jean-S\u00e9bastien","year":"2009","unstructured":"Jean-S\u00e9bastien Coron and Ilya Kizhvatov . 2010. Analysis and improvement of the random delay countermeasure of CHES 2009 . CHES ( 2010), 95--109. Jean-S\u00e9bastien Coron and Ilya Kizhvatov. 2010. Analysis and improvement of the random delay countermeasure of CHES 2009. CHES (2010), 95--109."},{"key":"e_1_2_1_16_1","first-page":"136","article-title":"Runtime code polymorphism as a protection against side channel attacks","volume":"9895","author":"Courouss\u00e9 Damien","year":"2016","unstructured":"Damien Courouss\u00e9 , Thierno Barry , Bruno Robisson , Philippe Jaillon , Olivier Potin , and Jean-Louis Lanet . 2016 . Runtime code polymorphism as a protection against side channel attacks . WISTP 9895 (2016), 136 -- 152 . Damien Courouss\u00e9, Thierno Barry, Bruno Robisson, Philippe Jaillon, Olivier Potin, and Jean-Louis Lanet. 2016. Runtime code polymorphism as a protection against side channel attacks. WISTP 9895 (2016), 136--152.","journal-title":"WISTP"},{"key":"e_1_2_1_17_1","volume-title":"Thwarting cache side-channel attacks through dynamic software diversity. NDSS","author":"Crane Stephen","year":"2015","unstructured":"Stephen Crane , Andrei Homescu , Stefan Brunthaler , Per Larsen , and Michael Franz . 2015. Thwarting cache side-channel attacks through dynamic software diversity. NDSS ( 2015 ), 8--11. Stephen Crane, Andrei Homescu, Stefan Brunthaler, Per Larsen, and Michael Franz. 2015. Thwarting cache side-channel attacks through dynamic software diversity. NDSS (2015), 8--11."},{"key":"e_1_2_1_18_1","first-page":"3","article-title":"FISSC: A fault injection and simulation secure collection","volume":"9922","author":"Dureuil L.","year":"2016","unstructured":"L. Dureuil , G. Petiot , M.-L. Potet , T.-H. Le , A. Crohen , and P. de Choudens . 2016 . FISSC: A fault injection and simulation secure collection . LNCS 9922 (2016), 3 -- 11 . L. Dureuil, G. Petiot, M.-L. Potet, T.-H. Le, A. Crohen, and P. de Choudens. 2016. FISSC: A fault injection and simulation secure collection. LNCS 9922 (2016), 3--11.","journal-title":"LNCS"},{"key":"e_1_2_1_19_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-37288-9_9"},{"key":"e_1_2_1_20_1","unstructured":"eSTREAM: The ECRYPT Stream Cipher Project. Retrieved from http:\/\/www.ecrypt.eu.org\/stream\/. eSTREAM: The ECRYPT Stream Cipher Project. Retrieved from http:\/\/www.ecrypt.eu.org\/stream\/."},{"key":"e_1_2_1_21_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-08867-9_8"},{"key":"e_1_2_1_22_1","volume-title":"Proceedings of the NIST Non-invasive Attack Testing Workshop. 7, 115\u2013136","author":"Goodwill G.","year":"2011","unstructured":"G. Goodwill , B. Jun , J. Josh , R. Pankaj , 2011 . A testing methodology for side-channel resistance validation . In Proceedings of the NIST Non-invasive Attack Testing Workshop. 7, 115\u2013136 . G. Goodwill, B. Jun, J. Josh, R. Pankaj, et al. 2011. A testing methodology for side-channel resistance validation. In Proceedings of the NIST Non-invasive Attack Testing Workshop. 7, 115\u2013136."},{"key":"e_1_2_1_23_1","doi-asserted-by":"publisher","DOI":"10.1145\/2508859.2516675"},{"key":"e_1_2_1_24_1","doi-asserted-by":"publisher","DOI":"10.1109\/ARES.2014.14"},{"key":"e_1_2_1_25_1","volume-title":"Proceedings of the Annual International Cryptology Conference. Springer, 388\u2013397","author":"Kocher P.","unstructured":"P. Kocher , J. Jaffe , and B. Jun . 1999. Differential power analysis . In Proceedings of the Annual International Cryptology Conference. Springer, 388\u2013397 . P. Kocher, J. Jaffe, and B. Jun. 1999. Differential power analysis. In Proceedings of the Annual International Cryptology Conference. Springer, 388\u2013397."},{"key":"e_1_2_1_26_1","volume-title":"Yunsi Fei, A. Adam Ding, and Thomas Wahl.","author":"Luo Pei","year":"2017","unstructured":"Pei Luo , Konstantinos Athanasiou , Liwei Zhang , Zhen Hang Jiang , Yunsi Fei, A. Adam Ding, and Thomas Wahl. 2017 . Compiler-assisted threshold implementation against power analysis attacks. ICCD (Nov . 2017), 541--544. Pei Luo, Konstantinos Athanasiou, Liwei Zhang, Zhen Hang Jiang, Yunsi Fei, A. Adam Ding, and Thomas Wahl. 2017. Compiler-assisted threshold implementation against power analysis attacks. ICCD (Nov. 2017), 541--544."