jaseg/phd-thesis
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add graphics to SMPC chapter

Browse source
This commit is contained in:
jaseg 2025-12-02 19:33:38 +01:00
parent 8b0d25cadb
commit 82ac0196a7
3 changed files with 131 additions and 84 deletions
Download patch file Download diff file Expand all files Collapse all files

3
chapter-ihsm/chapter.tex
View file

@ -581,7 +581,8 @@ acceleration is $a=\omega^2 r$. In our example, this results in a minimum angula
\frac{1}{2\pi}\sqrt{\frac{a}{r}} = \frac{1}{2\pi}\sqrt{\frac{\SI{1000}{\meter\per\second^2}}{\SI{100}{\milli\meter}}}
\approx \SI{16}{\hertz} \approx \SI{1000}{rpm}$. From this, we can conclude that even at moderate speeds of
$\SI{1000}{rpm}$ and above, a manual attack is no longer possible and any attack would have to be carried out using some
kind of mechanical tool.
kind of mechanical tool. Literature supports this conclusion, with loss of orientation reported as early as at
\SI{70}{rpm} in an observer located on the axis of rotation~\cite{fowlerInvestigationFlowProcesses1966}.
\begin{figure}
\center

61
chapter-smpc/chapter.tex
View file

@ -296,22 +296,53 @@ In this section, we will present a sketch of a design for an IHSM envelope large
and that provides air cooling to the payload. Our sketch solves the engineering issue of moving such an IHSM envelope
while simultaneously providing cooling to the payload.
% FIXME picture!
Our proposed design is based on the idea of using the cooling fans' airflow to power the rotation of the IHSM envelope.
Using the basic cylindrical design, the IHSM envelope consists of two discs above and below the payload that are
connected through vertical struts containing part of the tamper-sensing mesh on the outside of the payload. We propose
widening these vertical connecting struts, and angling them such that the entire envelope becomes a centrifugal
impeller. By letting air flow into the envelope from the side, and back out through its top and bottom, the envelope
assumes the same configuration used in centrifugal cooling fans. A secondary advantage of this concept is that we do not
need a motor on the envelope's shaft, saving vertical space and one difficult to source part. Furthermore, the cooling
fans can be located on the outside of the envelope in an easily accessible location, and can be set up in a redundant
way such that a failed cooling fan can be replaced while the system continues operation. The only disadvantage of this
solution over a direct motor drive is noise. To achieve the speed necessary for sufficient security at the large
envelope diameter of an MPC accelerator application, high-airflow fans must be used, which are very noisy when at full
speed. We consider this a valid tradeoff since such a system would be deployed in a datacenter where high noise levels
are acceptable.
\begin{figure}
\centering
\begin{subfigure}{0.45\textwidth}
\centering
\includegraphics{setup_0001.jpg}
\caption{}
\label{fig_setup_left}
\end{subfigure}
\begin{subfigure}{0.45\textwidth}
\centering
\includegraphics{setup_0002.jpg}
\caption{}
\label{fig_setup_right}
\end{subfigure}
\caption{Conceptual demonstrator of the fan-driven IHSM primary mesh approach.}
\label{fig_setup}
\end{figure}
\todo{Finish sketch!}
Our proposed design is based on the idea of using the cooling fans' airflow to power the rotation of the IHSM envelope.
Figure~\ref{fig_setup} shows a conceptual demonstration of this concept. Using the basic cylindrical design, the IHSM
envelope consists of two discs above and below the payload that are connected through vertical struts containing part of
the tamper-sensing mesh on the outside of the payload. We propose widening these vertical connecting struts, and angling
them such that the entire envelope becomes a centrifugal impeller. By letting air flow into the envelope from the side,
and back out through its top and bottom, the envelope assumes the same configuration used in centrifugal cooling fans.
Laying out an IHSM this way has several advantages. First, we save some vertical space by removing the motor from the
shaft of the mesh. Second, on top of driving the mesh, the airflow also serves to cool the payload. Second, this
approach eliminates the motor driving the mesh as a single point of failure. In a basic IHSM design as we introduced it
in Chapter~\ref{chapter-ihsm}, this motor is a critical component as it failing would lead to the mesh accelerometer
triggering the tamper alarm. Using a brushless motor type the numebr of wear components in this motor can be reduced to
the motor's shaft bearings. A complication in the practical manufacturing of IHSMs at a small scale is that small-scale
production does not allow for a custom-made motor. Limiting the selection to off-the-shelf brushless motors leads to an
unpredictability of bearing life since precise bearing specifications are not usually included in motor datasheets.
Compared to the market for off-the-shelf small brushless motors, cooling fans are easier to shop for. A large selection
of products with various form factors and specifications is available, and manufacturers usually give detailed
information on both performance and lifetime. For industrial and server cooling fans, uninterrupted 24/7 operation is
their nominal operating condition.
The cooling fans can be located on the outside of the envelope in an easily accessible location, and can be set up in a
redundant way such that a failed cooling fan can be replaced while the system continues operation.
The main drawback of a fan-driven IHSM is the necessary airflow. To maximize payload volume, the fan blades must be kept
as narrow as possible. Narrow fan blades work best at high air speed, but high air speed requires the fan to have high
airflow. Besides limiting fan selection and increasing power consumption, high airflow fans also are noisy. Despite
these limitations, we consider fan-driven IHSMs a valid tradeoff since such a system would most likely be deployed in a
datacenter where high noise levels are acceptable.
