The Research And Implementation Of Side Channel Attack On ISO14443-Protocol-Contactless Smart Card

With the application range of Contactless Smart Card more and more widely,people have put forward higher requirements for Smart Card security.Especially in the financial,the security of Smart Card is particularly important.This paper mainly studies the security of Contactless Smart Card.This paper discusses a method of electromagnetic radiation information acquisition for Contactless Smart Card,and designs,manufactures and tests the electromagnetic radiation information platform.This acquisition platform collects the electromagnetic leakage information of certain types of Contactless Smart Card,and performs the conventional time-frequency analysis and Side-Channel key analysis.We also attack the target card by using electromagnetic attack methods such as DEMA and CEMA,and test the electromagnetic leakage information collection,and evaluate signal preprocessing and cryptanalysis algorithms.This article first introduced the working principle of the Contactless Smart Card,the corresponding international standard ISO14443-A protocol,the chip’s operating system,general instruction set,and on-chip DES encryption algorithm.Then it describes the mechanism of leakage of electromagnetic information based on Side-Channel attacks,and builds a general electromagnetic-leakage-information collection platform.In this platform,not only design,manufacture and test several pretreatment methods,but also discuss the function and significance of the signal-preprocessing module and compare the effects of pretreatment.Among them,this paper divides the preprocessing module into two types: analog preprocessing and digital preprocessing.The thesis analyzes and evaluates the pretreatment method from many aspects such as theoretical effect,realization cost and actual effect.In this paper,the electromagnetic-leakage-information collection platform designed by ourselves is used to collect electromagnetic leakage information of multiple contactless card.Then,these data are pass by filtered,aligned,and analyzed for side channel attacks.In the case that the number of attack curves,the preprocessing method,and the frequency components of the corresponding attack curves are different,we can obtained the first wheel key by attacked.According to the first wheel key of the relevant electromagnetic attack,we evaluate for performance of different preprocessing methods,and summarize the number of energy traces and the safety performance of the contactless CPU card required for attack by the electromagnetic attack method.The electromagnetic–radiation-information collection platform designed in this paper can be used not only for the electromagnetic leakage information collection and for analysis of contactless smart cards,but also for electromagnetic leakage collection and analysis of general information security equipment such as smart cards and password chips.This platform can be a general platform for collecting electromagnetic information.