Skip to content

ChairImpSec/MultiplicativeMaskingAES

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

15 Commits
1-Sbox_d1
1-Sbox_d1
 
 
2-Kronecker_d2
2-Kronecker_d2
 
 
LICENSE.txt
LICENSE.txt
 
 
README.md
README.md
 
 

Repository files navigation

One More Motivation to Use Evaluation Tools
This Time for Hardware Multiplicative Masking of AES

This repository contains the source code and results related to the article titled One More Motivation to Use Evaluation Tools, This Time for Hardware Multiplicative Masking of AES published at DATE 2025.

Short Description

This work focuses on the security evaluation of the CHES 2018 paper titled Multiplicative Masking for AES in Hardware. Using the PROLEAD tool, we analyzed vulnerabilities in the Kronecker delta function under the glitch-extended and glitch + transition-extended probing models. Our findings revealed critical leakage caused by randomness optimization. To address this, we proposed and validated optimized solutions to ensure first-order security.

This repository provides the implementation the proposed designs, evaluation scripts, and PROLEAD's results supporting our conclusions.

Repository Structure

There are two main folders in this repository:

Sbox_d1

This folder contains the first-order implementation of the AES Sbox in three sub-folders:

  1. Original form: The original implementation of the Sbox with the optimization presented in Multiplicative Masking for AES in Hardware, which exhibits leakage under glitch-extended probing model.
  2. Glitch-robust: The Sbox structure with our proposed randomness optimization, ensuring no leakage under the glitch-extended probing model.
  3. Glitch- and transition-robust: The Sbox structure with our proposed randomness optimization, ensuring no leakage under both glitch-extended and transition-extended probing models.

Kronecker_d2

This folder contains the second-order implementation of the Kronecker delta function in two sub-folders:

  1. Original form: The original implementation of the Kronecker delta function with the optimization presented in Multiplicative Masking for AES in Hardware, which exhibits leakage under glitch-extended probing model.
  2. No optimization: The original implementation of the Kronecker delta function but without any optimization on fresh randomness re-use, which exhibits no leakage.

Contact and Support

For questions or comments, please contact Hemin Rahimi at rahimihemn[at]gmail.com and/or Amir Moradi at amir.moradi[at]tu-darmstadt.de.

Publication

Hemin Rahimi, Amir Moradi: One More Motivation to Use Evaluation Tools, This Time for Hardware Multiplicative Masking of AES. DATE 2025

About

Multiplicative Masking AES

Resources

Readme

License

BSD-3-Clause license
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages