RESIST - Methods and tools for covering embedded and mobile systems against next generation attacks
The project focuses on the research and the development of advanced methods and technologies for side channel analysis of IT systems. The project RESIST explores advancements of well known attacks and quests for a mathematical theory construction, that allows a trusted evaluation of risk potentials. In particular RESIST provides new analytical approaches, which combines qualitative expertise with quantitative, stochastic methods and supports constructive design respectively re-design. For that purpose development supporting tools get realized as much as resistant reference implementations and security modules get implemented.
In this way the security and side channel resistance of embedded and mobile systems is getting increased and for the medium term medium-sized companies and the german industry is given the capability to improve the quality of their IT-based products.
To reach these aims the work got divided in different groups which are all very well toothed. As far as concrete steps go, the project should bring forth results in three core areas wherefore the different expertise of the involved partners is required.
- (A1) Advanced analysis techniques: New approaches and concepts are getting developed to analyze and use side channel information. Target architectures are smart cards, FPGAs and security software in mobile and embedded systems.
- (A2) Constructive methods, shielding methods and tools: The focus of this work is the bonding of approaches made by engineers to abstract side channel resistant components with mathematical methods. Therefor constructive methods and tools get developed, which make it possible to estimate certainly the real risk potential of attacks to integrate time and money efficient adequate counteractions.
- (A3) Resistant Components: The primary goal of this priority area is the development of side channel resistant and hardened hardware and software components for embedded and mobile systems which are based on previous results. The consortium intents to realize different prototypes based on which the focused use of derived side channel information enables constructive redesign.
The projects run time is 24 month. It started at July 1st, 2010. The BMBF is promoting this intention with 2.78 mil. € of the "IT-Sicherheitsforschung" program.