Your search keyword '"UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique"' showing total 26 results

1. From Improved Leakage Detection to the Detection of Points of Interests in Leakage Traces

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Durvaux, François, Standaert, François-Xavier, Advances in Cryptology - 35th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT 2016), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Durvaux, François, Standaert, François-Xavier, and Advances in Cryptology - 35th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT 2016)

Abstract

Leakage detection usually refers to the task of identifying data-dependent information in side-channel measurements, independent of whether this information can be exploited. Detecting Points-Of-Interest (POIs) in leakage traces is a complementary task that is a necessary first step in most side-channel attacks, where the adversary wants to turn this information into (e.g.) a key recovery. In this paper, we discuss the differences between these tasks, by investigating a popular solution to leakage detection based on a t-test, and an alternative method exploiting Pearson's correlation coecient. We rst show that the simpler t-test has better sampling complexity, and that its gain over the correlation-based test can be predicted by looking at the Signal-to-Noise Ratio (SNR) of the leakage partitions used in these tests. This implies that the sampling complexity of both tests relates more to their implicit leakage assumptions than to the actual statistics exploited.We also put forward that this gain comes at the cost of some intuition loss regarding the localization of the exploitable leakage samples in the traces, and their informativeness. Next, and more importantly, we highlight that our reasoning based on the SNR allows dening an improved t-test with signicantly faster detection speed (with approximately 5 times less measurements in our experiments), which is therefore highly relevant for evaluation laboratories. We nally conclude that whereas t-tests are the method of choice for leakage detection only, correlation-based tests exploiting larger partitions are preferable for detecting POIs.We conrm this intuition by improving automated tools for the detection of POIs in the leakage measurements of a masked implementation, in a black box manner and without key knowledge, thanks to a correlation-based leakage detection test.

Published

2016

2. A Framework for the Analysis and Evaluation of Algebraic Fault Attacks on Lightweight Block Ciphers

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Zhang, Fan, Guo, Shize, Zhao, Xinjie, Wang, Tao, Yang, Jian, Standaert, François-Xavier, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Zhang, Fan, Guo, Shize, Zhao, Xinjie, Wang, Tao, Yang, Jian, and Standaert, François-Xavier

Abstract

Algebraic fault analysis (AFA), which combines algebraic cryptanalysis with fault attacks, has represented serious threats to the security of lightweight block ciphers. Inspired by an earlier framework for the analysis of side-channel attacks presented at EUROCRYPT 2009, a new generic framework is proposed to analyze and evaluate algebraic fault attacks on lightweight block ciphers. We interpret AFA at three levels: the target, the adversary and the evaluator. We describe the capability of an adversary in four parts: the fault injector, the fault model describer, the cipher describer and the machine solver. A formal fault model is provided to cover most of current fault attacks. Different strategies of building optimal equation set are also provided to accelerate the solving process. At the evaluator level, we consider the approximate information metric and the actual security metric. These metrics can be used to guide adversaries, cipher designers and industrial engineers. To verify the feasibility of the proposed framework, we make a comprehensive study of AFA on an ultra-lightweight block cipher called LBlock. Three scenarios are exploited which include injecting a fault to encryption, to key scheduling, or modifying the round number or counter. Our best results show that a single fault injection is enough to recover the master key of LBlock within the affordable complexity in each scenario. To verify the generic feature of the proposed framework, we apply AFA to three other block ciphers, i.e., DES, PRESENT and Twofish. The results demonstrate that our framework can be used for different ciphers with different structures.

Published

2016

3. Towards Stream Ciphers for Efficient FHE with Low-Noise Ciphertexts

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Pierrick, Méaux, Journault, Anthony, Standaert, François-Xavier, Carlet, Claude, Advances in Cryptology - 35th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT 2016), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Pierrick, Méaux, Journault, Anthony, Standaert, François-Xavier, Carlet, Claude, and Advances in Cryptology - 35th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT 2016)

Abstract

Symmetric ciphers purposed for Fully Homomorphic Encryption (FHE) have recently been proposed for two main reasons. First, minimizing the implementation (time and memory) overheads that are inherent to current FHE schemes. Second, improving the homomorphic capacity, i.e. the amount of operations that one can perform on homomorphic ciphertexts before bootstrapping, which amounts to limit their level of noise. Existing solutions for this purpose suggest a gap between block ciphers and stream ciphers. The first ones typically allow a constant but small homomorphic capacity, due to the iteration of rounds eventually leading to complex Boolean functions (hence large noise). The second ones typically allow a larger homomorphic capacity for the first ciphertext blocks, that decreases with the number of ciphertext blocks (due to the increasing Boolean complexity of the stream ciphers’ output). In this paper, we aim to combine the best of these two worlds, and propose a new stream cipher construction that allows constant and small(er) noise. Its main idea is to apply a Boolean (filter) function to a public bit permutation of a constant key register, so that the Boolean complexity of the stream cipher outputs is constant. We also propose an instantiation of the filter function designed to exploit recent (3rd-generation) FHE schemes, where the error growth is quasi-additive when adequately multiplying ciphertexts with the same amount of noise. In order to stimulate further investigation, we then specify a few instances of this stream cipher, for which we provide a preliminary security analysis. We finally highlight the good properties of our stream cipher regarding the other goal of minimizing the time and memory complexity of calculus delegation (for 2nd-generation FHE schemes). We conclude the paper with open problems related to the large design space opened by these new constructions.

