论文部分内容阅读
传统上认为,密码系统的安全性主要依赖于系统使用的密码算法的安全性,对系统的攻击是基于敌手只能通过系统的输入输出信道获取信息的假设。实际上,密码系统的旁路信息(如时间信息等)也可以被利用来实现攻击。时间攻击就是这一类攻击方法,它通过分析密码系统的运算环节在执行加密过程中的时间信息来恢复密钥。针对IDEA密码算法的实现特点提出一种时间攻击方法,从理论上分析该方法的有效性,并给出抵抗这种攻击的对策。
Traditionally, the security of the cryptosystem mainly depends on the security of the cryptographic algorithm used by the system. The attack on the system is based on the assumption that the adversary can only obtain information through the system’s input and output channels. In fact, the password system bypass information (such as time information, etc.) can also be used to achieve the attack. Time attack is one kind of attack method. It recovers the key by analyzing the time information of the operation of the cryptosystem in executing the encryption process. Aiming at the realization characteristic of IDEA cryptography algorithm, a time attack method is proposed. The validity of this method is analyzed theoretically and the countermeasures against this attack are given.