When Failure Analysis Meets Side-Channel Attacks

Similar documents
When Failure Analysis Meets Side-Channel Attacks

Picosecond Laser Stimulation status, applications & challenges

Packaging Fault Isolation Using Lock-in Thermography

Laser attacks on integrated circuits: from CMOS to FD-SOI

Single-Photon and Two-Photon correlation case study on digital devices

Christian Boit TUB Berlin University of Technology Sect. Semiconductor Devices. 1

Single-photon excitation of morphology dependent resonance

3D light microscopy techniques

IOLTS th IEEE International On-Line Testing Symposium

Laser tests of Wide Band Gap power devices. Using Two photon absorption process

Defect Localization Using Modulated-Thermal Laser Stimulation and Phase-Shift Imaging Method

Direct Measurement of Optical Cross-talk in Silicon Photomultipliers Using Light Emission Microscopy

SIL for improved sensitivity and spatial resolution

Exercise questions for Machine vision

Scanning Electron Microscopy. EMSE-515 F. Ernst

Direct Measurement of Optical Cross-talk in Silicon Photomultipliers Using Light Emission Microscopy

3D light microscopy techniques

You won t be able to measure the incident power precisely. The readout of the power would be lower than the real incident power.

DPA Leakage Models for CMOS Logic Circuits

Inspector Data Sheet. EM-FI Transient Probe. High speed pulsed EM fault injection probe for localized glitches. Riscure EM-FI Transient Probe 1/8

Electron-Bombarded CMOS

Supplementary Materials for

SUPPLEMENTARY INFORMATION

Evaluation of On-chip Decoupling Capacitor s Effect on AES Cryptographic Circuit

Thales R&T Contribution to ICAN Highly scalable collective techniques for coherent fiber beam locking and combining

Synchronization Method for SCA and Fault Attacks

Evaluation of laser-based active thermography for the inspection of optoelectronic devices

Megapixel FLIM with bh TCSPC Modules

Power Analysis Based Side Channel Attack

Laser Speckle Reducer LSR-3000 Series

INTRODUCTION TO MICROSCOPY. Urs Ziegler THE PROBLEM

Boulevard du Temple Daguerrotype (Paris,1838) a busy street? Nyquist sampling for movement

Ground-based optical auroral measurements

Lecture 20: Optical Tools for MEMS Imaging

Page 1. Ground-based optical auroral measurements. Background. CCD All-sky Camera with filterwheel. Image intensifier

ADVANCED METHODS FOR CONFOCAL MICROSCOPY II. Jean-Yves Chatton Sept. 2006

TCSPC at Wavelengths from 900 nm to 1700 nm

OPTICAL PRINCIPLES OF MICROSCOPY. Interuniversity Course 28 December 2003 Aryeh M. Weiss Bar Ilan University

Evaluation of the Masked Logic Style MDPL on a Prototype Chip

An 8-Channel Parallel Multispectral TCSPC FLIM System

Lecture 6 Fiber Optical Communication Lecture 6, Slide 1

contents TABLE OF The SECOM platform Applications - sections Applications - whole cells Features Integrated workflow Automated overlay

Akinori Mitani and Geoff Weiner BGGN 266 Spring 2013 Non-linear optics final report. Introduction and Background

IMAGING P-N JUNCTIONS BY SCANNING NEAR-FIELD OPTICAL, ATOMIC FORCE AND ELECTRICAL CONTRAST MICROSCOPY. G. Tallarida Laboratorio MDM-INFM

Laser Speckle Reducer LSR-3000 Series

Compatible with Windows 8/7/XP, and Linux; Universal programming interfaces for easy custom programming.

Optical Localization Techniques Workshop NOW

Model-Based Design for Sensor Systems

Impact of the light coupling on the sensing properties of photonic crystal cavity modes Kumar Saurav* a,b, Nicolas Le Thomas a,b,

Figure of merits of 28nm Si technologies for implementing laser attack resistant security dedicated. circuits

Instructions for the Experiment

Cavity QED with quantum dots in semiconductor microcavities

Confocal Microscopy and Related Techniques

Lock-in thermal IR imaging using a solid immersion lens

PoS(PhotoDet 2012)058

PGS Family Plane Grating Spectrometer from ZEISS

Examination Optoelectronic Communication Technology. April 11, Name: Student ID number: OCT1 1: OCT 2: OCT 3: OCT 4: Total: Grade:

Development of a new multi-wavelength confocal surface profilometer for in-situ automatic optical inspection (AOI)

Near-IR cameras... R&D and Industrial Applications

NSERC Summer Project 1 Helping Improve Digital Camera Sensors With Prof. Glenn Chapman (ENSC)

Multifluorescence The Crosstalk Problem and Its Solution

Sensitive measurement of partial coherence using a pinhole array

ILLUMINATION AND IMAGE PROCESSING FOR REAL-TIME CONTROL OF DIRECTED ENERGY DEPOSITION ADDITIVE MANUFACTURING

Introduction of New Products

Experimental protocol PIPE

Miniaturized Laser Speckle Reducer OEM Series

Examination, TEN1, in courses SK2500/SK2501, Physics of Biomedical Microscopy,

Bio 407. Applied microscopy. Introduction into light microscopy. José María Mateos. Center for Microscopy and Image Analysis