Published

2016

4. Assessment of air quality microsensors versus reference methods: The EuNetAir joint exercise

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Borrego, C., Costa, A.M., Amorin, M., Coutinho, M., Karatsas, K., Sioumis, Th., Katsifarakis, N., Konstantinidis, K., De Vito, S., Esposito, E., Smith, P., André, Nicolas, Gérard, Pierre, Francis, Laurent, Castell, N., Schneider, P., Viana, M., Minguillon, M.C., Reimringer, W., Otjes, R.P., Sicard, O.v., Pohle, R., Elen, B., Suriano, D., Pfister, V., Prato, M., Dipinto, S., Penza, M., UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Borrego, C., Costa, A.M., Amorin, M., Coutinho, M., Karatsas, K., Sioumis, Th., Katsifarakis, N., Konstantinidis, K., De Vito, S., Esposito, E., Smith, P., André, Nicolas, Gérard, Pierre, Francis, Laurent, Castell, N., Schneider, P., Viana, M., Minguillon, M.C., Reimringer, W., Otjes, R.P., Sicard, O.v., Pohle, R., Elen, B., Suriano, D., Pfister, V., Prato, M., Dipinto, S., and Penza, M.

Abstract

The 1st EuNetAir Air Quality Joint Intercomparison Exercise organized in Aveiro (Portugal) from 13th–27th October 2014, focused on the evaluation and assessment of environmental gas, particulate matter (PM) and meteorological microsensors, versus standard air quality reference methods through an experimental urban air quality monitoring campaign. The IDAD-Institute of Environment and Development Air Quality Mobile Laboratory was placed at an urban traffic location in the city centre of Aveiro to conduct continuous measurements with standard equipment and reference analysers for CO, NOx, O3, SO2, PM10, PM2.5, temperature, humidity, wind speed and direction, solar radiation and precipitation. The comparison of the sensor data generated by different microsensor-systems installed side-by-side with reference analysers, contributes to the assessment of the performance and the accuracy of microsensor-systems in a real-world context, and supports their calibration and further development. The overall performance of the sensors in terms of their statistical metrics and measurement profile indicates significant differences in the results depending on the platform and on the sensors considered. In terms of pollutants, some promising results were observed for O3 (r2: 0.12–0.77), CO (r2: 0.53–0.87), and NO2 (r2: 0.02–0.89). For PM (r2: 0.07–0.36) and SO2 (r2: 0.09–0.20) the results show a poor performance with low correlation coefficients between the reference and microsensor measurements. These field observations under specific environmental conditions suggest that the relevant microsensor platforms, if supported by the proper post processing and data modelling tools, have enormous potential for new strategies in air quality control.

Published

2016

5. Unequally-spaced fast Laplace transform for Green's function evaluation

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Gueuning, Quentin, Craeye, Christophe, Oestges, Claude, 2016 URSI International Symposium on Electromagnetic Theory (EMTS), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Gueuning, Quentin, Craeye, Christophe, Oestges, Claude, and 2016 URSI International Symposium on Electromagnetic Theory (EMTS)

Abstract

A fast method for the radiation analysis of arbitrary oriented planes is presented. It combines an adaptive spectral integration scheme and a recently proposed unequally-spaced fast Laplace transform algorithm. It is illustrated on the free-space Green's function through an example where an important speed-up factor is evaluated compared to the brute force spectral integration.

Published

2016

6. An indoor localization technique based on ultra-wideband AoD/AoA/ToA estimation

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Hanssens, Brecht, Plets, David, Tanghe, Emmeric, Oestges, Claude, Gaillot, Davy P., Lienard, Martine, Martens, Luc, Joseph, Wout, 2016 IEEE International Symposium on Antennas and Propagation & USNC/URSI National Radio Science Meeting, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Hanssens, Brecht, Plets, David, Tanghe, Emmeric, Oestges, Claude, Gaillot, Davy P., Lienard, Martine, Martens, Luc, Joseph, Wout, and 2016 IEEE International Symposium on Antennas and Propagation & USNC/URSI National Radio Science Meeting

Abstract

This work presents a novel localization scheme based on Ultra-Wideband (UWB) channel sounding, employing a triangulation method that makes use of the geometrical properties of propagation paths, such as time of arrival (ToA), angle of departure (AoD) and angle of arrival (AoA). An extension to the high-resolution RiMAX algorithm was developed, facilitating the analysis of UWB frequency-dependent propagation parameters, allowing for the localization of a target node in Line-of-Sight (LoS), Obstructed-LoS (OLoS), and Non-LoS (NLoS) scenarios.

