Browse > Article
http://dx.doi.org/10.3745/KIPSTC.2003.10C.5.557

A Study on Smartcard Security Evaluation Criteria for Side-Channel Attacks  

Lee, Hoon-Jae (동서대학교 인터넷공학부)
Lee, Sang-Gon (동서대학교 인터넷공학부)
Choi, Hee-Bong (한국전자통신연구원 부설 국가보안기술연구소)
Kim, Chun-Soo (한국전자통신연구원 부설 국가보안기술연구소)
Publication Information
The KIPS Transactions:PartC / v.10C, no.5, 2003 , pp. 557-564 More about this Journal
Abstract
This paper analyzes the side channel attacks for smartcard devices, and proposes the smartcard suity evaluation criteria for side-channel attacks. To setup the smartcard security evaluation criteria for side-channel attacks, we analyze similar security evaluation criteria for cryptographic algorithms, cryptographic modules, and smartcard protection profiles based on the common criterion. Futhermore, we propose the smartcard security evaluation criteria for side-channel attacks. It can be useful to evaluate a cryptosystem related with information security technology and in addition, it can be applied to building smartcard protection profile.
Keywords
Smartcard; DPA; CC; Side-channel Attack;
Citations & Related Records
연도 인용수 순위
  • Reference
1 http://www.kisa.or.kr/sysevaluation
2 이훈재, 이상곤 외, '스마트카드 비밀채널 평가/분석기술 연구,' 한국전자통신연구원 부설 국가보안기술연구소, 최종보고서, 2002
3 CCIMB-2002-04-001-ASE (Draft v0.6), 'Security Target Evaluation Common Criteria and Methodology for Public Review,' at http://www.commoncriteria.org/review_docs/
4 http://www.commoncriteria.org/
5 P. Kocher, J. Jaffe and B. Jun, 'Differential Power Analysis,' in Proceedings of Advances in Cryptology-CRYPTO '99, pp.388-397, Springer-Verlag, 1999
6 NESSIE, http://www.cosic.esat.kuleuven.ac.be/nessie/
7 J. Daeman and V. Rijman, 'The Design of Rijndael,' Springer-Verlag, 2002
8 S. Chari, C. Jutla, J. R. Rao, P. Rohtgi, 'A Cautionary Note Regarding Evaluation of AES Candidates on Smart-Cards,' 2nd AES conference available on http://csrc.nist.gov/encryption/aes/roundl/conf2/aes2conf.htm
9 CRYPTERC, http://www.ipa.go.jp/security
10 National Institute of Standards and Technology, 'Security Requirements for Cryptographic Modules,' Federal Information Processing Standards Publication 140-2, May, 2001
11 FIPS 140-2 DTR, http://csrc.nist.gov/cryptval/140-1/fips1402DTR.pdf
12 Common Criteria for Information Technology Security Evaluation ; Smart Card Security User Group Smart Card Protection Profile (SCSUG-SCPP),(Version 3.0), Sep., 2001
13 EUROSMART-PP/0010, Protection Profile Smart Card IC with Multi-Application Secure Platform (ver. 2.0), Nov., 2000
14 EUROSMART-PP/9911, Protection Profile Smart Card Integrated Circuit with Embedded Software (ver. 2.0)
15 EUROSMART BSI-PP-0002, Smartcard IC Platform Protection Profile (Version 1.0), July, 2001
16 CCIMB-2002-11-003-AttackPotential (Draft v0.5), 'Characterisation of Attack Potential,' at http://www.commoncriteria.org/review_docs/
17 CCIMB-2002-07-001-AVA (Draft v0.68), 'Vulnerability Analysis and Penetration Testing' at http://www.commoncriteria.org/review_docs/