\section{Outlook}

151
main.bib
View file

@ -45,7 +45,7 @@
urldate = {2021-04-01}
}
@online{adhikariDontLookUbiquitous2022,
@online{adhikariDonLookUbiquitous2022,
title = {Don't {{Look Up}}: {{Ubiquitous Data Exfiltration Pathways}} in {{Commercial Spaces}}},
shorttitle = {Don't {{Look Up}}},
author = {Adhikari, Anku and Guo, Samuel and Smaragdis, Paris and Winslett, Marianne},
@ -285,7 +285,7 @@
location = {London},
doi = {10.4324/9781003220534},
abstract = {Cypherpunk Ethics explores the moral worldview of the cypherpunks, a movement that advocates the use of strong digital cryptography—or crypto, for short—to defend individual privacy and promote institutional transparency in the digital age. Focusing on the writings of Timothy May and Julian Assange, two of the most prolific and influential cypherpunks, the book examines two competing paradigms of cypherpunk philosophy—crypto anarchy and crypto justice—and examines the implications of cypherpunk ethics for a range of contemporary moral issues, including surveillance, privacy, whistleblowing, cryptocurrencies, journalism, democracy, censorship, intellectual property, and power. Rooted in theory but with very real applications, this volume will appeal not only to students and scholars of digital media, communication, journalism, philosophy, political science, critical data studies, sociology, and the history of technology but also to technologists and activists around the world.},
isbn = {978-1-003-22053-4},
isbn = {978-1-00-322053-4},
pagetotal = {142}
}
@ -334,7 +334,7 @@
isbn = {978-1-4503-4139-4}
}
@inproceedings{arpPrivacyThreatsUltrasonic2017,
@inproceedings{arpPrivacyThreatsUltrasonic2017a,
title = {Privacy {{Threats}} through {{Ultrasonic Side Channels}} on {{Mobile Devices}}},
booktitle = {2017 {{IEEE European Symposium}} on {{Security}} and {{Privacy}} ({{EuroS}}\&{{P}})},
author = {Arp, Daniel and Quiring, Erwin and Wressnegger, Christian and Rieck, Konrad},
@ -584,8 +584,8 @@
}
@incollection{baumMoz$$mathbbZ_2^k$$arellaEfficient2022,
title = {Moz\$\$\textbackslash mathbb \{{{Z}}\}\_\{2\textasciicircum k\}\$\$arella: {{Efficient Vector-OLE}} and {{Zero-Knowledge Proofs}} over \$\$\textbackslash mathbb \{{{Z}}\}\_\{2\textasciicircum k\}\$\$},
shorttitle = {Moz\$\$\textbackslash mathbb \{{{Z}}\}\_\{2\textasciicircum k\}\$\$arella},
title = {Moz\$\$\textbackslash mathbb \{\vphantom\}{{Z}}\vphantom\{\}\_\{2\textasciicircum k\}\$\$arella: {{Efficient Vector-OLE}} and {{Zero-Knowledge Proofs}} over \$\$\textbackslash mathbb \{\vphantom\}{{Z}}\vphantom\{\}\_\{2\textasciicircum k\}\$\$},
shorttitle = {Moz\$\$\textbackslash mathbb \{\vphantom\}{{Z}}\vphantom\{\}\_\{2\textasciicircum k\}\$\$arella},
booktitle = {Advances in {{Cryptology}} {{CRYPTO}} 2022},
author = {Baum, Carsten and Braun, Lennart and Munch-Hansen, Alexander and Scholl, Peter},
editor = {Dodis, Yevgeniy and Shrimpton, Thomas},
@ -731,7 +731,7 @@
langid = {english}
}
@inproceedings{bhargavanPracticalInSecurity64bit2016,
@inproceedings{bhargavanPracticalSecurity64bit2016,
title = {On the {{Practical}} ({{In-}}){{Security}} of 64-Bit {{Block Ciphers}}: {{Collision Attacks}} on {{HTTP}} over {{TLS}} and {{OpenVPN}}},
shorttitle = {On the {{Practical}} ({{In-}}){{Security}} of 64-Bit {{Block Ciphers}}},
booktitle = {Proceedings of the 2016 {{ACM SIGSAC Conference}} on {{Computer}} and {{Communications Security}}},
@ -1544,7 +1544,7 @@
url = {https://ieeexplore.ieee.org/document/9152700/},
urldate = {2023-01-19},
eventtitle = {2020 {{IEEE Symposium}} on {{Security}} and {{Privacy}} ({{SP}})},
isbn = {978-1-7281-3497-0}
isbn = {978-1-72813-497-0}
}
@book{constantinouAppliedResearchPolicing2021,
@ -1820,7 +1820,7 @@
location = {Singapore},
doi = {10.1007/978-981-99-8721-4_1},
abstract = {A Universal Circuit~(UC) is a Boolean circuit of size~\$\$\textbackslash varTheta (n \textbackslash log n)\$\$Θ(nlogn)that can simulate any Boolean function up to a certain size~n. Valiant (STOC76) provided the first two UC constructions of asymptotic sizes \$\$\textbackslash sim 5 n\textbackslash log n\$\$5nlognand \$\$\textbackslash sim 4.75 n\textbackslash log n\$\$4.75nlogn, and todays most efficient construction of Liu et al.~(CRYPTO21) has size~\$\$\textbackslash sim 3n\textbackslash log n\$\$3nlogn. Evaluating a public UC with a secure Multi-Party Computation~(MPC) protocol allows efficient Private Function Evaluation~(PFE), where a private function is evaluated on private data.},
isbn = {978-981-99-8721-4},
isbn = {978-981-9987-21-4},
langid = {english},
keywords = {multi-party computation,private function evaluation,universal circuit}
}
@ -1918,7 +1918,7 @@
keywords = {Computer Science - Cryptography and Security,Quantum Physics}
}
@article{dumitruImpostorUSBOffPath,
@article{dumitruImpostorUSOffPath,
title = {The {{Impostor Among US}}({{B}}): {{Off-Path Injection Attacks}} on {{USB Communications}}},
author = {Dumitru, Robert and Genkin, Daniel and Wabnitz, Andrew and Yarom, Yuval},
abstract = {USB is the most prevalent peripheral interface in modern computer systems and its inherent insecurities make it an appealing attack vector. A well-known limitation of USB is that traffic is not encrypted. This allows on-path adversaries to trivially perform man-in-the-middle attacks. Off-path attacks that compromise the confidentiality of communications have also been shown to be possible. However, so far no off-path attacks that breach USB communications integrity have been demonstrated.},
@ -2183,6 +2183,21 @@
keywords = {twisted-inductor}
}
@report{fowlerInvestigationFlowProcesses1966,
title = {An Investigation of the Flow Processes in a Centrifugal Compressor Impeller},
author = {Fowler, H. S.},
date = {1966},
journaltitle = {Mechanical Engineering Report (National Research Council Canada. Division of Mechanical Engineering. Engine Laboratory)},
volume = {ME-220},
institution = {National Research Council Canada},
issn = {0077-555X},
doi = {10.4224/40003753},
url = {https://nrc-publications.canada.ca/eng/view/object/?id=fd41e817-48ff-4d37-a5af-aede36a9a9cb},
urldate = {2025-12-02},