Published

2016

7. Stabilization of the modelling of a radio-frequency quadrupole based on quasi-Helmoltz projectors

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, Andriulli, Francesco, Craeye, Christophe, International Conference on Electromagnetics in Advanced Applications, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, Andriulli, Francesco, Craeye, Christophe, and International Conference on Electromagnetics in Advanced Applications

Abstract

This paper presents a stabilization ofa Radio-Frequency Quadrupole simulation based on the quasi-Helmholtz projectors. A boundary element method applied to this case undergoes a low-frequency breakdown i.e the associated system of equations becomes increasingly ill-conditioned fordecreasing frequencies. This in practice implies that the convergence of iterative methods which are used to solve the linear system is poor. This paper reports that a quasi-Helmholtz projectors based stabilization is sucient to handle the level of realismrequired by applications.

Published

2015

8. Tubers are neither static nor discrete

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Peters, Jurriaan M., Prohl, Anna K., Tomas-Fernandez, Xavier K., Taquet, Maxime, Scherrer, Benoit, Prabhu, Sanjay P., Lidov, Hart G. W., Singh, Jolene M., Jansen, Floor E., Braun, Kees P.J., Sahin, Mustafa, Warfield, Simon Keith, Stamm, Aymeric, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Peters, Jurriaan M., Prohl, Anna K., Tomas-Fernandez, Xavier K., Taquet, Maxime, Scherrer, Benoit, Prabhu, Sanjay P., Lidov, Hart G. W., Singh, Jolene M., Jansen, Floor E., Braun, Kees P.J., Sahin, Mustafa, Warfield, Simon Keith, and Stamm, Aymeric

Abstract

Objective: To assess the extent and evolution of tissue abnormality of tubers, perituber tissue, and normal-appearing white matter (NAWM) in patients with tuberous sclerosis complex using serial diffusion tensor imaging. Methods: We applied automatic segmentation based on a combined global-local intensity mixture model of 3T structural and 35 direction diffusion tensor MRIs (diffusion tensor imaging) to define 3 regions: tuber tissue, an equal volume perituber rim, and the remaining NAWM. For each patient, scan, lobe, and tissue type, we analyzed the averages of mean diffusivity (MD) and fractional anisotropy (FA) in a generalized additive mixed model. Results: Twenty-five patients (mean age 5.9 years; range 0.5-24.5 years) underwent 2 to 6 scans each, totaling 70 scans. Average time between scans was 1.2 years (range 0.4-2.9). Patient scans were compared with those of 73 healthy controls. FA values were lowest, and MD values were highest in tubers, next in perituber tissue, then in NAWM. Longitudinal analysis showed a positive (FA) and negative (MD) correlation with age in tubers, perituber tissue, and NAWM. All 3 tissue types followed a biexponential developmental trajectory, similar to the white matter of controls. An additional qualitative analysis showed a gradual transition of diffusion values across the tissue type boundaries. Conclusions: Similar to NAWM, tuber and perituber tissues in tuberous sclerosis complex undergo microstructural evolution with age. The extent of diffusion abnormality decreases with distance to the tuber, in line with known extension of histologic, immunohistochemical, and molecular abnormalities beyond tuber pathology.

Published

2015

9. Live demonstration: Microsystem integration of a palladium-based MEMS hydrogen gas sensor

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Walewyns, Thomas, Emmerechts, Carl, Gérard, Pierre, André, Nicolas, Francis, Laurent, 2015 IEEE Sensors, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Walewyns, Thomas, Emmerechts, Carl, Gérard, Pierre, André, Nicolas, Francis, Laurent, and 2015 IEEE Sensors

Abstract

In this live demonstration, we present the microsystem integration of a palladium-based MEMS capacitive hydrogen gas sensor and its sub-components. The system includes all the elements of the data acquisition chain. The MEMS device is interfaced by a capacitance-to-digital converter for signal conditioning, and a microcontroller associated to a radio for both data processing and transmitting. Moreover a specific housing has been designed with trade consideration, including a Porex® microporous polymer membrane for moisture protection. Finally, a dedicated graphic user interface has been implemented with assisted calibration or recording procedures, and an oscilloscope for data monitoring. Thanks to compatibilities with ZigBee or Bluetooth low energy protocols, this system is directly dedicated to interconnected sensor nodes applications within the Internet-of-Things vision.

Published

2015

10. Comparing Approaches to Rank Estimation for Side-Channel Security Evaluations

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Poussier, Romain, Grosso, Vincent, Standaert, François-Xavier, 14th International Conference on Smart card Research and Advanced Applications (CARDIS 2015), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Poussier, Romain, Grosso, Vincent, Standaert, François-Xavier, and 14th International Conference on Smart card Research and Advanced Applications (CARDIS 2015)

Abstract

Rank estimation is an important tool for side-channel evaluations laboratories. It allows determining the remaining security after an attack has been performed, quantied as the time complexity required to brute force the key given the leakages. Several solutions to rank estimation have been introduced in the recent years. In this paper, we rst clarify the connections between these solutions, by organizing them according to their (maximum likelihood or weak maximum likelihood) strategy and whether they take as argument a side-channel distinguishers' output or some evaluation metrics. This leads us to introduce new combinations of these approaches, and to discuss the use of weak maximum likelihood strategies for suboptimal but highly parallel enumeration. Next, we show that the dierent approaches to rank estimation can also be implemented with dierent mixes of very similar tools (e.g. histograms, convolutions, combinations and subsampling). Eventually, we provide various experiments allowing to discuss the pros and cons of these dierent approaches, hence consolidating the literature on this topic.

