CBC-MAC suitable for wireless sensor networks is one of the most popular MAC algorithms among many existing methods to build MACs. Moreover many variants have been introduced in order to improve the security of it. In this paper, we propose fault attacks on CBC-MAC and its variants based on AES-128. By using our attacks, we can recover secret keys of CBC-MAC and its variants with only small number of fault injections, respectively. These are the first known side channel attack results on them.
- Block cipher
- Fault attack
- Modes of operation
ASJC Scopus subject areas
- Electrical and Electronic Engineering
- Atomic and Molecular Physics, and Optics