Paper Info
Title
Secure Compilation of Side-Channel Countermeasures: The Case of Cryptographic “Constant-Time”
Abstract
Software-based countermeasures provide effective mitigation against side-channel attacks, often with minimal efficiency and deployment overheads. Their effectiveness is often amenable to rigorous analysis: specifically, several popular countermeasures can be formalized as information flow policies, and correct implementation of the countermeasures can be verified with state-of-the-art analysis and verification techniques. However, in absence of further justification, the guarantees only hold for the language (source, target, or intermediate representation) on which the analysis is performed. We consider the problem of preserving side-channel counter-measures by compilation for cryptographic “constant-time”, a popular countermeasure against cache-based timing attacks. We present a general method, based on the notion of constant-time-simulation, for proving that a compilation pass preserves the constant-time countermeasure. Using the Coq proof assistant, we verify the correctness of our method and of several representative instantiations.
Year
DOI
Venue
2018
10.1109/CSF.2018.00031
2018 IEEE 31st Computer Security Foundations Symposium (CSF)
Keywords
Field
DocType
cryptographic-constant-time,secure-compilation,formal-proofs
Countermeasure,Information flow (information theory),Cache,Cryptography,Computer science,Correctness,Timing attack,Side channel attack,Proof assistant,Distributed computing
Conference
ISSN
ISBN
Citations 
1940-1434
978-1-5386-6681-4
9
PageRank 
References 
Authors
0.46
17
3
Name
Order
Citations
PageRank
Gilles Barthe12337152.36
Benjamin Grégoire281748.93
Vincent Laporte3364.95