abstract = {The flow in the impeller of a centrifugal flow compressor is complex, and is not yet fully understood. A theoretical model of this flow is proposed, from first principles, and an experimental method of investigating the validity of this model is described. An observer is placed in the centre of a large model of the impeller, and by rotating with it is enabled to examine the flow in the impeller passages in great detail . Experimental results obtained by this method are analysed, and some tentative conclusions on the accuracy of parts of the model are put forward.},
langid = {english}
}
@online{fraunhofersitAbschlussberichtSicherheitsanalyseGesamtsystems2024,
title = {Abschlussbericht {{Sicherheitsanalyse}} Des {{Gesamtsystems ePA}} Für Alle},
author = {{Fraunhofer SIT}},
@ -2953,7 +2968,7 @@
url = {https://www.youtube.com/watch?v=LD9e73BYAnI}
}
@article{heathGRAMOlog2Overhead,
@article{heathGRAMLog2Overhead,
title = {{{GRAM}} with {{O}}(Log2 n) {{Overhead}}},
author = {Heath, David and Kolesnikov, Vladimir and Ostrovsky, Rafail},
abstract = {Garbled RAM (GRAM) is a powerful technique introduced by Lu and Ostrovsky that equips Garbled Circuit (GC) with a sublinear cost RAM without adding rounds of interaction. While multiple GRAM constructions are known, none are suitable for practice, due to costs that have high constants and poor scaling.},
@ -3133,19 +3148,19 @@
keywords = {Analytical algorithm,CMOS integrated circuits,CMOS technology,Inductors,Layout,minimum resistance,on-chip inductor,Radiofrequency integrated circuits,Resistance,variable width}
}
@online{HttpsArxivorgPdf,
@online{HttpsArxivOrg,
title = {{{https://arxiv.org/pdf/1909.13770}}},
url = {https://arxiv.org/pdf/1909.13770},
urldate = {2024-05-21}
}
@online{HttpsWebarchiveorgWeb,
@online{HttpsWebArchive,
title = {{{https://web.archive.org/web/20160421023836id\_/http://people.seas.harvard.edu/\textasciitilde bgoldberg/documents/Papers/ICRA14\_Goldberg.pdf}}},
url = {https://web.archive.org/web/20160421023836id_/http://people.seas.harvard.edu/~bgoldberg/documents/Papers/ICRA14_Goldberg.pdf},
urldate = {2024-07-25}
}
@online{HttpsWwweuroixnetMedia,
@online{HttpsWwwEuroix,
title = {{{https://www.euro-ix.net/media/filer\_public/1f/74/1f7457be-afd8-471b-b333-2cb7958f9d0b/demystify\_quantum\_key\_distribution\_euro-ix.pdf}}},
url = {https://www.euro-ix.net/media/filer_public/1f/74/1f7457be-afd8-471b-b333-2cb7958f9d0b/demystify_quantum_key_distribution_euro-ix.pdf},
urldate = {2024-06-28}
@ -3259,13 +3274,13 @@
@online{IEEEXploreFullTexta,
title = {{{IEEE Xplore Full-Text PDF}}:},
url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8558378},
url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=6520632},
urldate = {2024-09-10}
}
@online{IEEEXploreFullTextb,
title = {{{IEEE Xplore Full-Text PDF}}:},
url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=6520632},
url = {https://ieeexplore.ieee.org/stamp/stamp.jsp?arnumber=8558378},
urldate = {2024-09-10}
}
@ -3472,7 +3487,7 @@
url = {https://doi.org/10.1201/9781003123675},
urldate = {2025-11-18},
abstract = {The crypto wars have raged for half a century. In the 1970s, digital privacy activists prophesied the emergence of an Orwellian State, made possible by computer-mediated mass surveillance. The antidote: digital encryption. The U.S. government warned encryption would not only prevent surveillance of law-abiding citizens, but of criminals, terrorists, and foreign spies, ushering in a rival dystopian future. Both parties fought to defend the citizenry from what they believed the most perilous threats. The government tried to control encryption to preserve its surveillance capabilities; privacy activists armed citizens with cryptographic tools and challenged encryption regulations in the courts. No clear victor has emerged from the crypto wars. Governments have failed to forge a framework to govern the, at times conflicting, civil liberties of privacy and security in the digital age—an age when such liberties have an outsized influence on the citizenState power balance. Solving this problem is more urgent than ever. Digital privacy will be one of the most important factors in how we architect twenty-first century societies—its management is paramount to our stewardship of democracy for future generations. We must elevate the quality of debate on cryptography, on how we govern security and privacy in our technology-infused world. Failure to end the crypto wars will result in societies sleepwalking into a future where the citizenState power balance is determined by a twentieth-century status quo unfit for this century, endangering both our privacy and security. This book provides a history of the crypto wars, with the hope its chronicling sets a foundation for peace.},
isbn = {978-1-003-12367-5}
isbn = {978-1-00-312367-5}
}
@inproceedings{jiangGhostTypeLimitsUsing2024,
@ -3825,7 +3840,7 @@
urldate = {2024-07-31},
abstract = {Most common user authentication methods use some form of password or a combination of passwords. However, encryption schemes are generally not directly compatible with user passwords and thus, Password-Based Key Derivation Functions (PBKDFs) are used to convert user passwords into cryptographic keys. In this paper, we analyze the theoretical security of PBKDF2 and present two vulnerabilities, γ-collision and δ-collision. Using AES-128 as our exemplar, we show that due to γ-collision, text encrypted with one user password can be decrypted with γ 1 different passwords. We also provide a proof that finding a collision in the derived key for AES-128 requires δ lesser calls to PBKDF2 than the known Birthday attack. Due to this, it is possible to break password-based AES-128 in O(264) calls, which is equivalent to brute-forcing DES.},
eventtitle = {2021 {{IEEE International Conference}} on {{Cyber Security}} and {{Resilience}} ({{CSR}})},
isbn = {978-1-6654-0285-9},
isbn = {978-1-66540-285-9},
langid = {english}
}
@ -3955,7 +3970,7 @@
pages = {1955--1971},
doi = {10.1109/SP40001.2021.00029},
url = {http://arxiv.org/abs/2009.04263},
urldate = {2024-07-25},
urldate = {2024-01-08},
