Dataset Open Access

REASSURE (H2020 731591) ECC Dataset

Lukasz Chmielewski


MARC21 XML Export

<?xml version='1.0' encoding='UTF-8'?>
<record xmlns="http://www.loc.gov/MARC21/slim">
  <leader>00000nmm##2200000uu#4500</leader>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">reassure</subfield>
  </datafield>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">side-channel attack</subfield>
  </datafield>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">ecc</subfield>
  </datafield>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">c25519</subfield>
  </datafield>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">cryptography</subfield>
  </datafield>
  <datafield tag="653" ind1=" " ind2=" ">
    <subfield code="a">physical security</subfield>
  </datafield>
  <controlfield tag="005">20200611094641.0</controlfield>
  <datafield tag="500" ind1=" " ind2=" ">
    <subfield code="a">Contact: chmielewski@riscure.com</subfield>
  </datafield>
  <controlfield tag="001">3609789</controlfield>
  <datafield tag="856" ind1="4" ind2=" ">
    <subfield code="s">7000022840</subfield>
    <subfield code="z">md5:116286b914d31bc9060ba3e4f1df54b7</subfield>
    <subfield code="u">https://zenodo.org/record/3609789/files/REASSURE_c25519_arithm_6k_100 full traces.trs</subfield>
  </datafield>
  <datafield tag="856" ind1="4" ind2=" ">
    <subfield code="s">141219372</subfield>
    <subfield code="z">md5:0d69153cae4f8566cae9fec632b6c839</subfield>
    <subfield code="u">https://zenodo.org/record/3609789/files/REASSURE_c25519_arithm_6k + PatternExtract From 100 traces + StaticAlign.trs</subfield>
  </datafield>
  <datafield tag="856" ind1="4" ind2=" ">
    <subfield code="s">8468903802</subfield>
    <subfield code="z">md5:2d5d52be5d040881e9170c053efb61f6</subfield>
    <subfield code="u">https://zenodo.org/record/3609789/files/REASSURE_c25519_arithm_6k + PatternExtract From 5997 traces + StaticAlign.trs</subfield>
  </datafield>
  <datafield tag="542" ind1=" " ind2=" ">
    <subfield code="l">open</subfield>
  </datafield>
  <datafield tag="260" ind1=" " ind2=" ">
    <subfield code="c">2020-01-16</subfield>
  </datafield>
  <datafield tag="909" ind1="C" ind2="O">
    <subfield code="p">openaire_data</subfield>
    <subfield code="p">user-reassure</subfield>
    <subfield code="o">oai:zenodo.org:3609789</subfield>
  </datafield>
  <datafield tag="100" ind1=" " ind2=" ">
    <subfield code="u">Riscure</subfield>
    <subfield code="a">Lukasz Chmielewski</subfield>
  </datafield>
  <datafield tag="245" ind1=" " ind2=" ">
    <subfield code="a">REASSURE (H2020 731591) ECC Dataset</subfield>
  </datafield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">user-reassure</subfield>
  </datafield>
  <datafield tag="536" ind1=" " ind2=" ">
    <subfield code="c">731591</subfield>
    <subfield code="a">Robust and Efficient Approaches to Evaluating Side Channel and Fault Attack Resilience</subfield>
  </datafield>
  <datafield tag="540" ind1=" " ind2=" ">
    <subfield code="u">https://creativecommons.org/licenses/by/4.0/legalcode</subfield>
    <subfield code="a">Creative Commons Attribution 4.0 International</subfield>
  </datafield>
  <datafield tag="650" ind1="1" ind2="7">
    <subfield code="a">cc-by</subfield>
    <subfield code="2">opendefinition.org</subfield>
  </datafield>
  <datafield tag="520" ind1=" " ind2=" ">
    <subfield code="a">&lt;p&gt;Datasets collection for ECC (C25519) side-channel traces, as part of REASSURE H2020 731591 project.&lt;/p&gt;