Published

2015

11. Towards Fresh and Hybrid Re-Keying Schemes with Beyond Birthday Security

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Dobraunig, Christoph, Koeune, François, Mangard, Stefan, Mendel, Florian, Standaert, François-Xavier, 14th International Conference on Smart Card Research and Advanced Applications (CARDIS 2015), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Dobraunig, Christoph, Koeune, François, Mangard, Stefan, Mendel, Florian, Standaert, François-Xavier, and 14th International Conference on Smart Card Research and Advanced Applications (CARDIS 2015)

Abstract

Fresh re-keying is a type of protocol which aims at splitting the task of protecting an encryption/authentication scheme against side-channel attacks in two parts. One part, a re-keying function, has to satisfy a minimum set of properties (such as good diusion), and is based on an algebraic structure that is easy to protect against side-channel attacks with countermeasures such as masking. The other part, a block cipher, brings resistance against mathematical cryptanalysis, and only has to be secure against single measurement attacks. Since fresh re-keying schemes are cheap and stateless, they are convenient to use in practice and do not require any synchronization between communication parties. However, it has been shown that their rst instantiation (from Africacrypt 2010) only provides birthday security because of a (mathematical only) collision-based key recovery attack recently put forward by Dobraunig et al. (CARDIS 2014). In this paper, we provide two provably secure (in the ideal cipher model) solutions to avoid such collision attacks. The rst one is based on classical block ciphers, but does not achieve beyond birthday CPA security (i.e. it only provably prevents the CARDIS 2014 key recovery attack) and requires an additional block cipher execution in the protocol. The second one is based on tweakable block ciphers and provides tight CPA security while also being more ecient. As a complement, we also show that our reasoning extends to hybrid schemes, where the communication party to protect against side-channel attacks is stateful. We illustrate this claim by describing a collision attack against an example of a hybrid scheme patented by Kocher, and presenting a tweak leading to beyond birthday security. We conclude the paper by discussing the use of fresh/hybrid re-keying for encryption and authentication, together with a cautionary note on their side-channel resistance.

Published

2015

12. Design of a 3D UWB linear array of Vivaldi antennas devoted to water leaks detection

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Alkhalifeh, Khaldoun, Craeye, Christophe, Lambot, Sébastien, GPR2014, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Alkhalifeh, Khaldoun, Craeye, Christophe, Lambot, Sébastien, and GPR2014

Abstract

The design of a linear Vivaldi antenna array for water leaks detection is presented. We show the 3D antenna design with the bandwidth of interest between 250-2000 MHz, which is necessary for sufficient depth penetration and high resolution imaging and characterization. New modifications on features with respect to the traditional Vivaldi antenna design are discussed. The radiation patterns show that the directivity increases with frequency. Near-fields in E and H planes in the front of the antenna are depicted and display smooth spreading over a sufficiently narrow area of radiation exposure. The impact of the ground on the antenna is analyzed. The complete design of a linear array of 4 elements is presented, and the mutual coupling between elements is illustrated.

Published

2014

13. Simulation of a radio frequency quadrupole with the Method of Moments

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, Craeye, Christophe, Vandeplassche, Dirk, European Conference on Antennas and Propagation, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, Craeye, Christophe, Vandeplassche, Dirk, and European Conference on Antennas and Propagation

Abstract

A Radio Frequency Quadrupole (RFQ) is an essential part of linear accelerator (LINAC). It is situated at the very beginning of the accelerator and has three important functions: focusing, bunching and acceleration. The RFQ prepares the beam before its injection into the strong acceleration cavities and so it impacts the behaviour of the beam in the whole accelerator. Hence, it must be designed as reliable and efficient as possible. At the present time, the simulation of the electromagnetic fields and beam dynamics are carried out with some approximations in order to obtain a reasonable computation time. However, faster and more accurate solvers would first allow us to better understand the RFQ technology for high beam currents and second would potentially allow us to perform some numerical optimization. Our main objective is to develop a fast and accurate solver for the electromagnetic fields and for the beam dynamics. Our laboratory is specialized in fast methods for the electromagnetic fields simulation of antennas. Our solvers are based on the Method of Moments (MoM) in the frequency domain. This method could be applied as well for the electromagnetic fields simulation in accelerating cavities. One of the main advantages of the MoM in comparison to finite elements is that it requires only unknowns on the surface of the cavity. For high beam current, it would be very convenient to be able to calculate simultaneously the equations of motion and the Maxwell’s equations since the fields scattered due to the space charge can be as strong as the source fields. Such a simulation is so-called a self-consistent simulation.