abstract = {Due to its sound theoretical basis and practical efficiency, masking has become the most prominent countermeasure to protect cryptographic implementations against physical sidechannel attacks (SCAs). The core idea of masking is to randomly split every sensitive intermediate variable during computation into at least t+1 shares, where t denotes the maximum number of shares that are allowed to be observed by an adversary without learning any sensitive information. In other words, it is assumed that the adversary is bounded either by the possessed number of probes (e.g., microprobe needles) or by the order of statistical analyses while conducting higher-order SCA attacks (e.g., differential power analysis). Such bounded models are employed to prove the SCA security of the corresponding implementations. Consequently, it is believed that given a sufficiently large number of shares, the vast majority of known SCA attacks are mitigated. In this work, we present a novel laser-assisted SCA technique, called Laser Logic State Imaging (LLSI), which offers an unlimited number of contactless probes, and therefore, violates the probing security model assumption. This technique enables us to take snapshots of hardware implementations, i.e., extract the logical state of all registers at any arbitrary clock cycle with a single measurement. To validate this, we mount our attack on masked AES hardware implementations and practically demonstrate the extraction of the full-length key in two different scenarios. First, we assume that the location of the registers (key and/or state) is known, and hence, their content can be directly read by a single snapshot. Second, we consider an implementation with unknown register locations, where we make use of multiple snapshots and a SAT solver to reveal the secrets.},
langid = {english},
keywords = {Computer Science - Cryptography and Security}
@ -3973,7 +3988,7 @@
pages = {1955--1971},
doi = {10.1109/SP40001.2021.00029},
url = {http://arxiv.org/abs/2009.04263},
urldate = {2024-01-08},
urldate = {2024-07-25},
abstract = {Due to its sound theoretical basis and practical efficiency, masking has become the most prominent countermeasure to protect cryptographic implementations against physical sidechannel attacks (SCAs). The core idea of masking is to randomly split every sensitive intermediate variable during computation into at least t+1 shares, where t denotes the maximum number of shares that are allowed to be observed by an adversary without learning any sensitive information. In other words, it is assumed that the adversary is bounded either by the possessed number of probes (e.g., microprobe needles) or by the order of statistical analyses while conducting higher-order SCA attacks (e.g., differential power analysis). Such bounded models are employed to prove the SCA security of the corresponding implementations. Consequently, it is believed that given a sufficiently large number of shares, the vast majority of known SCA attacks are mitigated. In this work, we present a novel laser-assisted SCA technique, called Laser Logic State Imaging (LLSI), which offers an unlimited number of contactless probes, and therefore, violates the probing security model assumption. This technique enables us to take snapshots of hardware implementations, i.e., extract the logical state of all registers at any arbitrary clock cycle with a single measurement. To validate this, we mount our attack on masked AES hardware implementations and practically demonstrate the extraction of the full-length key in two different scenarios. First, we assume that the location of the registers (key and/or state) is known, and hence, their content can be directly read by a single snapshot. Second, we consider an implementation with unknown register locations, where we make use of multiple snapshots and a SAT solver to reveal the secrets.},
langid = {english},
keywords = {Computer Science - Cryptography and Security}
@ -4105,7 +4120,7 @@
issn = {2511-9044, 2511-9044},
doi = {10.1002/qute.201800011},
url = {http://arxiv.org/abs/1703.09278},
urldate = {2024-07-15},
urldate = {2024-05-27},
abstract = {Quantum key distribution using weak coherent states and homodyne detection is a promising candidate for practical quantum-cryptographic implementations due to its compatibility with existing telecom equipment and high detection efficiencies. However, despite the actual simplicity of the protocol, the security analysis of this method is rather involved compared to discrete-variable QKD. In this article we review the theoretical foundations of continuous-variable quantum key distribution (CV-QKD) with Gaussian modulation and rederive the essential relations from scratch in a pedagogical way. The aim of this paper is to be as comprehensive and self-contained as possible in order to be well intelligible even for readers with little pre-knowledge on the subject. Although the present article is a theoretical discussion of CV-QKD, its focus lies on practical implementations, taking into account various kinds of hardware imperfections and suggesting practical methods to perform the security analysis subsequent to the key exchange. Apart from a review of well known results, this manuscript presents a set of new original noise models which are helpful to get an estimate of how well a given set of hardware will perform in practice.},
langid = {english},
keywords = {Quantum Physics}
@ -4126,7 +4141,7 @@
issn = {2511-9044, 2511-9044},
doi = {10.1002/qute.201800011},
url = {http://arxiv.org/abs/1703.09278},
urldate = {2024-05-27},
urldate = {2024-05-02},
abstract = {Quantum key distribution using weak coherent states and homodyne detection is a promising candidate for practical quantum-cryptographic implementations due to its compatibility with existing telecom equipment and high detection efficiencies. However, despite the actual simplicity of the protocol, the security analysis of this method is rather involved compared to discrete-variable QKD. In this article we review the theoretical foundations of continuous-variable quantum key distribution (CV-QKD) with Gaussian modulation and rederive the essential relations from scratch in a pedagogical way. The aim of this paper is to be as comprehensive and self-contained as possible in order to be well intelligible even for readers with little pre-knowledge on the subject. Although the present article is a theoretical discussion of CV-QKD, its focus lies on practical implementations, taking into account various kinds of hardware imperfections and suggesting practical methods to perform the security analysis subsequent to the key exchange. Apart from a review of well known results, this manuscript presents a set of new original noise models which are helpful to get an estimate of how well a given set of hardware will perform in practice.},
