{"id":"https://openalex.org/W4400836568","doi":"https://doi.org/10.46586/tches.v2024.i3.603-633","title":"Low-Latency Masked Gadgets Robust against Physical Defaults with Application to Ascon","display_name":"Low-Latency Masked Gadgets Robust against Physical Defaults with Application to Ascon","publication_year":2024,"publication_date":"2024-07-18","ids":{"openalex":"https://openalex.org/W4400836568","doi":"https://doi.org/10.46586/tches.v2024.i3.603-633"},"language":"en","primary_location":{"id":"doi:10.46586/tches.v2024.i3.603-633","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tches.v2024.i3.603-633","pdf_url":"https://tches.iacr.org/index.php/TCHES/article/download/11689/11209","source":{"id":"https://openalex.org/S4210207404","display_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","issn_l":"2569-2925","issn":["2569-2925"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","raw_type":"journal-article"},"type":"article","indexed_in":["crossref","doaj"],"open_access":{"is_oa":true,"oa_status":"diamond","oa_url":"https://tches.iacr.org/index.php/TCHES/article/download/11689/11209","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5059445412","display_name":"Ga\u00ebtan Cassiers","orcid":"https://orcid.org/0000-0001-5426-9345"},"institutions":[{"id":"https://openalex.org/I95674353","display_name":"UCLouvain","ror":"https://ror.org/02495e989","country_code":"BE","type":"education","lineage":["https://openalex.org/I95674353"]}],"countries":["BE"],"is_corresponding":true,"raw_author_name":"Ga\u00ebtan Cassiers","raw_affiliation_strings":["Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium","institution_ids":["https://openalex.org/I95674353"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5070542865","display_name":"Fran\u00e7ois\u2010Xavier Standaert","orcid":"https://orcid.org/0000-0001-7444-0285"},"institutions":[{"id":"https://openalex.org/I95674353","display_name":"UCLouvain","ror":"https://ror.org/02495e989","country_code":"BE","type":"education","lineage":["https://openalex.org/I95674353"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Fran\u00e7ois-Xavier Standaert","raw_affiliation_strings":["Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium","institution_ids":["https://openalex.org/I95674353"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5035326281","display_name":"Corentin Verhamme","orcid":null},"institutions":[{"id":"https://openalex.org/I95674353","display_name":"UCLouvain","ror":"https://ror.org/02495e989","country_code":"BE","type":"education","lineage":["https://openalex.org/I95674353"]}],"countries":["BE"],"is_corresponding":false,"raw_author_name":"Corentin Verhamme","raw_affiliation_strings":["Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"Crypto Group, ICTEAM, UCLouvain, Louvain-la-Neuve, Belgium","institution_ids":["https://openalex.org/I95674353"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5059445412"],"corresponding_institution_ids":["https://openalex.org/I95674353"],"apc_list":null,"apc_paid":null,"fwci":0.6508,"has_fulltext":false,"cited_by_count":2,"citation_normalized_percentile":{"value":0.73641777,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":91,"max":98},"biblio":{"volume":"2024","issue":"3","first_page":"603","last_page":"633"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9998999834060669,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12122","display_name":"Physical Unclonable Functions (PUFs) and Hardware Security","score":0.9980999827384949,"subfield":{"id":"https://openalex.org/subfields/1708","display_name":"Hardware and Architecture"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11017","display_name":"Chaos-based Image/Signal Encryption","score":0.9959999918937683,"subfield":{"id":"https://openalex.org/subfields/1707","display_name":"Computer Vision and Pattern Recognition"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7691718339920044},{"id":"https://openalex.org/keywords/gadget","display_name":"Gadget","score":0.7517673969268799},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.62684565782547},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5916149616241455},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.5475954413414001},{"id":"https://openalex.org/keywords/aes-implementations","display_name":"AES implementations","score":0.44148653745651245},{"id":"https://openalex.org/keywords/computer-engineering","display_name":"Computer engineering","score":0.3644958734512329},{"id":"https://openalex.org/keywords/embedded-system","display_name":"Embedded system","score":0.32811975479125977},{"id":"https://openalex.org/keywords/computer-network","display_name":"Computer network","score":0.3225501477718353},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.2880472242832184},{"id":"https://openalex.org/keywords/advanced-encryption-standard","display_name":"Advanced