Published

2014

14. Low-cost near field pattern measurement technique for aperture array characterization

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, de Lera Acedo, Eloy, Razavi-Ghods, Nima, Gonzalez Ovejero, David, Craeye, Christophe, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Raucy, Christopher, de Lera Acedo, Eloy, Razavi-Ghods, Nima, Gonzalez Ovejero, David, and Craeye, Christophe

Abstract

This paper describes a low-cost innovative technique to characterize aperture arrays based on a near field pattern measurement. This measurement is used to validate a numerical method code, based on the method of moments, capable of realizing accurate electromagnetic simulations of very large non-regular arrays containing up to thousands of elements which are tens of wavelengths in diameter. A practical application of the technique and the code can be found for low frequency aperture arrays in radio astronomy applications, such as the SKA telescope.

Published

2013

15. A MEMS-based xylophone bar magnetometer for pico satellites

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Ranvier, S., Rochus, V., Druart, Sylvain, Lamy, H., Rochus, P., Francis, Laurent, 61st International Astronautical Congress 2010 (IAC 2010), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Ranvier, S., Rochus, V., Druart, Sylvain, Lamy, H., Rochus, P., Francis, Laurent, and 61st International Astronautical Congress 2010 (IAC 2010)

Abstract

Initially studied and developed by students in universities, the very small pico satellites (with a mass lower than 1 Kg) are more and more considered for science applications. In particular they will be used in constellations of small spacecraft for remote sensing of various regions of the magnetosphere. They require a payload with specific size, weight and power consumption. In order to respond to this demand, new instruments have to be developed. Those instruments should exhibit at least the same performance as those used in larger satellites while fulfilling the specific requirements imposed by the size of the satellites. For this reason, we currently develop a xylophone bar magnetometer (XBM) based on micro-electromechanical systems (MEMS) with integrated detector electronics. The principle of this magnetometer is based on classical resonating xylophone bar. A sinusoidal current oscillating at the fundamental transverse resonant frequency of the bar is applied to the bar. When an external magnetic field is present, the resulting Lorentz force causes the bar to vibrate at its fundamental frequency with a displacement directly proportional to the amplitude in one direction of the ambient magnetic field. When designing a MEMS XBM, the detection method is a crucial aspect. The measurement method largely influences the geometry of the magnetometer as well as the manufacturing technology. Due to the constraints in terms of size, weight and power consumption, the two most promising measurement methods identified are capacitive and piezoelectric. Designs which include these measurement techniques are presented and simulated under realistic conditions. A new configuration of PZT/Pt structure is introduced and leads to much better sensitivity than the traditional Pt/PZT/Pt sandwich structure. The principle of the electronic circuits enabling high sensitivity and low power consumption is presented. Finally, a design including lateral electrodes for capacitive measurement

Published

2010

16. Discriminacy of the minimum range approach to blind separation of bounded sources.

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Vrins, Frédéric, Pham, Dinh-Tuan, 14th European Symposium on Artificial Neural Networs (ESANN 2006), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Vrins, Frédéric, Pham, Dinh-Tuan, and 14th European Symposium on Artificial Neural Networs (ESANN 2006)

Abstract

The Blind Source Separation (BSS) problem is often solved by maximizing objective functions reflecting the statistical dependency between outputs. Since global maximization may be difficult without exhaustive search, criteria for which it can be proved that all the local maxima correspond to an acceptable solution of the BSS problem have been developed. These criteria are used in a deflation procedure. This paper shows that the “spurious maximum free” property still holds for the minimum range approach when the sources are extracted simultaneously.

Published

2006

17. Apprentissage par projet en électricité (partie 1): Conception et réalisation d’un système de filoguidage électromagnétique

Author

UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Vrins, Frédéric, De Vroey, Laurent, Labrique, Francis, Trullemans, Charles, CETSIS-EEA, UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Vrins, Frédéric, De Vroey, Laurent, Labrique, Francis, Trullemans, Charles, and CETSIS-EEA

Abstract

La formation d’ingénieur à l’Université catholique de Louvain a été réorganisée selon un principe de pédagogie active (apprentissage par problèmes et par projets). Ainsi, il est proposé aux étudiants qui entament leur spécialisation en électricité ou en électromécanique, un projet leur permettant d’aborder à la fois les notions d’électromagnétisme et les notions de circuits électriques et de faire le lien entre ces deux matières. Dans cet article, nous présentons en détails un de ces projets, consistant pour les étudiants à réaliser un capteur de suivi de ligne, ainsi que son électronique de traitement. Des variantes sont également exposées, s’articulant autour de différents types de capteurs intégrés. Nous détaillons les moyens et l’approche mis en oeuvre et tirons les conclusions relatives à l’organisation de ces projets.

