EMAG Distinguished Seminar
Speaker: Dr. Pankaj Rohatgi, Director of Engineering at Cryptography Research
Title: Defending Systems Against Side-Channel Attacks
The discovery of side-channel attacks in the mid-1990s with the initial focus on smart-cards, led to the myth that these attacks are applicable only to smart-cards and other limited devices. However, over the past few years, this myth has being debunked as side-channel attacks have been demonstrated against a wide variety of large devices. In this talk, we will introduce side-channel analysis and demonstrate how power measurements and EM emissions from a variety of large, complex devices can be analyzed to extract secret keys being used within them. These attacks are broadly applicable to systems used for DRM, payment, content protection, mobile, defense and automotive industries which are now increasingly requiring devices to demonstrate resistance to such attacks. We will describe TVLA, a generic technique that can be used to test for the presence of sensitive information within a side-channel from a cryptographic implementation and describe some of the commonly used countermeasures that can be deployed to protect cryptographic implementations from side-channel vulnerabilities.
Dr. Pankaj Rohatgi is a director of engineering at Cryptography Research where he leads new research and services efforts relating to tamper resistance and protections against side-channel analysis. Prior to Cryptography Research, Dr. Rohatgi was a research staff member and the manager of IBM’s Research's Information Security Group. At IBM he conducted research in several areas of applied cryptography, secure hardware and system security, and contributed to numerous security products including the IBM 4758 and IBM’s System S. Prior to IBM Pankaj was the security architect for the OpenTV operating system at Thomson R&D labs and at a Thomson/Sun Microsystems joint venture. Dr. Rohatgi is well known within the international security community and has published more than 45 technical articles and given several invited talks at security conferences. He is the recipient of the Pat Golberg Memorial Best Paper Award for 2007. His professional activities include participation in technical program committees for numerous security conferences and contributions to IETF and W3C standards. He was the program co-chair of CHES 2008 and CARDIS 2013. Currently he serves as an associate editor for the Journal of Cryptographic Engineering. He received his Ph.D. in computer science from Cornell University in 1994.