Encryption Standard","score":0.27967000007629395},{"id":"https://openalex.org/keywords/algorithm","display_name":"Algorithm","score":0.12467867136001587}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7691718339920044},{"id":"https://openalex.org/C119770614","wikidata":"https://www.wikidata.org/wiki/Q5516347","display_name":"Gadget","level":2,"score":0.7517673969268799},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.62684565782547},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5916149616241455},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5475954413414001},{"id":"https://openalex.org/C46331935","wikidata":"https://www.wikidata.org/wiki/Q4651362","display_name":"AES implementations","level":4,"score":0.44148653745651245},{"id":"https://openalex.org/C113775141","wikidata":"https://www.wikidata.org/wiki/Q428691","display_name":"Computer engineering","level":1,"score":0.3644958734512329},{"id":"https://openalex.org/C149635348","wikidata":"https://www.wikidata.org/wiki/Q193040","display_name":"Embedded system","level":1,"score":0.32811975479125977},{"id":"https://openalex.org/C31258907","wikidata":"https://www.wikidata.org/wiki/Q1301371","display_name":"Computer network","level":1,"score":0.3225501477718353},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.2880472242832184},{"id":"https://openalex.org/C94520183","wikidata":"https://www.wikidata.org/wiki/Q190746","display_name":"Advanced Encryption Standard","level":3,"score":0.27967000007629395},{"id":"https://openalex.org/C11413529","wikidata":"https://www.wikidata.org/wiki/Q8366","display_name":"Algorithm","level":1,"score":0.12467867136001587},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.46586/tches.v2024.i3.603-633","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tches.v2024.i3.603-633","pdf_url":"https://tches.iacr.org/index.php/TCHES/article/download/11689/11209","source":{"id":"https://openalex.org/S4210207404","display_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","issn_l":"2569-2925","issn":["2569-2925"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","raw_type":"journal-article"},{"id":"pmh:oai:dial.uclouvain.be:boreal:294658","is_oa":true,"landing_page_url":"http://hdl.handle.net/2078.1/294658","pdf_url":null,"source":{"id":"https://openalex.org/S4306401902","display_name":"Digital Access to Libraries (Universit\u00e9 catholique de Louvain (UCL), l'Universit\u00e9 de Namur (UNamur) and the Universit\u00e9 Saint-Louis (USL-B))","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I95674353","host_organization_name":"UCLouvain","host_organization_lineage":["https://openalex.org/I95674353"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"{IACR} Trans. Cryptogr. Hardw. Embed. Syst., Vol. 2024, no. 3, p. 603-633 (2024)","raw_type":"info:eu-repo/semantics/article"},{"id":"pmh:oai:doaj.org/article:2dfdd6f9e17943a3bce1200ee945a53b","is_oa":true,"landing_page_url":"https://doaj.org/article/2dfdd6f9e17943a3bce1200ee945a53b","pdf_url":null,"source":{"id":"https://openalex.org/S4306401280","display_name":"DOAJ (DOAJ: Directory of Open Access Journals)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"repository"},"license":"cc-by-sa","license_id":"https://openalex.org/licenses/cc-by-sa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"Transactions on Cryptographic Hardware and Embedded Systems, Vol 2024, Iss 3 (2024)","raw_type":"article"}],"best_oa_location":{"id":"doi:10.46586/tches.v2024.i3.603-633","is_oa":true,"landing_page_url":"https://doi.org/10.46586/tches.v2024.i3.603-633","pdf_url":"https://tches.iacr.org/index.php/TCHES/article/download/11689/11209","source":{"id":"https://openalex.org/S4210207404","display_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","issn_l":"2569-2925","issn":["2569-2925"],"is_oa":true,"is_in_doaj":true,"is_core":true,"host_organization":null,"host_organization_name":null,"host_organization_lineage":[],"host_organization_lineage_names":[],"type":"journal"},"license":"cc-by","license_id":"https://openalex.org/licenses/cc-by","version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IACR Transactions on Cryptographic Hardware and Embedded