},{"key":"e_1_2_1_27_1","unstructured":"mbedTLS library. Retrieved from https:\/\/tls.mbed.org\/. mbedTLS library. Retrieved from https:\/\/tls.mbed.org\/."},{"key":"e_1_2_1_28_1","unstructured":"S. Mangard E. Oswald and T. Popp. 2007. Power Analysis Attacks: Revealing the Secrets of Smart Cards. 31. S. Mangard E. Oswald and T. Popp. 2007. Power Analysis Attacks: Revealing the Secrets of Smart Cards. 31."},{"key":"e_1_2_1_29_1","first-page":"153","article-title":"On the easiness of turning higher-order leakages into first-order","volume":"10348","author":"Moos T.","year":"2017","unstructured":"T. Moos and A. Moradi . 2017 . On the easiness of turning higher-order leakages into first-order . COSADE 10348 (2017), 153 -- 170 . Retrieved from www.scopus.com. T. Moos and A. Moradi. 2017. On the easiness of turning higher-order leakages into first-order. COSADE 10348 (2017), 153--170. Retrieved from www.scopus.com.","journal-title":"COSADE"},{"key":"e_1_2_1_30_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-642-33027-8_4"},{"key":"e_1_2_1_31_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-43283-0_4"},{"key":"e_1_2_1_32_1","volume-title":"Proceedings of the IEEE Symposium on Security and Privacy (SP\u201917)","author":"Ronen Eyal","year":"2016","unstructured":"Eyal Ronen , Colin O\u2019Flynn , Adi Shamir , and Achi-Or Weingarten . 2016 . IoT Goes Nuclear: Creating a ZigBee Chain Reaction . In Proceedings of the IEEE Symposium on Security and Privacy (SP\u201917) . IEEE, 195\u2013212. Eyal Ronen, Colin O\u2019Flynn, Adi Shamir, and Achi-Or Weingarten. 2016. IoT Goes Nuclear: Creating a ZigBee Chain Reaction. In Proceedings of the IEEE Symposium on Security and Privacy (SP\u201917). IEEE, 195\u2013212."},{"key":"e_1_2_1_33_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-52153-4_8"},{"key":"e_1_2_1_34_1","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-48324-4_25"},{"key":"e_1_2_1_35_1","doi-asserted-by":"publisher","DOI":"10.1109\/DSD.2015.117"},{"key":"e_1_2_1_36_1","volume-title":"Proceedings of the Design, Automation 8 Test in Europe Conference 8 Exhibition (DATE\u201918)","author":"Singh A.","unstructured":"A. Singh , M. Kar , S. Mathew , A. Rajan , V. De , and S. Mukhopadhyay . 2018. Exploiting on-chip power management for side-channel security . In Proceedings of the Design, Automation 8 Test in Europe Conference 8 Exhibition (DATE\u201918) . IEEE, 401\u2013406. A. Singh, M. Kar, S. Mathew, A. Rajan, V. De, and S. Mukhopadhyay. 2018. Exploiting on-chip power management for side-channel security. In Proceedings of the Design, Automation 8 Test in Europe Conference 8 Exhibition (DATE\u201918). IEEE, 401\u2013406."},{"key":"e_1_2_1_37_1","doi-asserted-by":"publisher","DOI":"10.1109\/FDTC.2016.18"},{"key":"e_1_2_1_38_1","first-page":"2","article-title":"Exploiting voltage regulators to enhance various power attack countermeasures","volume":"6","author":"Yu Weize","year":"2018","unstructured":"Weize Yu and Selcuk Kose . 2018 . Exploiting voltage regulators to enhance various power attack countermeasures . IEEE TETC 6 , 2 (Apr. 2018), 244--257. Weize Yu and Selcuk Kose. 2018. Exploiting voltage regulators to enhance various power attack countermeasures. IEEE TETC 6, 2 (Apr. 2018), 244--257.","journal-title":"IEEE TETC"}],"container-title":["ACM Transactions on Architecture and Code Optimization"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3281662","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3281662","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T01:02:10Z","timestamp":1750208530000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3281662"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018,11,16]]},"references-count":38,"journal-issue":{"issue":"4","published-print":{"date-parts":[[2018,12,31]]}},"alternative-id":["10.1145\/3281662"],"URL":"https:\/\/doi.org\/10.1145\/3281662","relation":{},"ISSN":["1544-3566","1544-3973"],"issn-type":[{"value":"1544-3566","type":"print"},{"value":"1544-3973","type":"electronic"}],"subject":[],"published":{"date-parts":[[2018,11,16]]},"assertion":[{"value":"2017-12-01","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2018-09-01","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2018-11-16","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}