公开(公告)号：US20240235808A1

公开(公告)日：2024-07-11

申请号：US18534909

申请日：2023-12-11

Applicant: NXP B.V.

Inventor： Jack Connor ,  Nikita Veshchikov ,  Melissa Azouaoui

IPC: H04L9/00 ,  H04L9/06

CPC classification number: H04L9/003 ,  H04L9/0631

Abstract: In accordance with a first aspect of the present disclosure, a method of protecting a cryptographic device against side-channel attacks is conceived, the cryptographic device comprising a cryptographic unit and a processing unit, and the method comprising: performing, by the cryptographic unit, a cryptographic operation on input data, wherein said cryptographic operation generates at least one intermediate result; generating, by the processing unit, a set of possible values of the intermediate result; leaking, by the cryptographic device, said set of possible values of the intermediate result. In accordance with a second aspect of the present disclosure, a computer program is provided for carrying out said method. In accordance with a third aspect of the present disclosure, a corresponding cryptographic device is provided.

公开(公告)号：US12277220B2

公开(公告)日：2025-04-15

申请号：US17651247

申请日：2022-02-16

Applicant: NXP B.V.

Inventor： Nikita Veshchikov ,  Jack Connor

IPC: G06F21/55

Abstract: A method is provided for detecting a profiling attack in an electronic device. The method includes causing provisioning of the device with a key and causing key operations using the key. A total key provisions counter value of a total key provisions counter is updated in response to the key provisioning. Also, a counter value of a total operations counter corresponding to a total number of operations is updated using the detected provisioned keys. A predetermined relationship between the total key provisions counter value and the total operations counter value is detected. An indication of the profiling attack is provided in response to the relationship meeting a predetermined criterion. In another embodiment, an electronic device having a total key provisions counter value and a total key operations counter value is provided. A predetermined relationship between the counter values indicates a profiling attack of the electronic device.

公开(公告)号：US20240020383A1

公开(公告)日：2024-01-18

申请号：US17812244

申请日：2022-07-13

Applicant: NXP B.V.

Inventor： Jack Connor ,  Nikita Veshchikov ,  Lutz Pape

IPC: G06F21/55

CPC classification number: G06F21/556 ,  G06F2221/031

Abstract: A method is provided for protecting an electronic device from a side-channel attack (SCA). The method includes providing a plurality of countermeasures that are for protecting the electronic device from the SCA. A set of countermeasures of the plurality of countermeasures is randomly enabled from the plurality of countermeasures to provide the protection during operation of the electronic device, such as for example, during an encryption operation. The method makes it more difficult for an attacker to construct a template of the electronic device that could be used in the SCA. In another embodiment, an electronic device is provided that incorporates the method.

公开(公告)号：US20230394139A1

公开(公告)日：2023-12-07

申请号：US17805568

申请日：2022-06-06

Applicant: NXP B.V.

Inventor： Nikita Veshchikov ,  Lutz Pape ,  Jack Connor

IPC: G06F21/55

CPC classification number: G06F21/554 ,  G06F2221/031

Abstract: A method is provided for defending against a fuzzing analysis in a device. The method including: receiving, by the first device, a message from a second device; determining the message type of the message; determining that the message type is different from known message types of a protocol used by the first device; determining that the fuzzing analysis of the protocol is underway; and using the message type of the message to randomly determine an action against the fuzzing analysis. The action is intended to cause an attacker who tries to use fuzzing against a device to spend much more effort to discover a bug that can be exploited, and thus discourage the attacker from continuing the attack.

公开(公告)号：US20230259618A1

公开(公告)日：2023-08-17

申请号：US17651247

申请日：2022-02-16

Applicant: NXP B.V.

Inventor： Nikita Veshchikov ,  Jack Connor

IPC: G06F21/55

CPC classification number: G06F21/556 ,  G06F2221/034

Abstract: A method is provided for detecting a profiling attack in an electronic device. The method includes causing provisioning of the device with a key and causing key operations using the key. A total key provisions counter value of a total key provisions counter is updated in response to the key provisioning. Also, a counter value of a total operations counter corresponding to a total number of operations is updated using the detected provisioned keys. A predetermined relationship between the total key provisions counter value and the total operations counter value is detected. An indication of the profiling attack is provided in response to the relationship meeting a predetermined criterion. In another embodiment, an electronic device having a total key provisions counter value and a total key operations counter value is provided. A predetermined relationship between the counter values indicates a profiling attack of the electronic device.