Published April 2020 | Version v1
Journal article Metadata-only

Improved parallel mask refreshing algorithms: generic solutions with parametrized non-interference and automated optimizations

Barthe, Gilles
Belaïd, Sonia
Dupressoir, François
Fouque, Pierre-Alain
Grégoire, Benjamin
Standaert, François-Xavier
Strub, Pierre-Yves
Others:
Institute IMDEA Software [Madrid]
CryptoExperts
University of Surrey (UNIS)
Université de Rennes (UNIV-RENNES)
Sûreté du logiciel et Preuves Mathématiques Formalisées (STAMP) ; Inria Sophia Antipolis - Méditerranée (CRISAM) ; Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)
Catholic University of Leuven - Katholieke Universiteit Leuven (KU Leuven)
Département d'informatique de l'École polytechnique (X-DEP-INFO) ; École polytechnique (X)
François-Xavier Standaert is a senior research associate of the Belgian Fund for Scientific Research (F.R.S.-FNRS). This work has been funded in parts by the European Union through the ERC project SWORD (724725).
European Project: 724725,SWORD(2017)

Description

Refreshing algorithms are a critical ingredient for secure masking. They are instrumental in enabling sound composability properties for complex circuits, and their randomness requirements dominate the performance overheads in (very) high-order masking. In this paper, we improve a proposal of mask refreshing algorithms from EUROCRYPT 2017, that has excellent implementation properties in software and hardware, in two main directions. First, we provide a generic proof that this algorithm is secure at arbitrary orders – a problem that was left open so far. We introduce Parametrized Non-Interference as a new technical ingredient for this purpose, that may be of independent interest. Second, we use automated tools to further explore the design space of such algorithms and provide the best known parallel mask refreshing gadgets for concretely relevant security orders. Incidentally, we also prove the security of a recent proposal of mask refreshing with improved resistance against horizontal attacks from CHES 2017.

Abstract

International audience

Additional details

Identifiers Origin repository
Created:
December 4, 2022
Modified:
December 1, 2023