International Association for Cryptologic Research

International Association
for Cryptologic Research

CryptoDB

Improved Reductions from Noisy to Bounded and Probing Leakages via Hockey-Stick Divergences

Authors:
Maciej Obremski , CQT and National University of Singapore
João Ribeiro , Instituto Superior Técnico, Universidade de Lisboa
Lawrence Roy , Aarhus University
François-Xavier Standaert , UCLouvain
Daniele Venturi , Sapienza University of Rome
Download:
DOI: 10.1007/978-3-031-68391-6_14 (login may be required)
Search ePrint
Search Google
Presentation: Slides
Conference: CRYPTO 2024
Abstract: There exists a mismatch between the theory and practice of cryptography in the presence of leakage. On the theoretical front, the bounded leakage model, where the adversary learns bounded-length but noiseless information about secret components, and the random probing model, where the adversary learns some internal values of a leaking implementation with some probability, are convenient abstractions to analyze the security of numerous designs. On the practical front, side-channel attacks produce long transcripts which are inherently noisy but provide information about all internal computations, and this noisiness is usually evaluated with closely related metrics like the mutual information or statistical distance. Ideally, we would like to claim that resilience to bounded leakage or random probing implies resilience to noisy leakage evaluated according to these metrics. However, prior work (Duc, Dziembowski and Faust, Eurocrypt 2014; Brian et al., Eurocrypt 2021) has shown that proving such reductions with useful parameters is challenging. In this work, we study noisy leakage models stemming from hockey-stick divergences, which generalize statistical distance and are also the basis of differential privacy. First, we show that resilience to bounded leakage and random probing implies resilience to our new noisy leakage model with improved parameters compared to models based on the statistical distance or mutual information. Second, we establish composition theorems for our model, showing that these connections extend to a setting where multiple leakages are obtained from a leaking implementation. We complement our theoretical results with a discussion of practical relevance, highlighting that (i) the reduction to bounded leakage applies to realistic leakage functions with noise levels that are decreased by several orders of magnitude compared to Brian et al., and (ii) the reduction to random probing usefully generalizes the seminal work of Duc, Dziembowski, and Faust, although it remains limited when the field size in which masking operates grows (i.e., hockey-stick divergences can better hide the field size dependency of the noise requirements, but do not annihilate it).
BibTeX
@inproceedings{crypto-2024-34350,
  title={Improved Reductions from Noisy to Bounded and Probing Leakages via Hockey-Stick Divergences},
  publisher={Springer-Verlag},
  doi={10.1007/978-3-031-68391-6_14},
  author={Maciej Obremski and João Ribeiro and Lawrence Roy and François-Xavier Standaert and Daniele Venturi},
  year=2024
}