{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,7,8]],"date-time":"2025-07-08T05:16:13Z","timestamp":1751951773156,"version":"3.41.0"},"reference-count":32,"publisher":"Association for Computing Machinery (ACM)","issue":"2","license":[{"start":{"date-parts":[[2024,3,13]],"date-time":"2024-03-13T00:00:00Z","timestamp":1710288000000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.acm.org\/publications\/policies\/copyright_policy#Background"}],"funder":[{"name":"Deutsche Forschungsgemeinschaft (DFG, German Research Foundation) as part of the Research and Training Group 2475 \u201cCybercrime and Forensic Computing\u201d","award":["393541319\/GRK2475\/1-2019"],"award-info":[{"award-number":["393541319\/GRK2475\/1-2019"]}]}],"content-domain":{"domain":["dl.acm.org"],"crossmark-restriction":true},"short-container-title":["ACM Trans. Reconfigurable Technol. Syst."],"published-print":{"date-parts":[[2024,6,30]]},"abstract":"<jats:p>Digitizing side-channel signals at high sampling rates produces huge amounts of data, while side-channel analysis techniques only need those specific trace segments containing Cryptographic Operations (COs). For detecting these segments, waveform-matching techniques have been established comparing the signal with a template of the CO\u2019s characteristic pattern. Real-time waveform matching requires highly parallel implementations as achieved by hardware design but also reconfigurability as provided by Field-Programmable Gate Arrays (FPGAs) to adapt the matching hardware to a specific CO pattern. However, currently proposed designs process the samples from analog-to-digital converters sequentially and can only process low sampling rates due to the limited clock speed of FPGAs.<\/jats:p>\n          <jats:p>In this article, we present a parallel waveform-matching architecture capable of performing high-speed waveform matching on a high-end FPGA-based digitizer. We also present a workflow for calibrating the waveform-matching system to the specific pattern of the CO in the presence of hardware restrictions provided by the FPGA hardware. Our implementation enables waveform matching at 10 GS\/s, offering a speedup of 50\u00d7 compared to the fastest state-of-the-art implementation known to us. We demonstrate how to apply the technique for attacking the widespread XTS-AES algorithm using waveform matching to recover the encrypted tweak even in the presence of so-called systemic noise.<\/jats:p>","DOI":"10.1145\/3635719","type":"journal-article","created":{"date-parts":[[2023,12,5]],"date-time":"2023-12-05T12:03:46Z","timestamp":1701777826000},"page":"1-28","update-policy":"https:\/\/doi.org\/10.1145\/crossmark-policy","source":"Crossref","is-referenced-by-count":1,"title":["Design, Calibration, and Evaluation of Real-time Waveform Matching on an FPGA-based Digitizer at 10 GS\/s"],"prefix":"10.1145","volume":"17","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-1288-964X","authenticated-orcid":false,"given":"Jens","family":"Trautmann","sequence":"first","affiliation":[{"name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg, Erlangen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4295-5062","authenticated-orcid":false,"given":"Paul","family":"Kr\u00fcger","sequence":"additional","affiliation":[{"name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg, Erlangen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-2750-7349","authenticated-orcid":false,"given":"Andreas","family":"Becher","sequence":"additional","affiliation":[{"name":"Technische Universit\u00e4t Ilmenau, Ilmenau, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0002-4324-2187","authenticated-orcid":false,"given":"Stefan","family":"Wildermann","sequence":"additional","affiliation":[{"name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg, Erlangen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-6285-5862","authenticated-orcid":false,"given":"J\u00fcrgen","family":"Teich","sequence":"additional","affiliation":[{"name":"Friedrich-Alexander-Universit\u00e4t Erlangen-N\u00fcrnberg, Erlangen, Germany"}],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"320","published-online":{"date-parts":[[2024,3,13]]},"reference":[{"key":"e_1_3_2_2_2","unstructured":"[n. d.]