5th edition - github pages · •this is the 5th edition of the ches challenge • previous...
TRANSCRIPT
![Page 1: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/1.jpg)
![Page 2: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/2.jpg)
• This is the 5th edition of the CHES challenge• Previous challenges
• 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations • 2017: WhibOx contest - edition 1 • 2018: Deep-learning based SCA • 2019: WhibOx contest - edition 2
• Next year: looking for candidates
CHES challenge
![Page 3: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/3.jpg)
White-box cryptographyX
AK(X)
X
AK(X)
K K
Obfuscatedimplementation
Hardcodedhidden key
Encoded data
K
White-box access
Illustration: www.whiteboxcrypto.com
WBC
![Page 4: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/4.jpg)
White-box contestGoal: confront designers and attackers
of practical white-box crypto
![Page 5: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/5.jpg)
White-box contest
WhibOx Server
aes.cK
Designer
Goal: confront designers and attackers of practical white-box crypto
![Page 6: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/6.jpg)
White-box contest
WhibOx Server
aes.cK
K
Designer Attacker
Goal: confront designers and attackers of practical white-box crypto
K
![Page 7: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/7.jpg)
White-box contest
WhibOx Server
aes.cK
K
Designer Attacker
Goal: confront designers and attackers of practical white-box crypto
K
Limitations :• C source code at most 50 MB• Executable at most 20 MB• Use at most 20 MB of RAM• Run in at most 1 sc
![Page 8: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/8.jpg)
Score system• A challenge implem gets ST points as long as it stays
unbroken
• At time an implem worth
• is the time of submission
• is a constant depending of the performances
• When an implem with ST gets broken • the designer score ST points (with max rule) • the attacker score BN points (with max rule) • the ST score of the implem. starts to decreasing down to 0
t α ⋅ (t − t0)2
t0α
nn
n
![Page 9: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/9.jpg)
News in edition 2
• Performance factor (w.r.t. running time, code size, RAM consumption)
• Bonus (CA) points are introduced for the inversion • Improved time granularity • Support of 32-bit and 64-bit instructions • 2 compiler options: GCC & TCC
α
![Page 10: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/10.jpg)
Recall: results of edition 1
![Page 11: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/11.jpg)
Recall: results of edition 1
Everything was quickly broken before August
![Page 12: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/12.jpg)
Recall: results of edition 1
A few implementationssurvived ~10 days
Everything was quickly broken before August
![Page 13: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/13.jpg)
Recall: results of edition 1Winner survived
29 days
A few implementationssurvived ~10 days
Everything was quickly broken before August
![Page 14: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/14.jpg)
Recall: results of edition 1
Everything was broken in the end!
A few implementationssurvived ~10 days
Everything was quickly broken before August
Winner survived29 days
![Page 15: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/15.jpg)
Results of edition 2
![Page 16: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/16.jpg)
Results of edition 2
A few “resisting” implementations
in the early stages
![Page 17: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/17.jpg)
Results of edition 2
A few “resisting” implementations
in the early stages
Many submissionsright before the
deadline (31 July)
![Page 18: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/18.jpg)
Results of edition 2
3 implementationsstill unbroken
A few “resisting” implementations
in the early stages
Many submissionsright before the
deadline (31 July)
![Page 19: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/19.jpg)
Strawberry scoreboard
![Page 20: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/20.jpg)
Strawberry scoreboard
Winners:Alex Biryukov
Aleksei Udovenko(U. Luxembourg)
![Page 21: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/21.jpg)
Strawberry scoreboard
Stillanonymous
![Page 22: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/22.jpg)
Strawberry scoreboard
Stéphane Cauchie
![Page 23: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/23.jpg)
Banana scoreboard
![Page 24: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/24.jpg)
Banana scoreboard
Winners:Alex Biryukov
Aleksei Udovenko(U. Luxembourg)
![Page 25: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/25.jpg)
Banana scoreboard
Stillanonymous
![Page 26: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/26.jpg)
Carrot scoreboard
![Page 27: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/27.jpg)
Carrot scoreboard
Similar as bananascoreboard
![Page 28: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/28.jpg)
Carrot scoreboard
Similar as bananascoreboard
Each challenge inversionfollows a complete break
![Page 29: 5th edition - GitHub Pages · •This is the 5th edition of the CHES challenge • Previous challenges • 2015: Crypto-engineering CTF • 2016: Power analysis & secure implementations](https://reader034.vdocuments.net/reader034/viewer/2022050200/5f545b2c5c53b24b393fbe91/html5/thumbnails/29.jpg)
• Congratulation to the double winners: • Alex Biryukov (U. Luxembourg) • Aleksei Udovenko (U. Luxembourg)
• Special thanks to: • Stefan Kölbl (CYBERCRYPT) • Junwei Wang (CryptoExperts)
• All the submitted implementations are available: https://whibox.cyber-crypt.com/
• Try to break cryptolux standing challenges: https://www.cryptolux.org/index.php/Whitebox_cryptography
• Wall of fame to come soon: https://www.cyber-crypt.com/whibox-contest/ • Any suggestion for next edition: https://whibox-contest.slack.com/
Final notes