Field multiplication in AES implementation - xtime
This post explains how to implement the field multiplication taking place in the computation of MixColumns. This is important for me because I used to implement it in an ugly way when I was a student.
DFA - Differential Fault Attack on AES
This post explains the main idea of the Differential Fault Attack on AES with faults injected before the MixColumns in the 9-th round. For the original paper, we refer to [Piret and Quisquater, CHES 2003].
Multiplying two 32-bit numbers without using 64-bit variable
In this post, we figure out how to multiplying two 32-bit positive numbers by only using 32-bit variables.
SIFA on Masked Computation
This post explains how to use SIFA to attack AES implementations protected with both masking and detection-based fault countermeasures. The nice idea of this attack was presented in the paper [Dobraunig et al., ASIACRYPT 2018] that I enjoyed reading very much.
SIFA - Statistical Ineffective Fault Attacks
This post presents the main idea of the Statistical Ineffective Fault Attack (SIFA) in [Dobraunig et al., CHES 2018]. SIFA is applicable in a very broad range of cipher implementations, even in the presence of countermeasures.