PERFORMANCE OF PHOTODIGM S DBR SEMICONDUCTOR LASERS FOR PICOSECOND AND NANOSECOND PULSING APPLICATIONS

Functional Failure Analysis by Induced Stimulus Jim Colvin Consultant Worthing Dr. Newark, CA (510)

LTE. Tester of laser range finders. Integrator Target slider. Transmitter channel. Receiver channel. Target slider Attenuator 2

CHAPTER 9 POSITION SENSITIVE PHOTOMULTIPLIER TUBES

Zeiss LSM 510 Confocor III Training Notes. Center for Cell Analysis & Modeling

AgilOptics mirrors increase coupling efficiency into a 4 µm diameter fiber by 750%.

Add CLUE to your SEM. High-efficiency CL signal-collection. Designed for your SEM and application. Maintains original SEM functionality

Non-Descanned FLIM Detection in Multiphoton Microscopes

Capabilities of Flip Chip Defects Inspection Method by Using Laser Techniques

NanoFocus Inc. Next Generation Scanning Probe Technology. Tel : Fax:

Improving the Collection Efficiency of Raman Scattering

Measurement of Surface Profile and Layer Cross-section with Wide Field of View and High Precision

Composite Thermal Damage Measurement with Handheld FTIR. April 9, 2013 Brian D. Flinn, Ashley Tracey, and Tucker Howie University of Washington

Electrical model of an NMOS body biased structure in triple-well technology under photoelectric laser stimulation

In the name of God, the most merciful Electromagnetic Radiation Measurement

Supplementary Materials

Nano-structured superconducting single-photon detector

Microscopic Structures

Optical Localization Techniques Workshop

Optical Coherence: Recreation of the Experiment of Thompson and Wolf

EARLY DEVELOPMENT IN SYNTHETIC APERTURE LIDAR SENSING FOR ON-DEMAND HIGH RESOLUTION IMAGING

Investigate the characteristics of PIN Photodiodes and understand the usage of the Lightwave Analyzer component.

LASU - Laser Applied Stimulation & Uncaging

Chapter 3 OPTICAL SOURCES AND DETECTORS

A 3D Profile Parallel Detecting System Based on Differential Confocal Microscopy. Y.H. Wang, X.F. Yu and Y.T. Fei

Intra-cavity active optics in lasers

OPTICAL BACKSCATTER REFLECTOMETER TM (Model OBR 5T-50)

Finding the key in the haystack

Mo10. Coherent Lidar for 3D-imaging through obscurants

Photonic-based spectral reflectance sensor for ground-based plant detection and weed discrimination

Photons and solid state detection

The DCS-120 Confocal Scanning FLIM System

Transcription:

When Failure Analysis Meets Side-Channel Attacks Jérôme DI-BATTISTA (THALES), Jean-Christophe COURREGE (THALES), Bruno ROUZEYRE (LIRMM), Lionel TORRES (LIRMM), Philippe PERDU (CNES)

Outline Introduction Context Failure analysis Test vehicle Light Emission as a Side-Channel signal Experimental setup Results Laser to improve Side-Channel attacks Experimental setup Results 1 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Outline Introduction Context Failure analysis Test vehicle Light Emission as a Side-Channel signal Experimental setup Results Laser to improve Side-Channel attacks Experimental setup Results 2 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Context Failure Analysis Test vehicle Context & Partnership CNES / Thales : Common laboratory : Failure analysis activity (CNES) Security evaluation ITSEF (Thales - CEACI ) Electrical and physical testing (Thales - CEL) 3 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Context Failure Analysis Test vehicle Failure analysis overview Electrical Test Laser Stimulation Normal signature Leakage / Short Thermal (OBIRCH, TIVA ) Photoelectric (OBIC, LIVA ) FAILURE ANALYSIS MCI : Magnetic Current Microscopy EMMI : EMission MIcroscopy Weak Current (SQUID) Strong Current (MGR) Static (SEM) Dynamic (PICA, TRE ) 4 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Context Failure Analysis Test vehicle Failure analysis overview Electrical Test Laser Stimulation Normal signature Leakage / Short Thermal (OBIRCH, TIVA ) Photoelectric (OBIC, LIVA ) FAILURE ANALYSIS MCI : Magnetic Current Microscopy EMMI : EMission MIcroscopy Weak Current (SQUID) Strong Current (MGR) Static (SEM) Dynamic (PICA, TRE ) 5 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Context Failure Analysis Test vehicle FPGA sample Different view and informations about the FPGA Actel Proasic3e : d) X-ray image Layout informations / location of DES implementation Backside aperture FPGA test board Light Emission : Experiment on the 1 st DES round : 64 Messages Xor random Subkey => SBOX => Encrypted data Laser stimulation : Experiment on a full DES : 16000 Messages & random key => DES => Encrypted data 6 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Outline Introduction Context Failure analysis Test vehicle Light Emission as a Side-Channel signal Experimental setup Results Laser to improve Side-Channel attacks Experimental setup Results 7 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Light Emission in Failure Analysis nmos transistor Photon emission depends on: V GS, I DS, V DS & transistor size Inverter case Optical detector system detector system CCD silicium captor wavelength: λ = 400 1200 nm or InGaAs captor wavelength: λ = 900 1500 nm Infrared : λ = 780nm 100 µm Visible : λ = 400 745 nm 8 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results TRE Dynamic technique TRE curves Many techniques were developed in failure analysis using EMMI: Static Emission Microscopy (SEM) : spatial coordinate (x,y) Dynamic Emission Microscopy (TRE, PICA) : time information 9 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Hamamatsu Tri-PHEMOS Camera types: InGaAs : 950nm to 1400nm / 640x480 / pixel size of 20m x 20m Objective lens: 1x / 2.5x / 20x / 100x Laser selection : 1.3 µm Laser (100 mw) / 1.3 µm High Power laser (400 mw ) / 1.1 µm Pulse Laser (200 mw) 10 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Process DLEA => Differential Light Emission Analysis : Cipher algorithm implementation SBOX Localisation Mesuring light emission during device operation : Variation of plain text = time and space variation : Differences between TRE curves Correlation between TRE curves and the Key used: TRE curves (DLEA) = Power consumption curves (DPA) 11 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Process The photons emitted during 1 cycle clock are insufficient to be operated Acquisition system: Camera ON [ Mx 00 Mx 00 Mx 00...Mx 00 ] Camera OFF Photons Counting during 20 seconds 2 transitions : 0 => 0 or 0 => 1 Hamming weight model 12 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Results 1st output bit 2nd output bit 0x07 (07) Bad key 0x00 (00) Bad key 3rd output bit + 4th output bit 0x1A (26) Good key 0x1E (30) Bad key 13 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

