Efficient masking methods appropriate for the block ciphers ARIA and AES

Heeseok Kim, Tae Hyun Kim, Dong Guk Han, Seokhie Hong

Research output: Contribution to journalArticle

8 Citations (Scopus)

Abstract

In this paper, we propose efficient masking methods for ARIA and AES. In general, a masked S-box (MS) block can be constructed in different ways depending on the implementation platform, such as hardware and software. However, the other components of ARIA and AES have less impact on the implementation cost. We first propose an efficient masking structure by minimizing the number of mask corrections under the assumption that we have an MS block. Second, to make a secure and efficient MS block for ARIA and AES, we propose novel methods to solve the table size problem for the MS block in a software implementation and to reduce the cost of a masked inversion which is the main part of the MS block in the hardware implementation.

Original languageEnglish
Pages (from-to)370-379
Number of pages10
JournalETRI Journal
Volume32
Issue number3
DOIs
Publication statusPublished - 2010 Jun 1

Fingerprint

Hardware
Costs
Masks

Keywords

  • AES
  • ARIA
  • Composite field
  • Masking method
  • Side-channel attacks

ASJC Scopus subject areas

  • Electrical and Electronic Engineering
  • Computer Science(all)
  • Electronic, Optical and Magnetic Materials

Cite this

Efficient masking methods appropriate for the block ciphers ARIA and AES. / Kim, Heeseok; Kim, Tae Hyun; Han, Dong Guk; Hong, Seokhie.

In: ETRI Journal, Vol. 32, No. 3, 01.06.2010, p. 370-379.

Research output: Contribution to journalArticle

Kim, Heeseok ; Kim, Tae Hyun ; Han, Dong Guk ; Hong, Seokhie. / Efficient masking methods appropriate for the block ciphers ARIA and AES. In: ETRI Journal. 2010 ; Vol. 32, No. 3. pp. 370-379.
@article{1fc71d8aab3c4fc289b40783a476f0d8,
title = "Efficient masking methods appropriate for the block ciphers ARIA and AES",
abstract = "In this paper, we propose efficient masking methods for ARIA and AES. In general, a masked S-box (MS) block can be constructed in different ways depending on the implementation platform, such as hardware and software. However, the other components of ARIA and AES have less impact on the implementation cost. We first propose an efficient masking structure by minimizing the number of mask corrections under the assumption that we have an MS block. Second, to make a secure and efficient MS block for ARIA and AES, we propose novel methods to solve the table size problem for the MS block in a software implementation and to reduce the cost of a masked inversion which is the main part of the MS block in the hardware implementation.",
keywords = "AES, ARIA, Composite field, Masking method, Side-channel attacks",
author = "Heeseok Kim and Kim, {Tae Hyun} and Han, {Dong Guk} and Seokhie Hong",
year = "2010",
month = "6",
day = "1",
doi = "10.4218/etrij.10.0109.0181",
language = "English",
volume = "32",
pages = "370--379",
journal = "ETRI Journal",
issn = "1225-6463",
publisher = "ETRI",
number = "3",

}

TY - JOUR

T1 - Efficient masking methods appropriate for the block ciphers ARIA and AES

AU - Kim, Heeseok

AU - Kim, Tae Hyun

AU - Han, Dong Guk

AU - Hong, Seokhie

PY - 2010/6/1

Y1 - 2010/6/1

N2 - In this paper, we propose efficient masking methods for ARIA and AES. In general, a masked S-box (MS) block can be constructed in different ways depending on the implementation platform, such as hardware and software. However, the other components of ARIA and AES have less impact on the implementation cost. We first propose an efficient masking structure by minimizing the number of mask corrections under the assumption that we have an MS block. Second, to make a secure and efficient MS block for ARIA and AES, we propose novel methods to solve the table size problem for the MS block in a software implementation and to reduce the cost of a masked inversion which is the main part of the MS block in the hardware implementation.

AB - In this paper, we propose efficient masking methods for ARIA and AES. In general, a masked S-box (MS) block can be constructed in different ways depending on the implementation platform, such as hardware and software. However, the other components of ARIA and AES have less impact on the implementation cost. We first propose an efficient masking structure by minimizing the number of mask corrections under the assumption that we have an MS block. Second, to make a secure and efficient MS block for ARIA and AES, we propose novel methods to solve the table size problem for the MS block in a software implementation and to reduce the cost of a masked inversion which is the main part of the MS block in the hardware implementation.

KW - AES

KW - ARIA

KW - Composite field

KW - Masking method

KW - Side-channel attacks

UR - http://www.scopus.com/inward/record.url?scp=77953385519&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=77953385519&partnerID=8YFLogxK

U2 - 10.4218/etrij.10.0109.0181

DO - 10.4218/etrij.10.0109.0181

M3 - Article

AN - SCOPUS:77953385519

VL - 32

SP - 370

EP - 379

JO - ETRI Journal

JF - ETRI Journal

SN - 1225-6463

IS - 3

ER -