Skip to main content
Go to the home page of the European Commission (opens in new window)
English English
CORDIS - EU research results
CORDIS
CORDIScovery podcast 50th episode CORDIScovery podcast 50th episode

Generation and Verification of Masking Countermeasures Against Side-Channel Attacks

Project description

DE EN ES FR IT PL

Enhancing cryptographic implementation and verification methods

Cryptography is crucial for safeguarding communications and record integrity, but when applied to embedded devices, cryptographic schemes can be vulnerable to side-channel attacks. Countermeasures’ current security level is insufficient, and opinions differ on cryptographic application assessment security. The EU-funded AMAskZONE project aims to develop a toolbox for designing and verifying practical cryptographic implementations with improved security. The project will create new compilers to convert high-level algorithms into secure implementations for specific devices and expand formal verification’s boundaries for industrial use with device characterisation and polynomial complexity. The project seeks to enhance the security of embedded devices through improved cryptographic implementations and verification methods.

Objective

Cryptography is everywhere in our daily life to ensure the confidentiality and authentication of our communications and the integrity of our records. Although there are strong expectations regarding the security of cryptographic schemes against black-box attackers whose knowledge is restricted to a few inputs or outputs, the security of their implementations is less challenged. However, once implemented on embedded devices, cryptographic schemes become vulnerable to powerful side-channel attacks. The latter additionally exploit the physical leakage (e.g. power consumption) released by the device to recover the manipulated secrets. With cheap equipment, side-channel attacks may yield tremendous damage (e.g. full key recovery) within seconds. Nevertheless, the current security level of countermeasures is not yet close to that achieved in the black-box model.

The community is divided on how to assess the security of cryptographic implementations. From practitioners’ perspective, they need to be confronted with concrete side-channel attacks directly on embedded devices. Conversely, theorists consider that such an empirical approach is not portable and does not yield concrete security levels (e.g. not all attacks can be tested). Therefore, they instead investigate security proofs based on abstract leakage models, although the latter are often too far removed from reality to yield practical security.

In this project, I plan to combine the advantages of both worlds with a toolbox to generate and verify cryptographic implementations with practical security. Namely, I aim to:
(i) design new compilers to turn any high-level algorithm into an efficient implementation proven secure for identified concrete devices,
(ii) push the limits of formal verification with device characterization and polynomial complexity for industrial use.

The main challenge of AMAskZONE is to design and verify cryptographic implementations so that they achieve measurable practical security.

Fields of science (EuroSciVoc)

CORDIS classifies projects with EuroSciVoc, a multilingual taxonomy of fields of science, through a semi-automatic process based on NLP techniques. See: The European Science Vocabulary.

You need to log in or register to use this function

Keywords

Project’s keywords as indicated by the project coordinator. Not to be confused with the EuroSciVoc taxonomy (Fields of science)

Programme(s)

Multi-annual funding programmes that define the EU’s priorities for research and innovation.

Topic(s)

Calls for proposals are divided into topics. A topic defines a specific subject or area for which applicants can submit proposals. The description of a topic comprises its specific scope and the expected impact of the funded project.

Funding Scheme

Funding scheme (or “Type of Action”) inside a programme with common features. It specifies: the scope of what is funded; the reimbursement rate; specific evaluation criteria to qualify for funding; and the use of simplified forms of costs like lump sums.

HORIZON-ERC - HORIZON ERC Grants

See all projects funded under this funding scheme

Call for proposal

Procedure for inviting applicants to submit project proposals, with the aim of receiving EU funding.

(opens in new window) ERC-2022-STG

See all projects funded under this call

Host institution

CRYPTOEXPERTS SAS
Net EU contribution

Net EU financial contribution. The sum of money that the participant receives, deducted by the EU contribution to its linked third party. It considers the distribution of the EU financial contribution between direct beneficiaries of the project and other types of participants, like third-party participants.
€ 1 495 250,00
Address
BOULEVARD DES CAPUCINES 41
75002 Paris
France

See on map
SME

The organization defined itself as SME (small and medium-sized enterprise) at the time the Grant Agreement was signed.
Yes
Region
Ile-de-France Ile-de-France Paris
Activity type
Private for-profit entities (excluding Higher or Secondary Education Establishments)
Links
Total cost

The total costs incurred by this organisation to participate in the project, including direct and indirect costs. This amount is a subset of the overall project budget.
€ 1 495 250,00

Beneficiaries (1)

Share this page Share this page on social networks

Download Download the content of the page

Last update: 23 December 2022

My Booklet

Permalink: https://cordis.europa.eu/project/id/101077506

European Union, 2025

My booklet 0 0