. ADQ7DC 10 GSPS Digitizer. Retrieved September 19 2022 from https:\/\/www.spdevices.com\/products\/hardware\/14-bit-digitizers\/adq7dc"},{"key":"e_1_3_2_3_2","unstructured":"[n. d.]. BeagleBoard.Org\u2014Black. Retrieved from https:\/\/beagleboard.org\/black"},{"key":"e_1_3_2_4_2","unstructured":"[n. d.]. CW1200 ChipWhisperer-Pro\u2014NewAE Hardware Product Documentation. Retrieved from https:\/\/rtfm.newae.com\/Capture\/ChipWhisperer-Pro\/"},{"key":"e_1_3_2_5_2","unstructured":"[n. d.]. developer.arm.com. Cortex-A8 Technical Reference Manual r3p2. Retrieved September 21 2022 from https:\/\/developer.arm.com\/documentation\/ddi0344\/k\/program-flow-prediction\/about-program-flow-prediction"},{"key":"e_1_3_2_6_2","unstructured":"[n. d.]. icWaves: Security Test Tool for FI & SCA. Retrieved from https:\/\/www.riscure.com\/product\/icwaves\/"},{"key":"e_1_3_2_7_2","unstructured":"[n. d.]. newae.com. ChipWhisperer-Lite. Retrieved from https:\/\/rtfm.newae.com\/Capture\/ChipWhisperer-Lite. Accessed: 2022-09-19."},{"key":"e_1_3_2_8_2","unstructured":"[n. d.]. newae.com. CW308. Retrieved September 19 2022 from https:\/\/rtfm.newae.com\/Targets\/CW308%20UFO"},{"key":"e_1_3_2_9_2","unstructured":"[n. d.]. newae.com. STM32F. Retrieved September 18 2022 from https:\/\/rtfm.newae.com\/Targets\/UFO%20Targets\/CW308T-STM32F"},{"key":"e_1_3_2_10_2","doi-asserted-by":"publisher","unstructured":"2019. IEEE Standard for Cryptographic Protection of Data on Block-oriented Storage Devices. IEEE Std 1619-2018 (Revision of IEEE Std 1619-2007) 1\u201341. 10.1109\/IEEESTD.2019.8637988","DOI":"10.1109\/IEEESTD.2019.8637988"},{"key":"e_1_3_2_11_2","unstructured":"2022. ADQ7DC\u2014Development Kit. Retrieved October 24 2023 from https:\/\/www.spdevices.com\/en-us\/Products_\/Documents\/ADQ%20Development%20Kit\/17-2010_adq7_devkit_user_guide.pdf"},{"key":"e_1_3_2_12_2","doi-asserted-by":"publisher","DOI":"10.1109\/WIFS.2011.6123131"},{"key":"e_1_3_2_13_2","doi-asserted-by":"publisher","DOI":"10.1109\/SBCCI.2016.7724071"},{"key":"e_1_3_2_14_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-48324-4_30"},{"key":"e_1_3_2_15_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-319-43283-0_11"},{"key":"e_1_3_2_16_2","doi-asserted-by":"publisher","DOI":"10.1023\/A:1010933404324"},{"key":"e_1_3_2_17_2","series-title":"Proceedings of the Conference on Cryptographic Hardware and Embedded Systems (CHES\u201904),","first-page":"16","author":"Brier Eric","year":"2004","unstructured":"Eric Brier, Christophe Clavier, and Francis Olivier. 2004. Correlation power analysis with a leakage model. In Proceedings of the Conference on Cryptographic Hardware and Embedded Systems (CHES\u201904),Lecture Notes in Computer Science, vol 3156, Marc Joye and Jean-Jacques Quisquater (Eds.). Springer, Berlin, 16\u201329."},{"key":"e_1_3_2_18_2","doi-asserted-by":"publisher","DOI":"10.1109\/MCOM.2016.7452269"},{"key":"e_1_3_2_19_2","doi-asserted-by":"publisher","unstructured":"Morris Dworkin. 