International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks

Authors:
Louis Goubin , Université Paris-Saclay, UVSQ, CNRS, Laboratoire de Mathématiques de Versailles, Versailles, France
Matthieu Rivain , CryptoExperts, Paris, France
Junwei Wang , CryptoExperts, Paris, France; University of Luxembourg, Esch-sur-Alzette, Luxembourg; University of Paris 8, Saint-Denis, France
Download:
DOI: 10.13154/tches.v2020.i3.454-482
URL: https://tches.iacr.org/index.php/TCHES/article/view/8597
Search ePrint
Search Google
Presentation: Slides
Abstract: The goal of white-box cryptography is to protect secret keys embedded in a cryptographic software deployed in an untrusted environment. In this article, we revisit state-of-the-art countermeasures employed in white-box cryptography, and we discuss possible ways to combine them. Then we analyze the different gray-box attack paths and study their performances in terms of required traces and computation time. Afterward, we propose a new paradigm for the gray-box attack against white-box cryptography, which exploits the data-dependency of the target implementation. We demonstrate that our approach provides substantial complexity improvements over the existing attacks. Finally, we showcase this new technique by breaking the three winning AES-128 white-box implementations from WhibOx 2019 white-box cryptography competition.
Video from TCHES 2020
BibTeX
@article{tches-2020-30398,
  title={Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks},
  journal={IACR Transactions on Cryptographic Hardware and Embedded Systems},
  publisher={Ruhr-Universität Bochum},
  volume={2020, Issue 3},
  pages={454-482},
  url={https://tches.iacr.org/index.php/TCHES/article/view/8597},
  doi={10.13154/tches.v2020.i3.454-482},
  author={Louis Goubin and Matthieu Rivain and Junwei Wang},
  year=2020
}