Systems","raw_type":"journal-article"},"sustainable_development_goals":[],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":true},"content_urls":{"pdf":"https://content.openalex.org/works/W4400836568.pdf"},"referenced_works_count":46,"referenced_works":["https://openalex.org/W587262091","https://openalex.org/W1575446397","https://openalex.org/W1592625985","https://openalex.org/W1855109561","https://openalex.org/W1897761346","https://openalex.org/W1958047932","https://openalex.org/W2114286085","https://openalex.org/W2164584813","https://openalex.org/W2418954816","https://openalex.org/W2536698892","https://openalex.org/W2548820325","https://openalex.org/W2591961801","https://openalex.org/W2604615625","https://openalex.org/W2740336530","https://openalex.org/W2751043011","https://openalex.org/W2770222748","https://openalex.org/W2791664942","https://openalex.org/W2795180100","https://openalex.org/W2972962130","https://openalex.org/W3004433901","https://openalex.org/W3013677143","https://openalex.org/W3037092799","https://openalex.org/W3037333471","https://openalex.org/W3037774646","https://openalex.org/W3082135691","https://openalex.org/W3082591593","https://openalex.org/W3085353452","https://openalex.org/W3088704016","https://openalex.org/W3133865019","https://openalex.org/W3157476615","https://openalex.org/W3179013011","https://openalex.org/W3184403650","https://openalex.org/W3207142210","https://openalex.org/W3208310845","https://openalex.org/W4205544453","https://openalex.org/W4233570908","https://openalex.org/W4237037674","https://openalex.org/W4252865489","https://openalex.org/W4289659621","https://openalex.org/W4294325141","https://openalex.org/W4294325211","https://openalex.org/W4308391452","https://openalex.org/W4318337999","https://openalex.org/W4320006891","https://openalex.org/W4378195413","https://openalex.org/W4400413574"],"related_works":["https://openalex.org/W4252293060","https://openalex.org/W4212943538","https://openalex.org/W2475971442","https://openalex.org/W4312756098","https://openalex.org/W3194202522","https://openalex.org/W4319586723","https://openalex.org/W4388857716","https://openalex.org/W1895221915","https://openalex.org/W2022773963","https://openalex.org/W3037774646"],"abstract_inverted_index":{"Low-latency":[0],"masked":[1,40,114],"hardware":[2,267],"implementations":[3,174,194,232,262],"are":[4,178,204],"known":[5,62],"to":[6,80,169],"be":[7,32,90,187],"a":[8,44,93,99],"difficult":[9],"challenge.":[10],"On":[11,54],"the":[12,15,55,111,133,140,147,151,197,201],"one":[13,52],"hand,":[14,57],"propagation":[16],"of":[17,47,75,142,150,263],"glitches":[18,71],"can":[19,30,186,239],"falsify":[20],"their":[21],"independence":[22],"assumption":[23],"(that":[24],"is":[25,98,118,185,228],"required":[26],"for":[27,72,102,146,161,171,189,231],"security)":[28],"and":[29,59,121,126,128,200,213,215,244,250],"only":[31,61,196],"stopped":[33],"by":[34,258],"registers.":[35],"This":[36],"implies":[37],"that":[38,66,117,165,183,226,233],"glitch-robust":[39],"AND":[41],"gates":[42],"(maintaining":[43],"constant":[45],"number":[46,74],"shares)":[48],"require":[49],"at":[50,251],"least":[51],"cycle.":[53],"other":[56],"Knichel":[58],"Moradi\u2019s":[60],"single-cycle":[63,94,113],"multiplication":[64,115],"gadget":[65,116,145],"ensures":[67],"(composable)":[68],"security":[69,82,123,131],"against":[70,83,124],"any":[73],"shares":[76],"requires":[77],"additional":[78],"care":[79],"maintain":[81],"transition-based":[84],"leakages.":[85],"For":[86],"example,":[87],"it":[88,166,184,227],"cannot":[89],"integrated":[91],"in":[92,132,191,211,219],"roundbased":[95],"architecture":[96],"which":[97,157,206,238],"natural":[100],"choice":[101],"low-latency":[103],"implementations.":[104],"In":[105],"this":[106,143],"paper,":[107],"we":[108,224,234],"therefore":[109],"describe":[110],"first":[112],"trivially":[119],"composable":[120],"provides":[122,207],"transitions":[125],"glitches,":[127],"prove":[129],"its":[130,266],"robust":[134],"probing":[135],"model.":[136],"We":[137,163,180,254],"then":[138],"analyze":[139],"interest":[141],"new":[144],"secure":[148],"implementation":[149],"future":[152],"lightweight":[153],"cryptography":[154],"standard":[155],"Ascon,":[156,264],"has":[158],"good":[159],"potential":[160],"low-latency.":[162],"show":[164,182,225],"directly":[167],"leads":[168],"improvements":[170],"uniformly":[172,242],"protected":[173,243,261],"(where":[175,195],"all":[176],"computations":[177],"masked).":[179],"also":[181],"handy":[188],"integration":[190],"so-called":[192],"leveled":[193,245],"key":[198],"derivation":[199],"tag":[202],"generation":[203],"masked,":[205],"integrity":[208],"with":[209,217],"leakage":[210,218],"encryption":[212,220],"decryption":[214],"confidentiality":[216],"only).":[221],"Most":[222],"importantly,":[223],"very":[229],"attractive":[230],"denote":[235],"as":[236],"multi-target,":[237],"alternate":[240],"between":[241],"implementations,":[246],"without":[247],"latency":[248],"overheads":[249],"limited":[252],"cost.":[253],"complete":[255],"these":[256],"findings":[257],"evaluating":[259],"different":[260],"clarifying":[265],"design":[268],"space.":[269]},"counts_by_year":[{"year":2026,"cited_by_count":1},{"year":2025,"cited_by_count":1}],"updated_date":"2026-05-06T08:25:59.206177","created_date":"2024-07-20T00:00:00"}