langid = {english},
keywords = {Quantum Physics}
@ -4147,7 +4162,7 @@
issn = {2511-9044, 2511-9044},
doi = {10.1002/qute.201800011},
url = {http://arxiv.org/abs/1703.09278},
urldate = {2024-05-02},
urldate = {2024-07-15},
abstract = {Quantum key distribution using weak coherent states and homodyne detection is a promising candidate for practical quantum-cryptographic implementations due to its compatibility with existing telecom equipment and high detection efficiencies. However, despite the actual simplicity of the protocol, the security analysis of this method is rather involved compared to discrete-variable QKD. In this article we review the theoretical foundations of continuous-variable quantum key distribution (CV-QKD) with Gaussian modulation and rederive the essential relations from scratch in a pedagogical way. The aim of this paper is to be as comprehensive and self-contained as possible in order to be well intelligible even for readers with little pre-knowledge on the subject. Although the present article is a theoretical discussion of CV-QKD, its focus lies on practical implementations, taking into account various kinds of hardware imperfections and suggesting practical methods to perform the security analysis subsequent to the key exchange. Apart from a review of well known results, this manuscript presents a set of new original noise models which are helpful to get an estimate of how well a given set of hardware will perform in practice.},
langid = {english},
keywords = {Quantum Physics}
@ -4209,7 +4224,7 @@
langid = {english}
}
@article{leePrintedSpiralWinding2011,
@article{leePrintedSpiralWinding2011a,
title = {Printed {{Spiral Winding Inductor With Wide Frequency Bandwidth}}},
author = {Lee, Chi Kwan and Su, Y. P. and Ron Hui, S. Y.},
date = {2011-10},
@ -4409,7 +4424,7 @@
langid = {english}
}
@article{lopeFirstSelfresonantFrequency2021,
@article{lopeFirstSelfResonant2021,
title = {First Selfresonant Frequency of Power Inductors Based on Approximated Corrected Stray Capacitances},
author = {Lope, Ignacio and Carretero, Claudio and Acero, Jesus},
date = {2021-02},
@ -4512,8 +4527,8 @@
location = {Cham},
doi = {10.1007/978-3-030-88428-4_34},
url = {https://link.springer.com/10.1007/978-3-030-88428-4_34},
urldate = {2025-08-13},
abstract = {With the advancement of the trusted execution environment (TEE) technologies, hardware-supported secure computing becomes increasingly popular due to its efficiency. During the protocol execution, typically, the players need to contact a third-party server for remote attestation, ensuring the validity of the involved trusted hardware component, such as Intel SGX, as well as the integrity of the computation result. When the hardware manufacturer is not fully trusted, sensitive information may be leaked to the third-party server through backdoors, steganography, and kleptography, etc. In this work, we introduce a new security notion called semi-trusted hardware model, where the adversary is allowed to passively or maliciously corrupt the hardware. Therefore, she can learn the input of the hardware component and might also tamper its output. We then show how to utilize such semi-trusted hardwares for correlated randomness teleportation. When the semi-trusted hardware is instantiated by Intel SGX, to generate 10k random OTs, our protocol is 24X and 450X faster than the EMP-IKNP-ROT in the LAN and WAN setting, respectively. When SGX is used to teleport Garbled circuits, the resulting two-party computation protocol is 5.3-5.7X and 43-47X faster than the EMP-SH2PC in the LAN and WAN setting, respectively, for the AES-128, SHA-256, and SHA-512 evaluation. We also show how to achieve malicious security with little overhead.},
urldate = {2024-07-15},
abstract = {With the advancement of the trusted execution environment (TEE) technologies, hardware-supported secure computing becomes increasingly popular due to its e ciency. During the protocol execution, typically, the players need to contact a third-party server for remote a estation, ensuring the validity of the involved trusted hardware component, such as Intel SGX, as well as the integrity of the computation result. When the hardware manufacturer is not fully trusted, sensitive information may be leaked to the third-party server through backdoors, steganography, and kleptography, etc. In this work, we introduce a new security notion called semi-trusted hardware model, where the adversary is allowed to passively or maliciously corrupt the hardware. erefore, she can learn the input of the hardware component and might also tamper its output. We then show how to utilize such semi-trusted hardwares for correlated randomness teleportation. When the semi-trusted hardware is instantiated by Intel SGX, to generate 10k random OTs, our protocol is 24X and 450X faster than the EMP-IKNP-ROT in the LAN and WAN se ing, respectively. When SGX is used to teleport garbled circuits, the resulting two-party computation protocol is 5.3-5.7X and 43-47X faster than the EMP-SH2PC in the LAN and WAN se ing, respectively, for the AES-128, SHA-256, and SHA-512 evaluation. We also show how to achieve malicious security with li le overhead.},
isbn = {978-3-030-88427-7 978-3-030-88428-4},
langid = {english}
}
@ -4530,8 +4545,8 @@
location = {Cham},
doi = {10.1007/978-3-030-88428-4_34},
url = {https://link.springer.com/10.1007/978-3-030-88428-4_34},
urldate = {2024-07-15},
