Online training

Understanding Leakage Detection (ONLINEULD)

Leakage detection plays an increasingly important role in the security evaluation of cryptographic devices. A particularly popular approach is the Test Vector Leakage Assessment framework proposed by Cryptography Research Inc., which specifies a suite of simple statistical tests tailored to either confirm or rule out many typical forms of side-channel vulnerabilities. However, if TVLA-style evaluations are performed without an adequate understanding of the statistical theory underpinning them, the risks are that tests may be misapplied, that outcomes may be misunderstood, and that conclusions may be overstated.

The aim of this tutorial is to help you grasp the intuition behind leakage detection methodologies and achieve a sound technical appreciation of how and why they work. We will motivate and describe the current popular practice, including correlation-based tests, and expose some of the limitations, with a special focus on ISO standard 17825. By the end of this tutorial you will be equipped to carry out leakage detection tests sensibly and interpret the outcomes responsibly.

This tutorial is structured as follows. We start off by introducing the problem, namely the presence of data-dependencies in side-channel measurements, and the most common strategy to exploit such information: Differential Power Analysis (DPA). We then build a case for why statistical methods are necessary and develop the particular rationale behind the t-test before describing it more formally. Finally, we show how the t-test is being applied within the TVLA framework and discuss some of the issues affecting its usefulness.

The creation of this training has been funded in part by the European Commission through the H2020 project 731591 (acronym: REASSURE). Find out more details about this project here:

Location: online

  • Understanding leakage detection
Completion rules
  • All units must be completed
  • Leads to a certification with a duration: 3 years