Published

2003

18. Towards Stream Ciphers for Efficient FHE with Low-Noise Ciphertexts

Author

Pierrick, Méaux, Journault, Anthony, Standaert, François-Xavier, Carlet, Claude, Advances in Cryptology - 35th Annual International Conference on the Theory and Applications of Cryptographic Techniques (EUROCRYPT 2016), Construction and Analysis of Systems for Confidentiality and Authenticity of Data and Entities (CASCADE), Département d'informatique - ENS Paris (DI-ENS), École normale supérieure - Paris (ENS-PSL), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-École normale supérieure - Paris (ENS-PSL), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-Centre National de la Recherche Scientifique (CNRS)-Inria de Paris, Institut National de Recherche en Informatique et en Automatique (Inria), Université Paris sciences et lettres (PSL), Laboratoire d'informatique de l'école normale supérieure (LIENS), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS), Université Catholique de Louvain = Catholic University of Louvain (UCL), Université Paris 8 Vincennes-Saint-Denis - Département de Mathématiques, Université Paris 8 Vincennes-Saint-Denis (UP8), Laboratoire Analyse, Géométrie et Applications (LAGA), Université Paris 8 Vincennes-Saint-Denis (UP8)-Université Paris 13 (UP13)-Institut Galilée-Centre National de la Recherche Scientifique (CNRS), Marc Fischlin, Jean-Sébastien Coron, Inria de Paris, Institut National de Recherche en Informatique et en Automatique (Inria)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-Département d'informatique de l'École normale supérieure (DI-ENS), École normale supérieure - Paris (ENS Paris), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Institut National de Recherche en Informatique et en Automatique (Inria)-Centre National de la Recherche Scientifique (CNRS)-École normale supérieure - Paris (ENS Paris), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Centre National de la Recherche Scientifique (CNRS), Université Paris 8 Vincennes-Saint-Denis (UP8)-Centre National de la Recherche Scientifique (CNRS)-Institut Galilée-Université Paris 13 (UP13), UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique, Centre National de la Recherche Scientifique (CNRS)-Institut National de Recherche en Informatique et en Automatique (Inria)-École normale supérieure - Paris (ENS Paris), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Centre National de la Recherche Scientifique (CNRS)-Institut National de Recherche en Informatique et en Automatique (Inria)-École normale supérieure - Paris (ENS Paris), Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)-Centre National de la Recherche Scientifique (CNRS)-Inria de Paris, and Université Paris sciences et lettres (PSL)-Université Paris sciences et lettres (PSL)

Subjects

Differential cryptanalysis, Theoretical computer science, Ciphers, Computer science, T-function, Stream cipher attack, 020206 networking & telecommunications, 0102 computer and information sciences, 02 engineering and technology, Stream ciphers, 01 natural sciences, [INFO.INFO-CR]Computer Science [cs]/Cryptography and Security [cs.CR], 010201 computation theory & mathematics, Ciphertext, 0202 electrical engineering, electronic engineering, information engineering, Fully Homomorphic Encryption (FHE), Correlation attack, Stream cipher, Block size, Key schedule, Computer Science::Cryptography and Security

Abstract

International audience; Symmetric ciphers purposed for Fully Homomorphic Encryption FHE have recently been proposed for two main reasons. First, minimizing the implementation time and memory overheads that are inherent to current FHE schemes. Second, improving the homomorphic capacity, i.e. the amount of operations that one can perform on homomorphic ciphertexts before bootstrapping, which amounts to limit their level of noise. Existing solutions for this purpose suggest a gap between block ciphers and stream ciphers. The first ones typically allow a constant but small homomorphic capacity, due to the iteration of rounds eventually leading to complex Boolean functions hence large noise. The second ones typically allow a larger homomorphic capacity for the first ciphertext blocks, that decreases with the number of ciphertext blocks due to the increasing Boolean complexity of the stream ciphers' output. In this paper, we aim to combine the best of these two worlds, and propose a new stream cipher construction that allows constant and smaller noise. Its main idea is to apply a Boolean filter function to a public bit permutation of a constant key register, so that the Boolean complexity of the stream cipher outputs is constant. We also propose an instantiation of the filter function designed to exploit recent 3rd-generation FHE schemes, where the error growth is quasi-additive when adequately multiplying ciphertexts with the same amount of noise. In order to stimulate further investigation, we then specify a few instances of this stream cipher, for which we provide a preliminary security analysis. We finally highlight the good properties of our stream cipher regarding the other goal of minimizing the time and memory complexity of calculus delegation for 2nd-generation FHE﾿schemes. We conclude the paper with open problems related to the large design space opened by these new constructions.

Published

2016

19. Towards Sound Fresh Re-Keying with Hard (Physical) Learning Problems

Author

Dziembowski, Stefan, Faust, Sebastian, Herold, Gottfried, Journault, Anthony, Masny, Daniel, Standaert, François-Xavier, Advances in Cryptology - 36th International Cryptology Conference (CRYPTO 2016), and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Theoretical computer science, Computer science, Cryptography, 0102 computer and information sciences, 02 engineering and technology, Side-channel attacks, Encryption, Leakage-resilient cryptographic constructions, 01 natural sciences, Secret sharing, Random oracle, Public-key cryptography, Pseudorandom function family, 0202 electrical engineering, electronic engineering, information engineering, Cryptographic constructions, Security level, Stream cipher, Leakage parity, AKA, Block cipher, business.industry, Homomorphic encryption, Fresh re-keying, Symmetric-key algorithm, 010201 computation theory & mathematics, Authentication protocol, 020201 artificial intelligence & image processing, business

