ITUbee密码代数旁路攻击

ITUbee是在2013年第二届轻量级加密安全与隐私国际研讨会上提出的轻量级密码算法,对ITUbee密码进行安全分析有着积极意义。研究了ITUbee的代数旁路攻击方法,首先构建ITUbee密码S盒的等价代数方程组；由于构造的方程组不易解,通过采集ITUbee算法的加密功耗泄露,对加密中间状态字节的汉明重进行推断,并将其转化为与密码算法联立的布尔方程组,再利用cryptominisat解析器来求解密钥。实验结果表明,按此思路构造的ITUbee攻击方法所需样本少；在已知明文和未知明密文的场景下,1次ITUbee加密、部分轮汉明重泄露的情况下可成功恢复全部初始密钥。

Algebraic Side-channel Attacks Method of ITUbee

ITUbee was proposed in the second lightweight cryptography for security and privacy 2013.It has great significance to do security analysis about ITUbee.The algebraic side-channel attacks methods of ITUbee were researched.First,we constructed the equivalent-algebraic equations of ITUbee S-box.But,it is difficult to work out the structured equations set.The leakage of cryptographic power consumption of ITUbee algorithm was collected.The Hamming weight of the encryption middle status byte was inferred.Then,the simultaneous Boolean equations set with the cipher algorithm was conversed.At last,we used the cryptominisat to solve the key.Experiment results show that it only needs less samples to gain the successful attack.The initial keys can be derived via analyzing the part HW (Hamming weight) leakages of the first round in the scene of the known-plaintext and the unknown ciphertext.