abstract = {With the advancement of the trusted execution environment (TEE) technologies, hardware-supported secure computing becomes increasingly popular due to its e ciency. During the protocol execution, typically, the players need to contact a third-party server for remote a estation, ensuring the validity of the involved trusted hardware component, such as Intel SGX, as well as the integrity of the computation result. When the hardware manufacturer is not fully trusted, sensitive information may be leaked to the third-party server through backdoors, steganography, and kleptography, etc. In this work, we introduce a new security notion called semi-trusted hardware model, where the adversary is allowed to passively or maliciously corrupt the hardware. erefore, she can learn the input of the hardware component and might also tamper its output. We then show how to utilize such semi-trusted hardwares for correlated randomness teleportation. When the semi-trusted hardware is instantiated by Intel SGX, to generate 10k random OTs, our protocol is 24X and 450X faster than the EMP-IKNP-ROT in the LAN and WAN se ing, respectively. When SGX is used to teleport garbled circuits, the resulting two-party computation protocol is 5.3-5.7X and 43-47X faster than the EMP-SH2PC in the LAN and WAN se ing, respectively, for the AES-128, SHA-256, and SHA-512 evaluation. We also show how to achieve malicious security with li le overhead.},
urldate = {2025-08-13},
abstract = {With the advancement of the trusted execution environment (TEE) technologies, hardware-supported secure computing becomes increasingly popular due to its efficiency. During the protocol execution, typically, the players need to contact a third-party server for remote attestation, ensuring the validity of the involved trusted hardware component, such as Intel SGX, as well as the integrity of the computation result. When the hardware manufacturer is not fully trusted, sensitive information may be leaked to the third-party server through backdoors, steganography, and kleptography, etc. In this work, we introduce a new security notion called semi-trusted hardware model, where the adversary is allowed to passively or maliciously corrupt the hardware. Therefore, she can learn the input of the hardware component and might also tamper its output. We then show how to utilize such semi-trusted hardwares for correlated randomness teleportation. When the semi-trusted hardware is instantiated by Intel SGX, to generate 10k random OTs, our protocol is 24X and 450X faster than the EMP-IKNP-ROT in the LAN and WAN setting, respectively. When SGX is used to teleport Garbled circuits, the resulting two-party computation protocol is 5.3-5.7X and 43-47X faster than the EMP-SH2PC in the LAN and WAN setting, respectively, for the AES-128, SHA-256, and SHA-512 evaluation. We also show how to achieve malicious security with little overhead.},
isbn = {978-3-030-88427-7 978-3-030-88428-4},
langid = {english}
}
@ -4628,7 +4643,7 @@
volume = {13},
number = {2},
eprint = {1},
eprinttype = {pubmed},
eprinttype = {pmid},
pages = {117--126},
issn = {0006-2944},
doi = {10.1016/0006-2944(75)90147-7},
@ -4748,7 +4763,7 @@
urldate = {2023-12-21},
abstract = {Paper documents, where digital signatures are not directly applicable, are still widely utilized due to usability and legal reasons. We propose a novel approach to authenticating paper documents by taking short videos of them with smartphones. Our solution combines cryptographic and image comparison techniques to detect and highlight semantic-changing attacks on rich documents, containing text and graphics. We provide geometrical arguments for the security of our novel comparison algorithm, and prove that its combination with a cryptographic protocol is secure against strong adversaries capable of compromising different system components. We also measure its accuracy on a set of 128 videos of paper documents and a set of 960 synthetically generated warped documents, half containing subtle forgeries. Our algorithm finds all forgeries accurately with no false positives. The highlighted regions are large enough to be visible to users, but small enough to precisely locate forgeries.},
eventtitle = {{{ACSAC}} '23: {{Annual Computer Security Applications Conference}}},
isbn = {979-8-4007-0886-2},
isbn = {9798400708862},
langid = {english}
}
@ -4976,7 +4991,7 @@
url = {https://doi.org/10.1145/3576915.3623092},
urldate = {2024-07-25},
abstract = {The threats of physical side-channel attacks and their countermeasures have been widely researched. Most physical side-channel attacks rely on the unavoidable influence of computation or storage on current consumption or voltage drop on a chip. Such data-dependent influence can be exploited by, for instance, power or electromagnetic analysis. In this work, we introduce a novel non-invasive physical side-channel attack, which exploits the data-dependent changes in the impedance of the chip. Our attack relies on the fact that the temporarily stored contents in registers alter the physical characteristics of the circuit, which results in changes in the die's impedance. To sense such impedance variations, we deploy a well-known RF/microwave method called scattering parameter analysis, in which we inject sine wave signals with high frequencies into the system's power distribution network (PDN) and measure the echo of the signals. We demonstrate that according to the content bits and physical location of a register, the reflected signal is modulated differently at various frequency points enabling the simultaneous and independent probing of individual registers. Such side-channel leakage challenges the t-probing security model assumption used in masking, which is a prominent side-channel countermeasure. To validate our claims, we mount non-profiled and profiled impedance analysis attacks on hardware implementations of unprotected and high-order masked AES. We show that in the case of the profiled attack, only a single trace is required to recover the secret key. Finally, we discuss how a specific class of hiding countermeasures might be effective against impedance leakage.},
isbn = {979-8-4007-0050-7}
isbn = {9798400700507}
}
@article{mooreApplicationsWirelessPower2019,
@ -5004,7 +5019,7 @@
journaltitle = {Thermochimica Acta},
shortjournal = {Thermochimica Acta},
volume = {442},
number = {1--2},
number = {1-2},
pages = {14--17},
issn = {00406031},
doi = {10.1016/j.tca.2005.11.020},
@ -5178,7 +5193,7 @@
urldate = {2023-12-21},
