【作者】 张牧杰；

【导师】 汤学明；

【作者基本信息】 华中科技大学 ， 信息安全， 2011， 硕士

【摘要】 近年来,研究者注意到可能利用加密算法的实现和加密设备操作环境的特性对密码系统进行攻击,并将此类攻击方式命名为旁路攻击。旁路攻击主要是对加密协议执行时的各种物理信息的泄漏进行分析,而非传统密码分析中的基于数学方法的分析。差分行为分析是基于差分能量攻击和差分错误攻击的一种新的攻击方式,该攻击具有两种攻击的部分优点,同时所要求的提供的整个加密流程的信息少于上述两种算法,研究者从理论上分析了该攻击方法在AES上的实现,并给出了部分运算结果。使用差分行为分析,对我国无线局域网WAPI中的加密算法SMS4进行攻击。SMS4算法是我国官方公布的第一个商用密码算法,采用了SPN型结构,理论上,差分行为分析可以有效的还原出SMS4的轮密钥。针对差分行为分析在AES和SMS4上的理论分析和仿真实验,提出防御差分能量攻击和差分错误攻击的策略,并可以以此为基础,从理论上提出针对差分行为分析的安全防御策略,并且仅仅少量增加的复杂度和计算开销。更多还原

【Abstract】 In recent years, researchers may use to achieve more and noted the characteristics and operating environment attacks. Side-Channel attacks, primarily through its protocol implementation of information disclosure, rather than traditional password-based protocol specification of the mathematical basis for analysis. A new side-channel attack presented here: differential behavior analysis. Differential behavior analysis is based on the differential power attack and differential fault attacks, a new attack, the attacker has some advantages of the two attacks, while providing the required information on the entire encryption process is less than the above two methods, the paper theoretical analysis of the attack on the AES implementation, and gives the part of the operation result.the use of differential behavior analysis on China’s WAPI wireless LAN encryption algorithm in SMS4 analyzed, and theoretically verified its feasibility. SMS4 algorithm is the official publication of the first commercial cryptographic algorithms, using the SP-type structure, this differential behavior analysis of the feasibility of the SMS4 on a theoretical analysis.For the differential behavior analysis on the implementation of AES and SMS4 analyzes the attack: Differential Power attack and differential fault attacks, and according to the two attacks against the defense strategy, in theory, analysis of proposed security for the differential behavior defense strategy, and analysis of the possible increase in complexity and computational overhead.更多还原