2010. Recommendation for block cipher modes of operation: The XTS-AES mode for confidentiality on storage devices. National Institute of Standards and Technology Gaithersburg MD NIST Special Publication (SP) 800-38E. 10.6028\/NIST.SP.800-38E","DOI":"10.6028\/NIST.SP.800-38E"},{"key":"e_1_3_2_20_2","doi-asserted-by":"publisher","DOI":"10.1007\/11894063_15"},{"key":"e_1_3_2_21_2","doi-asserted-by":"publisher","DOI":"10.1007\/3-540-48405-1_25"},{"key":"e_1_3_2_22_2","first-page":"17","article-title":"Software-based power side-channel attacks on X86","author":"Lipp Moritz","year":"2021","unstructured":"Moritz Lipp, Andreas Kogler, David Oswald, Michael Schwarz, Catherine Easdon, Claudio Canella, and Daniel Gruss. 2021. Software-based power side-channel attacks on X86. In Proceedings of the IEEE Symposium on Security and Privacy (SP\u201921), 17.","journal-title":"Proceedings of the IEEE Symposium on Security and Privacy (SP\u201921)"},{"key":"e_1_3_2_23_2","doi-asserted-by":"publisher","unstructured":"Oleksiy Lisovets David Knichel Thorben Moos and Amir Moradi. 2021. Let.s take it offline: Boosting brute-force attacks on iPhone.s user authentication through SCA. IACR Transactions on Cryptographic Hardware and Embedded Systems 3 (2021) 496\u2013519. 10.46586\/tches.v2021.i3.496-519","DOI":"10.46586\/tches.v2021.i3.496-519"},{"key":"e_1_3_2_24_2","doi-asserted-by":"publisher","DOI":"10.1007\/978-3-662-48324-4_31"},{"key":"e_1_3_2_25_2","doi-asserted-by":"publisher","DOI":"10.1109\/TCAD.2018.2878171"},{"key":"e_1_3_2_26_2","unstructured":"Colin O\u2019Flynn. 2017. A framework for embedded hardware security analysis. PhD thesis Dalhousie University. https:\/\/dalspace.library.dal.ca\/handle\/10222\/73002"},{"key":"e_1_3_2_27_2","doi-asserted-by":"publisher","DOI":"10.1109\/SP.2017.14"},{"key":"e_1_3_2_28_2","doi-asserted-by":"publisher","DOI":"10.1109\/NTMS49979.2021.9432644"},{"key":"e_1_3_2_29_2","doi-asserted-by":"publisher","DOI":"10.46586\/tches.v2022.i1.345-366"},{"key":"e_1_3_2_30_2","doi-asserted-by":"publisher","DOI":"10.1109\/FPL57034.2022.00025"},{"key":"e_1_3_2_31_2","doi-asserted-by":"publisher","DOI":"10.1145\/3560834.3563828"},{"key":"e_1_3_2_32_2","doi-asserted-by":"publisher","DOI":"10.1109\/FDTC.2011.12"},{"key":"e_1_3_2_33_2","first-page":"95","volume-title":"Unique Chips and Systems","author":"Williamson David","year":"2018","unstructured":"David Williamson. 2018. Arm cortex-a8: A high-performance processor for low-power applications. In Unique Chips and Systems. CRC Press, 95\u2013122."}],"container-title":["ACM Transactions on Reconfigurable Technology and Systems"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3635719","content-type":"unspecified","content-version":"vor","intended-application":"text-mining"},{"URL":"https:\/\/dl.acm.org\/doi\/pdf\/10.1145\/3635719","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,6,18]],"date-time":"2025-06-18T23:57:00Z","timestamp":1750291020000},"score":1,"resource":{"primary":{"URL":"https:\/\/dl.acm.org\/doi\/10.1145\/3635719"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2024,3,13]]},"references-count":32,"journal-issue":{"issue":"2","published-print":{"date-parts":[[2024,6,30]]}},"alternative-id":["10.1145\/3635719"],"URL":"https:\/\/doi.org\/10.1145\/3635719","relation":{},"ISSN":["1936-7406","1936-7414"],"issn-type":[{"type":"print","value":"1936-7406"},{"type":"electronic","value":"1936-7414"}],"subject":[],"published":{"date-parts":[[2024,3,13]]},"assertion":[{"value":"2023-01-06","order":0,"name":"received","label":"Received","group":{"name":"publication_history","label":"Publication History"}},{"value":"2023-11-21","order":1,"name":"accepted","label":"Accepted","group":{"name":"publication_history","label":"Publication History"}},{"value":"2024-03-13","order":2,"name":"published","label":"Published","group":{"name":"publication_history","label":"Publication History"}}]}}