Breaking Symmetric White-box Algorithms using CPA and DFA (A32b)
White-box Cryptography tries to implement secure cryptographic algorithms so that an omnipotent attacker cannot find the correct key even with complete control over a system, e.g. when running a cryptographic algorithm with a secret key on a smartphone or computer. Some white-box implementations can be broken using Correlation Power Analysis (CPA) and Differential Fault Analysis (DFA) attacks. After a quick introduction to CPA and DFA, this session will show how to break such weak white-box AES implementations in a live-hacking session.