针对AES算法的时域和频域相关功耗攻击对比分析

面对众多的时域功耗攻击方法和近年来陆续提出的频域功耗攻击方法，以高级加密标准（Advanced En—cryption Standard，AES）密码算法为研究对象，对效用较强的相关功耗攻击方法在时域和频域的攻击效果进行了对比分析。以STC90C58AD微控制器为硬件仿真平台采集相同密钥随机明文的AES密码算法功耗曲线，考虑功耗曲线在时域上对齐与否，分别实施时域相关功耗攻击和频域相关功耗攻击。结果显示：功耗曲线在时域对齐情况下，时域相关功耗攻击比频域相关功耗攻击在恢复AES算法完整的初始密钥所需样本量更少；反之，频域相关功耗攻击所需样本量更少，验证了频域相关功耗攻击能够解决时域相关功耗攻击中时间点不对齐的问题。说明功耗曲线有随机时间干扰的情况下适合选择频域相关功耗攻击，反之，选择时域相关功耗攻击更有利。

Analysis and Comparison on CPA for AES in Time and Frequency Domain

As numerous Power Attacks in time domain and frequency domain proposed in recent years, taking AES cryptographic algorithm as the target algorithm, a comparative analysis is made on the attack effect of the Correlation Power Analysis （CPA） in time domain and frequency domain. Power traces of AES algorithm were collected in STCg0C58AD micro controller hardware simulation platform for the same key with different plaintexts. Depend on whether the power traces aligned or not in the time domain, the CPA in time domain and frequency domain is achieved respectively. The result shows that the CPA in time domain needs fewer traces than in frequency domain to fully recover the initial key of AES algorithm when the power traces is aligned in the time domain, and the CPA in frequency domain needs less samples. Hence, the CPA in frequency domain can solve the misaligned problem. It il- lustrates that better to choose CPA in frequency domain when exists random delay, otherwise, to choose CPA in time domain.