abstract = {Most terminal devices authenticate users only once at the time of initial login, leaving the terminal unprotected during an active session when the original user leaves it unattended. To address this issue, continuous authentication has been proposed by automatically locking the terminal after a period of inactivity. However, it does not fully eliminate the risk of unauthorized access before the session expires. Recent research has also investigated the feasibility of using physiological and behavioral patterns as biometrics. This study presents a novel two-factor continuous authentication that explores a new form of signal called human-induced electric potential captured by wearables in contact with the users body. By analyzing this signal, we can determine the time of user-terminal interactions and compare it with information recorded by the terminals OS. If the original user remains on the same terminal, the two-source readings would match. Additionally, the proposed scheme includes an extra layer of protection by extracting terminals physical fingerprints from the human-induced electric potential to defend against advanced mimicry attacks. To test the effectiveness of our design, a low-cost wearable prototype is developed. Through extensive experiments, it is found that the proposed scheme has a low error rate of 2.3\%, with minimal computational and energy requirements.},
eventtitle = {{{ACSAC}} '23: {{Annual Computer Security Applications Conference}}},
isbn = {979-8-4007-0886-2},
isbn = {9798400708862},
langid = {english}
}
@ -5665,7 +5680,7 @@
keywords = {Acceleration,Cloud computing,Cloud Service,Cryptography,Data Center,Field programmable gate arrays,FPGA,Hardware,Logic gates,Machine learning,Machine Learning,Matrix Multiplication,Multiparty Computation,Secret Sharing,Secure Computation}
}
@article{patraABY20ImprovedMixedProtocol,
@article{patraABY2ImprovedMixedProtocol,
title = {{{ABY2}}.0: {{Improved Mixed-Protocol Secure Two-Party Computation}}},
author = {Patra, Arpita and Schneider, Thomas and Suresh, Ajith and Yalame, Hossein},
abstract = {Secure Multi-party Computation (MPC) allows a set of mutually distrusting parties to jointly evaluate a function on their private inputs while maintaining input privacy. In this work, we improve semi-honest secure two-party computation (2PC) over rings, with a focus on the efficiency of the online phase.},
@ -5677,15 +5692,7 @@
langid = {english}
}
@misc{pcisecuritystandardscouncilPaymentCardIndustry2021,
title = {Payment {{Card Industry PIN Transaction Security Hardware Security Module Modular Derived Test Requirements}}},
author = {{PCI Security Standards Council}},
date = {2021-12},
url = {https://docs-prv.pcisecuritystandards.org/PTS/Derived%20Test%20Requirements/PCI_HSM_DTRs_v4.pdf},
urldate = {2025-04-09}
}
@standard{pcisecuritystandardscouncilPaymentCardIndustry2021a,
@standard{pcisecuritystandardscouncilPaymentCardIndustry2021,
title = {Payment {{Card Industry PIN Transaction Security Hardware Security Module Modular Security Requirements}}},
author = {{PCI Security Standards Council}},
date = {2021-12},
@ -5695,6 +5702,14 @@
version = {4.0}
}
@misc{pcisecuritystandardscouncilPaymentCardIndustry2021a,
title = {Payment {{Card Industry PIN Transaction Security Hardware Security Module Modular Derived Test Requirements}}},
author = {{PCI Security Standards Council}},
date = {2021-12},
url = {https://docs-prv.pcisecuritystandards.org/PTS/Derived%20Test%20Requirements/PCI_HSM_DTRs_v4.pdf},
urldate = {2025-04-09}
}
@standard{pcisecuritystandardscouncilPaymentCardIndustry2025,
title = {Payment {{Card Industry PIN Transaction Security Device Testing}} and {{Approval Program Guide}}},
author = {{PCI Security Standards Council}},
@ -6276,7 +6291,7 @@ Website contains OCR'ed original source and a translation}
url = {https://dl.acm.org/doi/10.1145/3627106.3627192},
urldate = {2023-12-21},
eventtitle = {{{ACSAC}} '23: {{Annual Computer Security Applications Conference}}},
isbn = {979-8-4007-0886-2},
isbn = {9798400708862},
langid = {english}
}
@ -6461,11 +6476,11 @@ Website contains OCR'ed original source and a translation}
keywords = {Dielectric waveguides,Fiber lasers,laser amplifiers,Laser modes,Loss measurement,optical fiber amplifiers,Optical fiber amplifiers,optical fiber lasers,Optical fiber losses,Optical fiber polarization,Optical fibers,Optical propagation,optical waveguide theory,Optical waveguides,Propagation losses,waveguide bends}
}
@online{schmiegGooglesThreatModel2024,
@online{schmiegGoogleThreatModel2024,
type = {Blog Article},
title = {Google's {{Threat}} Model for {{Post-Quantum Cryptography}}},
author = {Schmieg, Sophie and Kölbl, Stefan and Endignoux, Guillaume},
date = {2024-11-03},
date = {2024-03-11},
url = {https://bughunters.google.com/blog/5108747984306176/google-s-threat-model-for-post-quantum-cryptography},
urldate = {2024-06-27},
abstract = {Read on to understand how Google currently evaluates the threat landscape related to post-quantum cryptography, and what implications this has for migrating from classical cryptographic algorithms to PQC.},
@ -7016,7 +7031,7 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
langid = {english}
}
@incollection{TamperResistance2020,
@incollection{TamperResistance2020a,
title = {Tamper {{Resistance}}},
booktitle = {Security {{Engineering}}},
date = {2020},
@ -7879,7 +7894,7 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
volume = {66},
number = {4},
eprint = {4},
eprinttype = {pubmed},
eprinttype = {pmid},
pages = {1338--1343},
issn = {1090-2104},
doi = {10.1016/0006-291x(75)90506-9},
@ -7913,7 +7928,7 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
volume = {30},
number = {2},
eprint = {35},
eprinttype = {pubmed},
eprinttype = {pmid},
pages = {225--231},
issn = {0007-1048},
doi = {10.1111/j.1365-2141.1975.tb00536.x},
@ -8310,7 +8325,7 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
issn = {2375-1053},
doi = {10.1109/VTS.2015.7116294},
url = {https://ieeexplore.ieee.org/document/7116294/?arnumber=7116294},
urldate = {2024-10-31},
urldate = {2024-10-04},