DLEA Results Results 0x1A (26) Good key Attack on the 3rd Bit or sum of output bits reveal the good key In this case only time and photon counting data was used, but spatial factor can bring a lot of complementary information. 14 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Outline Introduction Context Failure analysis Test vehicle Light Emission as a Side-Channel signal Experimental setup Results Laser to improve Side-Channel attacks Experimental setup Results 15 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results Laser in Failure Analysis Laser - Photoelectric effect : Many techniques were developed in failure analysis using the 2 laser effects: Thermal effect with a 1340 nm Laser (OBIRCH, TIVA, SEI ) Photoelectric effect with a 1064 nm Laser (OBIC, LIVA, SCOBIC ) 16 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results Previous Works S. Skorobogatov : «Optically Enhanced Position-Locked Power Analysis» Spot Laser between 2 transistor of a SRAM cell: Increasing power consumption of transistors targeted (local) inducing a global increase of the circuit Laser source : 639 nm Power : 1 to 3 mw Layout of an SRAM cell S. Skorobogatov: Optically Enhanced Position-Locked Power Analysis. Cryptographic Hardware and Embedded Systems Workshop (CHES 2006) 17 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results DCG Systems Meridian 1 Laser selection : 1064 nm (Photo-electric) / 1340 nm (thermal) Analytical capability for 45 nm.inverted platform for easy ATE direct docking Laser Scanning Microscope (LSM) for static and dynamic analysis 18 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results Process 1st step : power consumption acquisition without laser stimulation on 16000 random messages. 2nd step : power consumption acquisition with laser stimulation on same messages (same conditions). 3rd step : Comparison of the minimum number of curves necessary to perform a successful DPA attack with & without laser stimulation. 19 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results Challenges Laser source : 1064 nm Power : 10 to 12 mw Scanning laser of the area containing SBOX 4,7 & 8 : local increase of the consumption Scanning laser in continuous until obtaining 16000 traces 20 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results DPA Results Laser ON / OFF Comparison between both DPA results with and without laser stimulation and numbers of curves necessary to perform the attack Conclusive results on SBOX 4, 6, 7 and inconclusive on SBOX 5, 8 On SBOX 4,7 number of curves required are decreased by approximately 1/2 21 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Laser stimulation Results Amplitude comparison Amplitude comparison between differential curves on the right key, with and without laser stimulation (DPA in 16000 curves on bit 0 of SBOX 4) 22 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Benefit Drawbacks Light Emission Static acquisition : Cipher localization Spy memory activity Dynamic acquisition (TRE) : Probe internal signal Recover a subkey from DES Acquisition method : Each messages need to be integrated on time to obtain a significant TRE curves. Lack of resolution on latest techno Sample preparation Equipment cost : 2 M Laser stimulation Local increase of the power consumption Reduce the number of power consumption curves necessary to perform an attack Need a partial knowledge of the design / implementation Sample preparation Equipment cost : 500 K 23 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

Thank you for your attention Questions? Contact : jerome.dibattista@cnes.fr 24 J. Di-Battista, J.C. Courrège, B. Rouzeyre, L. Torres, P. Perdu When Failure Analysis Meets Side-Channel Attacks CHES 10

2024 © hobbydocbox.com Privacy Policy | Terms of Service | Feedback