&lt;p&gt;The set &amp;ldquo;REASSURE_c25519_arithm_6k + PatternExtract From 5997 traces + StaticAlign.trs&amp;rdquo; contains electromagnetic traces coming from 5997 executions of Curve25519 $\mu$NaCl Montgomery Ladder scalar multiplication:&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=http%3A%2F%2Fmunacl.cryptojedi.org%2Fcurve25519-cortexm0.shtml&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350333478&amp;amp;sdata=m8uJEnfiU%2BAw7s%2Bt%2BKX%2Fgf8RcJM849UH2p2%2B%2FGHJtOs%3D&amp;amp;reserved=0"&gt;http://munacl.cryptojedi.org/curve25519-cortexm0.shtml&lt;/a&gt;&lt;br&gt;
running on the Pi\~{n}ata target:&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.riscure.com%2Fproduct%2Fpinata-training-target%2F&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350333478&amp;amp;sdata=39fNqShJ8l5BoZ4HMtHLgviylORABJyq4Ri1wOQGpOI%3D&amp;amp;reserved=0"&gt;https://www.riscure.com/product/pinata-training-target/&lt;/a&gt;&lt;br&gt;
which is a 32-bit STM32F4 microcontroller with an ARM-based architecture, running at the clock frequency of 168 MHz.&lt;br&gt;
&lt;br&gt;
The implementation employs arithmetic-based conditional swap and is additionally protected with projective coordinate re-randomization and scalar randomization.&lt;br&gt;
Each trace from the dataset represent a single iteration of the Montgomery Ladder scalar multiplication that is cut from the whole execution trace; such trace is labeled with the corresponding cswap condition bit.&lt;br&gt;
Observe that a full scalar can be trivially recovered from the cswap condition bits used in the 255 Montgomery Ladder iterations.&lt;br&gt;
Furthermore, all these cut traces (5997*255=1529235) are aligned to exploit the leakage efficiently.&lt;br&gt;
Details about the implementation and how the traces are aligned are in:&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Feprint.iacr.org%2F2016%2F923.pdf&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350343476&amp;amp;sdata=i3GZpv26FuYFwvOSxGjtXm2EU%2Be5xy5XCHEw%2BkrDuKE%3D&amp;amp;reserved=0"&gt;https://eprint.iacr.org/2016/923.pdf&lt;/a&gt;&lt;br&gt;
&lt;br&gt;
The set &amp;ldquo;REASSURE_c25519_arithm_6k + PatternExtract From 100 traces + StaticAlign.trs&amp;rdquo; contains a part of the 5997 set, but limited to the first 100 full traces.&lt;br&gt;
&lt;br&gt;
The set &amp;ldquo;REASSURE_c25519_arithm_6k_100 full traces.trs&amp;rdquo; contains the full 100 traces (before division).&lt;br&gt;
&lt;br&gt;
Each traces is in the TRS format that is described under the following links:&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FRiscure%2Fpython-trsfile&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350343476&amp;amp;sdata=v78Tofs4%2BWvvSYhtqF7dW2uaU1nanllTXA5RyGshjWU%3D&amp;amp;reserved=0"&gt;https://github.com/Riscure/python-trsfile&lt;/a&gt;&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FRiscure%2Fjava-trsfile&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350353467&amp;amp;sdata=Nw%2FAamSU1RQaoCeIC80786IKn4f%2BuOl7wfyjNk5R1C4%3D&amp;amp;reserved=0"&gt;https://github.com/Riscure/java-trsfile&lt;/a&gt;&lt;br&gt;
&lt;a href="https://eur03.safelinks.protection.outlook.com/?url=https%3A%2F%2Fgithub.com%2FRiscure%2FJlsca&amp;amp;data=02%7C01%7Cdavide.bellizia%40uclouvain.be%7C8c9e51578a42428bd87008d80c926b2f%7C7ab090d4fa2e4ecfbc7c4127b4d582ec%7C0%7C0%7C637273171350353467&amp;amp;sdata=sVPz0gh96ivEqMNxUNN4C36RV9ulAE%2BOu5DQ0w44Pic%3D&amp;amp;reserved=0"&gt;https://github.com/Riscure/Jlsca&lt;/a&gt;&lt;br&gt;
&lt;br&gt;
Moreover, note that each trs file include a short description inside the file itself.&lt;/p&gt;</subfield>
  </datafield>
  <datafield tag="773" ind1=" " ind2=" ">
    <subfield code="n">doi</subfield>
    <subfield code="i">isVersionOf</subfield>
    <subfield code="a">10.5281/zenodo.3609788</subfield>
  </datafield>
  <datafield tag="024" ind1=" " ind2=" ">
    <subfield code="a">10.5281/zenodo.3609789</subfield>
    <subfield code="2">doi</subfield>
  </datafield>
  <datafield tag="980" ind1=" " ind2=" ">
    <subfield code="a">dataset</subfield>
  </datafield>
</record>
331
143
views
downloads
All versions This version
Views 331331
Downloads 143143
Data volume 790.8 GB790.8 GB
Unique views 293293
Unique downloads 6464

Share

Cite as