abstract = {The long and distributed supply chain of printed circuit boards (PCBs) makes them vulnerable to different forms of counterfeiting attacks. Existing chip-level integrity validation approaches cannot be readily extended to PCB. In this paper, we address this issue with a novel PCB authentication approach that creates robust, unique signatures from a PCB based on process-induced variations in its trace impedances. The approach comes at virtually zero design and hardware overhead and can be applied to legacy PCBs. Experiments with two sets of commercial PCBs as well as a set of custom designed PCBs show that the proposed approach can obtain unique authentication signature with inter-PCB hamming distance of 47.94\% or higher.},
eventtitle = {2015 {{IEEE}} 33rd {{VLSI Test Symposium}} ({{VTS}})},
keywords = {Authentication,Copper,Counterfeiting,Electrical resistance measurement,High definition video,Impedance,Impedance measurement,Piracy,Printed Circuit Board (PCB),Probes,PUF,Trust}
@ -8325,7 +8340,7 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
issn = {2375-1053},
doi = {10.1109/VTS.2015.7116294},
url = {https://ieeexplore.ieee.org/document/7116294/?arnumber=7116294},
urldate = {2024-10-04},
urldate = {2024-10-31},
abstract = {The long and distributed supply chain of printed circuit boards (PCBs) makes them vulnerable to different forms of counterfeiting attacks. Existing chip-level integrity validation approaches cannot be readily extended to PCB. In this paper, we address this issue with a novel PCB authentication approach that creates robust, unique signatures from a PCB based on process-induced variations in its trace impedances. The approach comes at virtually zero design and hardware overhead and can be applied to legacy PCBs. Experiments with two sets of commercial PCBs as well as a set of custom designed PCBs show that the proposed approach can obtain unique authentication signature with inter-PCB hamming distance of 47.94\% or higher.},
eventtitle = {2015 {{IEEE}} 33rd {{VLSI Test Symposium}} ({{VTS}})},
keywords = {Authentication,Copper,Counterfeiting,Electrical resistance measurement,High definition video,Impedance,Impedance measurement,Piracy,Printed Circuit Board (PCB),Probes,PUF,Trust}
@ -8396,6 +8411,23 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
}
@inproceedings{zhouPPMLACHighPerformance2022,
title = {{{PPMLAC}}: High Performance Chipset Architecture for Secure Multi-Party Computation},
shorttitle = {{{PPMLAC}}},
booktitle = {Proceedings of the 49th {{Annual International Symposium}} on {{Computer Architecture}}},
author = {Zhou, Xing and Xu, Zhilei and Wang, Cong and Gao, Mingyu},
date = {2022-06-11},
series = {{{ISCA}} '22},
pages = {87--101},
publisher = {Association for Computing Machinery},
location = {New York, NY, USA},
doi = {10.1145/3470496.3527392},
url = {https://doi.org/10.1145/3470496.3527392},
urldate = {2024-07-25},
abstract = {Privacy issue is a main concern restricting data sharing and cross-organization collaborations. While Privacy-Preserving Machine Learning techniques such as Multi-Party Computations (MPC), Homomorphic Encryption, and Federated Learning are proposed to solve this problem, no solution exists with both strong security and high performance to run large-scale, complex machine learning models. This paper presents PPMLAC, a novel chipset architecture to accelerate MPC, which combines MPC's strong security and hardware's high performance, eliminates the communication bottleneck from MPC, and achieves several orders of magnitudes speed up over software-based MPC. It is carefully designed to only rely on a minimum set of simple hardware components in the trusted domain, thus is robust against side-channel attacks and malicious adversaries. Our FPGA prototype can run mainstream large-scale ML models like ResNet in near real-time under a practical network environment with non-negligible latency, which is impossible for existing MPC solutions.},
isbn = {978-1-4503-8610-4}
}
@inproceedings{zhouPPMLACHighPerformance2022a,
title = {{{PPMLAC}}: High Performance Chipset Architecture for Secure Multi-Party Computation},
shorttitle = {{{PPMLAC}}},
booktitle = {Proceedings of the 49th {{Annual International Symposium}} on {{Computer Architecture}}},
@ -8413,23 +8445,6 @@ Archive 2: https://web.archive.org/web/20250510104017/https://de.linkedin.com/pu
langid = {english}
}
@inproceedings{zhouPPMLACHighPerformance2022a,
title = {{{PPMLAC}}: High Performance Chipset Architecture for Secure Multi-Party Computation},
shorttitle = {{{PPMLAC}}},
booktitle = {Proceedings of the 49th {{Annual International Symposium}} on {{Computer Architecture}}},
author = {Zhou, Xing and Xu, Zhilei and Wang, Cong and Gao, Mingyu},
date = {2022-06-11},
series = {{{ISCA}} '22},
pages = {87--101},
publisher = {Association for Computing Machinery},
location = {New York, NY, USA},
doi = {10.1145/3470496.3527392},
url = {https://doi.org/10.1145/3470496.3527392},
urldate = {2024-07-25},
abstract = {Privacy issue is a main concern restricting data sharing and cross-organization collaborations. While Privacy-Preserving Machine Learning techniques such as Multi-Party Computations (MPC), Homomorphic Encryption, and Federated Learning are proposed to solve this problem, no solution exists with both strong security and high performance to run large-scale, complex machine learning models. This paper presents PPMLAC, a novel chipset architecture to accelerate MPC, which combines MPC's strong security and hardware's high performance, eliminates the communication bottleneck from MPC, and achieves several orders of magnitudes speed up over software-based MPC. It is carefully designed to only rely on a minimum set of simple hardware components in the trusted domain, thus is robust against side-channel attacks and malicious adversaries. Our FPGA prototype can run mainstream large-scale ML models like ResNet in near real-time under a practical network environment with non-negligible latency, which is impossible for existing MPC solutions.},
isbn = {978-1-4503-8610-4}
}
@inproceedings{zhouPrintListenerUncoveringVulnerability2024,
title = {{{PrintListener}}: {{Uncovering}} the {{Vulnerability}} of {{Fingerprint Authentication}} via the {{Finger Friction Sound}}},
shorttitle = {{{PrintListener}}},