Security testing for hardware product : the security evaluations practice

Transcription

1 Alain MERLE CESTI LETI CEA Grenoble Security testing for hardware product : the security evaluations practice DCIS/SASTI/CESTI 1

2 Abstract «What are you doing in ITSEFs?» Testing, Security testing, Attacks, Evaluations, Common Criteria, Certification, Security evaluations: The French Certification Scheme The Common Criteria Smartcards evaluations Smartcard security testing Strategy Attacks DCIS/SASTI/CESTI 2

3 Common Criteria The basic ideas Describe what is the security of a product Verifythat the developer has done what it was supposed to do (and only that) Test (functional and attacks) the product Verify environmental constraints DCIS/SASTI/CESTI 3

4 A standardized, objective and efficient Security Analysis Method (ISO IS 15408) An International Recognition through Mutual Recognition Arrangements. In Europe, mostly used for smartcards Integrated Circuits IC with embedded software DCIS/SASTI/CESTI 4

5 CESTI LETI Information Technology Security Evaluation Facilities ITSEF of the French Certification Scheme Area : hardware and embedded software Organisme d accréditation COFRAC Accréditation Organisme de Certification : D.C.S.S.I. Agrément Certification Smartcards Security equipments Level: Up to EAL7 Localization: Grenoble Part of the biggest French Research center in Microelectronics CESTI Centre d Evaluation de la Sécurité des Technologies de l Information Certificat Le Schéma Français de Certification DCIS/SASTI/CESTI 5

6 Smartcard evaluation Common Criteria, EAL4+ level High Security level (banking applications) White box evaluation Design information Source code A table defining the «attack potential» Time, expertise, equipment, knowledge, The card must resist to the «maximum» (ie all realistic attacks) DCIS/SASTI/CESTI 6

7 What kind of testing? Functional testing but security oriented Are the Security Functions working as specified? Attacks Independent vulnerability analysis Higher levels (VLA.4): adaptation of the classical attack methods to the specificities of the product DCIS/SASTI/CESTI 7

8 Test strategy (Attacks) State of the art R&D Potential vulnerabilities Add Remove Customize Attacks and Potential Vulnerabilities Add Remove Customize Evaluation tasks Attacks and Potential Vulnerabilities Add Remove Customize Attacks and Strategies Tests DCIS/SASTI/CESTI 8

9 Attacks on smartcards Physical (Silicon related) Memories Access to internal signals (probing) Observation: Side Channel Analysis SPA, EMA, DPA, DEMA Perturbations: inducing errors Cryptography (DFA) Generating errors IO errors (reading, writing) Program disruption (jump, skip, change instruction) Specifications/implementation related attacks Protocol, overflows, errors in programming, DCIS/SASTI/CESTI 9

10 Optical reading of ROM Reverse Engineering Probing : MEB Probing : laser preparation DCIS/SASTI/CESTI 10

11 Modification : FIB Modification : Laser cut DCIS/SASTI/CESTI 11

12 EM signal analysis DCIS/SASTI/CESTI 12

13 SPA/EMA Analysis DES AES DCIS/SASTI/CESTI 13

14 SPA/DPA analysis DCIS/SASTI/CESTI 14

15 Cartography Electro-magnetic signal during DES execution. Hardware DES Differential signal DCIS/SASTI/CESTI 15

16 Cartography DCIS/SASTI/CESTI 16

17 Perturbations examples Branch on error Initializations valid = TRUE; If got ^= expected then valid = FALSE ; If valid Then critical processing; Non critical processing; If not authorized then goto xxx; Critical processing; Re-reading after integrity checking Memory integrity checking; Non critical processing; Data 1 reading; Critical processing; Data 2 reading; Critical processing; DCIS/SASTI/CESTI 17

18 What is requested from a lab? Good knowledge of the state of the art Not always published Internal R&D on attacks Equipment Competences Multi-competences Cryptography, microelectronics, signal processing, lasers, etc Competence areas defined in the French Scheme Hardware (IC, IC with embedded software) Software (Networks, OS, ) DCIS/SASTI/CESTI 18

19 Test benches DCIS/SASTI/CESTI 19

20 Competences Microelectronic Testbenches Software DCIS/SASTI/CESTI 20

21 Some rules Security is the whole product: IC + software The IC must hide itself Critical processing,sensitive data handling,consistency checking, Memory access, The IC must control itself Consistency checking,audits, log, But some attacks are now dedicated to these counter-measures DCIS/SASTI/CESTI 21

22 CONCLUSION (1) Evaluation is Rigorous & normalized process But attacks require specific «human» skills Attack is Gaining access to secret/forbidden operations Free to «play» with the abnormal conditions An error is not an attack But an error can often be used in attacks DCIS/SASTI/CESTI 22

23 CONCLUSION (2) The evaluation guarantees that The product is working as specified It has a good resistance level Perfection as absolute security does not exist DCIS/SASTI/CESTI 23