Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.


A New Leakage Exploitation Framework and Its Application to Authenticated Encryption

June 21, 2023


Vahid Jahandideh - Radboud University


We target a 32-bit XOR instruction with a secret input and a known random operand and recover the secret with around 10K traces. Based on the leakage of this linear instruction, we propose a framework for power analysis of the unprotected software implementations of finalists of the NIST lightweight cryptography competition. The approach applies to (almost) all finalists and clarifies which details in their design enable successful power analysis attacks. Furthermore, the diversity of the studied ciphers in this work elucidates how mode and primitive design can help to mitigate leakage without demanding a heavy masking countermeasure that conflicts with the lightweight design goals.

Presented at

Lightweight Cryptography Workshop 2023 [Virtual]

Event Details



Related Topics

Security and Privacy: lightweight cryptography

Created June 20, 2023, Updated June 22, 2023