A New Remote Keyless Entry System Resistant to Power Analysis Attacks
Amir Moradi, Timo Kasper
7th International Conference on Information, Communications and Signal Processing, ICICS 2009, Macau, China, Dezember 7-10, 2009.
In CRYPTO 2008, it has been shown that poweranalysis attacks can completely break real-word remote keyless entry (RKE) systems based on the KEELOQ code-hopping scheme. A successful key-recovery involves a couple of security and privacy risks for the consumers as well as for the manufacturers. In this paper, we introduce a new RKE system that is inherently resistant against side-channel attacks, independent of the implementation platform. For our approach, a pseudo random number generator (PRNG) as introduced in ASIACCS 2008 is extended to prevent template attacks, and embedded into a secure remote-control application. We verify the effectiveness of the proposed scheme by implementing it on a microcontroller and evaluate its physical security, thereby demonstrating that a practical key-recovery by means of power-analysis is not feasible.[pdf]