Abstract

Most leakage-resilient cryptographic constructions aim at limiting the information adversaries can obtain about secret keys. In the case of asymmetric algorithms, this is usually obtained by secret sharing (aka masking) the key, which is made easy by their algebraic properties. In the case of symmetric algorithms, it is rather key evolution that is exploited. While more efficient, the scope of this second solution is limited to stateful primitives that easily allow for key evolution such as stream ciphers. Unfortunately, it seems generally hard to avoid the need of (at least one) execution of a stateless primitive, both for encryption and authentication protocols. As a result, fresh re-keying has emerged as an alternative solution, in which a block cipher that is hard to protect against side-channel attacks is re-keyed with a stateless function that is easy to mask. While previous proposals in this direction were all based on heuristic arguments, we propose two new constructions that, for the first time, allow a more formal treatment of fresh re-keying. More precisely, we reduce the security of our re-keying schemes to two building blocks that can be of independent interest. The first one is an assumption of Learning Parity with Leakage, which leverages the noise that is available in side-channel measurements. The second one is based on the Learning With Rounding assumption, which can be seen as an alternative solution for low-noise implementations. Both constructions are efficient and easy to mask, since they are key homomorphic or almost key homomorphic.

Published

2016

20. A Framework for the Analysis and Evaluation of Algebraic Fault Attacks on Lightweight Block Ciphers

Author

Fan Zhang, Xinjie Zhao, Tao Wang, Shize Guo, Jian Yang, François-Xavier Standaert, Dawu Gu, and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

021110 strategic, defence & security studies, Theoretical computer science, Differential cryptanalysis, Twofish, Computer Networks and Communications, Computer science, business.industry, 0211 other engineering and technologies, Cryptography, 02 engineering and technology, CryptoMiniSAT, Adversary, Encryption, Lightweight block cipher, Cipher, Linear cryptanalysis, LBlock, 0202 electrical engineering, electronic engineering, information engineering, Algebraic fault analysis (AFA), 020201 artificial intelligence & image processing, Fault model, Safety, Risk, Reliability and Quality, business, Block cipher, Security evaluation

Abstract

Algebraic fault analysis (AFA), which combines algebraic cryptanalysis with fault attacks, has represented serious threats to the security of lightweight block ciphers. Inspired by an earlier framework for the analysis of side-channel attacks presented at EUROCRYPT 2009, a new generic framework is proposed to analyze and evaluate algebraic fault attacks on lightweight block ciphers. We interpret AFA at three levels: 1) the target; 2) the adversary; and 3) the evaluator. We describe the capability of an adversary in four parts: 1) the fault injector; 2) the fault model describer; 3) the cipher describer; and 4) the machine solver. A formal fault model is provided to cover most of current fault attacks. Different strategies of building optimal equation set are also provided to accelerate the solving process. At the evaluator level, we consider the approximate information metric and the actual security metric. These metrics can be used to guide adversaries, cipher designers, and industrial engineers. To verify the feasibility of the proposed framework, we make a comprehensive study of AFA on an ultra-lightweight block cipher called LBlock. Three scenarios are exploited, which include injecting a fault to encryption, to key scheduling, or modifying the round number or counter. Our best results show that a single fault injection is enough to recover the master key of LBlock within the affordable complexity in each scenario. To verify the generic feature of the proposed framework, we apply AFA to three other block ciphers, i.e., Data Encryption Standard, PRESENT, and Twofish. The results demonstrate that our framework can be used for different ciphers with different structures.

Published

2016

21. Comparing Approaches to Rank Estimation for Side-Channel Security Evaluations

Author

Vincent Grosso, Romain Poussier, François-Xavier Standaert, and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Estimation, Mathematical optimization, Computer science, Rank (computer programming), computer.software_genre, Side-channel security, Power analysis, Histogram, Key (cryptography), Data mining, Side channel attack, computer, Jensen's inequality, Time complexity

Abstract

Rank estimation is an important tool for side-channel evaluations laboratories. It allows determining the remaining security after an attack has been performed, quantified as the time complexity required to brute force the key given the leakages. Several solutions to rank estimation have been introduced in the recent years. In this paper, we first clarify the connections between these solutions, by organizing them according to their maximum likelihood or weak maximum likelihood strategy and whether they take as argument a side-channel distinguishers' output or some evaluation metrics. This leads us to introduce new combinations of these approaches, and to discuss the use of weak maximum likelihood strategies for suboptimal but highly parallel enumeration. Next, we show that the different approaches to rank estimation can also be implemented with different mixes of very similar tools e.g. histograms, convolutions, combinations and subsampling. Eventually, we provide various experiments allowing to discuss the pros and cons of these different approaches, hence consolidating the literature on thisi¾?topic.

Published

2015

22. Stabilization of the modelling of a radio-frequency quadrupole based on quasi-Helmoltz projectors

Author

Raucy, Christopher, Andriulli, Francesco, Craeye, Christophe, International Conference on Electromagnetics in Advanced Applications, and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Abstract

This paper presents a stabilization ofa Radio-Frequency Quadrupole simulation based on the quasi-Helmholtz projectors. A boundary element method applied to this case undergoes a low-frequency breakdown i.e the associated system of equations becomes increasingly ill-conditioned fordecreasing frequencies. This in practice implies that the convergence of iterative methods which are used to solve the linear system is poor. This paper reports that a quasi-Helmholtz projectors based stabilization is sucient to handle the level of realismrequired by applications.

