Welcome to the resource topic for 2018/1117
Title:
A Note on Transitional Leakage When Masking AES with Only Two Bits of Randomness
Authors: Felix Wegener, Amir Moradi
Abstract:Recently, Gross et al. demonstrated a first-order probing-secure implementation of AES using only two bits of randomness for both the initial sharing and the entire computation of AES. In this note, we recall that first-order probing security may not be sufficient for practical first-order security when randomness is re-cycled. We demonstrate that without taking the transitional leakage into account, the expected security level in a serialized design based on their concept might not be achieved in practice.
ePrint: https://eprint.iacr.org/2018/1117
See all topics related to this paper.
Feel free to post resources that are related to this paper below.
Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.
For more information, see the rules for Resource Topics .