!
" " # $
# $ # #
# # % "# # # &
&!' "
( ! )#
" $# # $
$#### "
'( %#*$&
#"#! #
# '+(
$## , # # )#" ,-
" " #'
!
"#$% "##%
"&% ! '
! ( ( "##%
)* )* ))+**
' ! "#,-./%
"0,#-1#/%(
)"-%* '2
) ' *( 3 2 ' ) *
!
''
"#% ' ! (
5 ' (3 !
' ) *
' 6 ' ' ' ( 7
! ! 2 ' -#$ )
* ,-, ) #, *
#-. ) ! 2*8 #&
,$$1(
3
! ! 2 ' '
) 2 (* 2 '(
5
Æ 2
2 2 ( 5 ! ' '
(9 2'
' 6 '(
+
):* ' !(:
4 ' 2
! ' !
)97*(: '
;!! 4)
' * '
(< :
! 2
#&/
( '8 #& ,$$1
,$$
) ' 2 *(
5 ' '( 2
, !
-(/4 (
. :
' : 4 ( = &
(
! (">% (5
'
' 6'(
? ( 5
',
'
,
@! ' (5 !
,
'(<2
2& )'
* ,
'
(' '
2 )'
*( 5 6
,
/ ,
6'2
(5
(3 6 ,
A0),
/*B,
(
5 ! 2
@ ! ; ( 5
2 ' (5
6 2 2 )
24 !*
2 (:
'
2 '
6'(
?
B)
)
*
)
*
)
**
' (< 4
'
(
5
' "( <
' 4 '
(=
B> '
B#&'(<
4 "
(
' ) *
"
!
'
' (< '
' 4
( = 4
B &/ '
B,.& '(
2 '
4 " ' ! ' ! ' ! (5
' " # ( 5 ' )
* ' (< ! '
( #( ' ' # ,( ' ' $ # -( ) * /( ' )
*B"
.(
! 4 ) #*
&( '
0( '
>( ) * ! ) *B # ) *) ) *) **
"$ % ' !
$# ( ! ! '
! !C
B # B # # ) *B # ) * B # # ) *) *
(3 !
' ') *
register:
time
power
guessed sensitive data:
estimate the correlation
i-th power consumption trace
4"$####
!
'
"
( ! ! )
'4 * )97*2
4 )
*(5 ;! '
4)
' '* (
< 2 ! ' ( 5 ;
'
2
' "
( 3
' ' ' ) ' *
' (
+ ! 2
'
)#*(5' 2
'' ' '6 (?
97 = #(
5 )
D* E )8+*' ! (
'!
'F+7'! !(=
4).*
! (
!
)' *
(
3 !
)
3' ! ' ) * ' ' ! !
97 ' ( 5 ' 6 '
'
'"
' 4(
5 '
¼ 97( 3' ! ¼ ' ' ! ) * ' ¼
' ( ' 6 '
'
!(
5 ' '
2@ !
' (+ ' ' ' ! ' ! ! (
5 ! ':(5 '6
'
;
' !
( 2
' " %" % ) * ( < B B )
* 4 ' 4
' 4 !( #( B# B ,( ' -( ' /( ' .( ) *
&( ' )
*B"
0( ! '
) * ,(
)
* ! '
6 ( ? "$
#% '
(
)
*
B
#
)
*)
)
*)
**
"$ ) A#*% ' '
!
$#
! '
)' * !
!(
)
* )
* -(
5 ' 97
$
):* ##$)%$*
& $ )
'($*):G+,*( 97
+ ) 6 ' ' *
(
5 ' !
) '
¼
@ ' #,
' * '
'6 ! 6(
! "
5 : ( <
! ( < 2
'
:(
! "#$"
<
F
register
L
register
R
register
L
register
R
16th round key
16t
h roun
d
15t
h
roun
d
Inverse of IP
ciphertext
,7%
'
)(
*
' ( '
' / & 4 &
& / 4 -, (
? ( ' #.
' ' #.)
* 6
F+7 ' ' #& )
* '
')
*(+ '#&
'')
*(<
'' '#. #& !
B
B
)
*
( "
"
"
' '(
3 '
B>
B&/ ' 4
(3'
2 ' !
) * 2
(
% 3 97
' '
(
B
'#. #&
!(<
I
B
!
)
*
'
I
( 9
I
F+7
(<
4@! !)
6
'
! *(
!&#"
5 ! '
)
*(
+ ' '(
' < :(
' < & '"
#, '
"
"
¼(
' < '
! (
' < ' (
' < ' 2 # )* (
' < ! # (
' < #. (
9 % : # % ( #
# &
5
21
2
35
3
33
38
5 53
6
8
3
& ; 5
# &
5
6
2
81
3
8
2
5
25
6
5
1
& ; 1
5 # ': (:
2 2
' "
&. ( '
; (
: )*
2
#!2
/&///>
!( 4 &. : 2 .&
' #& &. )#&/ '
*(
+ !
2 ( 3 2
#- ) 0. * 6 2
1$1# ,>$ !( 4
,>$.& ' #&,>$
)-01 '*(
5' :
6(
% 3''' '
#//.$ #/..$ ' 6 :
&. // )#/- ' *( 8!
! 2 ) ' #//$$ #/.$$*
'6 ,$)##1 *@!
: (
#
):
* ( 3!
! 97 2
' ( : '
;! 4
'
( < !
2 (
+ < ! J ' '
!! ' (
"$
' , 11<118' '
' =#> # ? #' @ % ,- #
- " ' @ A A ,$# 9 #
% #
2' - ( $ #C D$ '
"#'@= #:E: #
" $25 % !
"5B8( /# "9. 113' " '
3' 4'4#F4"' ' @(
' 'AA# % #
$2% !
"2B( /# "9. 112' " '
' C:C # = ? # # C # G'
,%" # #0# # ' @ =
#:E: #
"$25% ! "
2B26( /# "9. 113' " '
5' ?#) = # C D$ ' - "
H ' @A A ,$# 9# %
# $
5 % ! " B5 ( /# "
9. 11' " '
6' >'?#' ',-#,* I,J
=#!' @AA# % #
# $%% $ 66 % !
"B6( /# "9. 888' " G "'
' 9 / 4 =-$ = + =
# + ' = ' % > " + # 0' @
&'& ( )'@- 23 116' -# "
#K'
8' @=# 9 ' , #
J" #' @ "F # &(
&& $ % !
"331B35' " G "( 11'
1' ' "% ,Æ/4 ,
# '@90# * #+,-.$%/
$18% ! "13B2( /#
"9. 885' " G "'
' * # (F ' ,* ' @
='+ # * #+,-.$%%$555%
! " 2B286( /# " 9. 888'
" G "'
' '= "' K"# # ,
% ' @AA# % #
$85% !
"2B( /# "9. 111' " '
2' '= "' " -)" '
@( # 0 ( # 0$86 %
! "1B53' " G "( 11'
3' # % ' /" # " % ' @
,'$# --+/$251%
! " 1B ( /# " 9 .