Published

2015

23. Towards Fresh and Hybrid Re-Keying Schemes with Beyond Birthday Security

Author

Christoph Dobraunig, François Koeune, Florian Mendel, François-Xavier Standaert, Stefan Mangard, and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Key-recovery attack, Stateless protocol, Authentication, business.industry, Computer science, Mathematical cryptanalysis, Fresh re-ekying, Side-channel attacks, Encryption, Computer security, computer.software_genre, law.invention, Collision attack, law, Block ciphers, Cryptographic hash function, Hybrid re-keying, business, Cryptanalysis, computer, Block cipher

Abstract

Fresh re-keying is a type of protocol which aims at splitting the task of protecting an encryption/authentication scheme against side-channel attacks in two parts. One part, a re-keying function, has to satisfy a minimum set of properties such as good diffusion, and is based on an algebraic structure that is easy to protect against side-channel attacks with countermeasures such as masking. The other part, a block cipher, brings resistance against mathematical cryptanalysis, and only has to be secure against single-measurement attacks. Since fresh re-keying schemes are cheap and stateless, they are convenient to use in practice and do not require any synchronization between communication parties. However, it has been shown that their first instantiation from Africacrypt 2010 only provides birthday security because of a mathematical only collision-based key recovery attack recently put forward by Dobraunigi¾?eti¾?al. CARDIS 2014. In this paper, we provide two provably secure in the ideal cipher model solutions to avoid such collision attacks. The first one is based on classical block ciphers, but does not achieve beyond-birthday CPA security i.e. it only provably prevents the CARDIS 2014 key recovery attack and requires an additional block cipher execution in the protocol. The second one is based on tweakable block ciphers and provides tight CPA security while also being more efficient. As a complement, we also show that our reasoning extends to hybrid schemes, where the communication party to protect against side-channel attacks is stateful. We illustrate this claim by describing a collision attack against an example of a hybrid scheme patented by Kocher, and presenting a tweak leading to beyond birthday security. We conclude the paper by discussing the use of fresh/hybrid re-keying for encryption and authentication, together with a cautionary note on their side-channel resistance.

Published

2015

24. Simulation of a radio frequency quadrupole with the Method of Moments

Author

Raucy, Christopher, Craeye, Christophe, Vandeplassche, Dirk, European Conference on Antennas and Propagation, and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Physics::Accelerator Physics

Abstract

A Radio Frequency Quadrupole (RFQ) is an essential part of linear accelerator (LINAC). It is situated at the very beginning of the accelerator and has three important functions: focusing, bunching and acceleration. The RFQ prepares the beam before its injection into the strong acceleration cavities and so it impacts the behaviour of the beam in the whole accelerator. Hence, it must be designed as reliable and efficient as possible. At the present time, the simulation of the electromagnetic fields and beam dynamics are carried out with some approximations in order to obtain a reasonable computation time. However, faster and more accurate solvers would first allow us to better understand the RFQ technology for high beam currents and second would potentially allow us to perform some numerical optimization. Our main objective is to develop a fast and accurate solver for the electromagnetic fields and for the beam dynamics. Our laboratory is specialized in fast methods for the electromagnetic fields simulation of antennas. Our solvers are based on the Method of Moments (MoM) in the frequency domain. This method could be applied as well for the electromagnetic fields simulation in accelerating cavities. One of the main advantages of the MoM in comparison to finite elements is that it requires only unknowns on the surface of the cavity. For high beam current, it would be very convenient to be able to calculate simultaneously the equations of motion and the Maxwell’s equations since the fields scattered due to the space charge can be as strong as the source fields. Such a simulation is so-called a self-consistent simulation.

Published

2014

25. Low-cost near field pattern measurement technique for aperture array characterization

Author

Raucy, C., Lera Acedo, E., Razavi-Ghods, N., David González Ovejero, Craeye, C., and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Astrophysics::Instrumentation and Methods for Astrophysics

Abstract

This paper describes a low-cost innovative technique to characterize aperture arrays based on a near field pattern measurement. This measurement is used to validate a numerical method code, based on the method of moments, capable of realizing accurate electromagnetic simulations of very large non-regular arrays containing up to thousands of elements which are tens of wavelengths in diameter. A practical application of the technique and the code can be found for low frequency aperture arrays in radio astronomy applications, such as the SKA telescope.

Published

2013

26. Discriminacy of the minimum range approach to blind separation of bounded sources

Author

Vrins, Frédéric, Pham, Dinh-Tuan, 14th European Symposium on Artificial Neural Networs (ESANN 2006), and UCL - SST/ICTM/ELEN-Pôle en ingénierie électrique

Subjects

Blind Source Separation, independent component analysis, local minimum, entropy

Abstract

The Blind Source Separation (BSS) problem is often solved by maximizing objective functions reflecting the statistical dependency between outputs. Since global maximization may be difficult without exhaustive search, criteria for which it can be proved that all the local maxima correspond to an acceptable solution of the BSS problem have been developed. These criteria are used in a deflation procedure. This paper shows that the “spurious maximum free” property still holds for the minimum range approach when the sources are extracted simultaneously.

Published

2006