通信学报2025,Vol.46Issue(2):166-175,10.DOI:10.11959/j.issn.1000-436x.2025028
针对物联网设备的旁路攻击及防御方法的研究
Research on side-channel attacks and defense methods for IoT devices
摘要
Abstract
Internet of things(IoT)devices are typically implemented using microcontrollers with limited computational capabilities,which necessitate the use of lightweight symmetric encryption algorithms to ensure data security.Due to their inherent characteristics,these devices can only be deployed in open environments,making them highly vulnerable to side-channel attacks.To address this issue,experiments were conducted on a self-designed side-channel attack valida-tion platform,where a secure key management scheme and an improved S-box design were proposed as countermeasures against side-channel attacks.The validation platform consisted of a two-stage differential amplifier and an anti-interference finite impulse response(FIR)filter,which were capable of capturing subtle power consumption fluctuations.A two-round correlated energy attack targeting lightweight encryption algorithms was also designed.By evaluating the confidence of the correct key correlation coefficient,after 10 000 attacks on 3 000 power consumption traces of the PRESENT algorithm,a success rate of over 96%is achieved,with the mean correlation of the correct key exceeding 0.6.At a 95%confidence level,a narrow confidence interval is obtained.In contrast,when the improved algorithm is used in the same experiment,the attack success rate is only 9.12%.关键词
物联网安全/轻量级密码/旁路攻击/相关能量分析Key words
IoT security/lightweight cryptosystem/side-channel attack/correlation power analysis分类
信息技术与安全科学引用本文复制引用
何乐生,冯毅,岳远康,杨崇宇,胡崇辉..针对物联网设备的旁路攻击及防御方法的研究[J].通信学报,2025,46(2):166-175,10.基金项目
国家自然科学基金资助项目(No.U1631121) The National Natural Science Foundation of China(No.U1631121) (No.U1631121)
