The DCA attacks are leveraged by three components:
- the Tracer project, comprising several tracing modules.
- this Deadpool project which provides
- the
deadpool_dca.pyscript, see below; - several examples of applied DCA attacks agains white-box implementations.
- the
- the Daredevil project, able to perform CPA attacks against traces.
Our paper explains the principles behind the DCA attacks:
Joppe W. Bos and Charles Hubain and Wil Michiels and Philippe Teuwen:
Differential Computation Analysis: Hiding your White-Box Designs is Not Enough
Cryptology ePrint Archive, Report 2015/753, IACR, 2015.
http://eprint.iacr.org/2015/753.pdf
Attacks presented in the paper were performed partly with a proprietary tool, that we now replaced by Daredevil in order to have a completely opensource toolchain.
deadpool_dca.py is a Python 2 library to help acquiring execution traces.
It's using Tracer tools to acquire traces that can be used with Daredevil.
To interface with the white-box implementation under attack, you must define two helper functions:
processinput() will take the input block defined as int iblock and the blocksize as int blocksize and will return a list of str that will be used in a Popen interface.
The most elementary one is the one defined by default, returning the input as a hex string:
def processinput(iblock, blocksize):
return ['%0*x' % (2*blocksize, iblock)]If the setup is such that there is no input to provide for the Popen call, e.g. because processinput will write the input in a file or because the white-box implementation generates its own random input, processinput must return None.
But in the case of a white-box implementation expecting an input file, consider using Bash process substitution such as e.g. <(echo 0001020304050607|xxd -r -p), which is made possible with Tracer option shell=True, see below.
Besides providing the input data to the white-box implementation, processoutput is responsible to provide it all the required options.
Each parameter must be provided in a separate string of the returned list. If Tracer option shell=True will be used, then it's not required to separate each parameter but the string must still be in a list.
Examples:
return ['--mode', 'encryption', '--input', '%0*x' % (2*blocksize, iblock)]Variant requiring shell=True:
return ['--mode encryption --input %0*x' % (2*blocksize, iblock)]process substitution requires shell=True:
return ['--input-file <(echo %0*x|xxd -r -p) --output-file >(xxd -p)' % (2*blocksize, iblock)]processoutput() will take the output of the white-box implementation defined as a multiline str output and the blocksize as int blocksize and will return the output block as an int.
The most elementary one is the one defined by default, expecting the white-box output to be a hex string:
def processoutput(output, blocksize):
return int(output, 16)If the setup is such that there is no output to process, processoutput must return None.
It might be that the output of the white-box is in a file to be read, in such case processoutput would ignore its output argument and open the file itself but in that situation, consider using Bash process substitution such as e.g. specifying an output file to the whitebox such as >(xxd -p), which is made possible with Tracer option shell=True, see below.
Examples:
Expecting one of the output lines to be the hex dump of the output:
return int(''.join([x for x in output.split('\n') if len(x)==32][0]), 16)If no output available:
return NoneWhat to trace is expressed by a list of filters. A Filter class is provided to help building filters.
f=Filter(keyword, modes, condition, extract, extract_fmt)keyword: string that resumes the functionality of the filter. It will be used to build the filenames of the traces.modes: list of strings indicating which actions to capture, reads ('R') and/or writes ('W')condition: a function taking as argumentsstack_range(a list or tuple of two ints indicating the boundaries of what to be considered as the stack)addr(the current memory access address)size(size of current memory access data)data(current memory access data)- return value: True if conditions are met to record information about current event, else False
extract: a function taking as argumentsaddr(the current memory access address)size(size of current memory access data)data(current memory access data)- return value: the element to be recorded
extract_fmt: a packing format string for the element to be recorded
A few usual filters are already defined in deadpool_dca.py in the DefaultFilters class
class DefaultFilters:
# Bytes written on stack:
stack_w1 =Filter('stack_w1', ['W'], lambda stack_range, addr, size, data: stack_range[0] <= addr <= stack_range[1] and size == 1, lambda addr, size, data: data, '<B')
stack_w4 =Filter('stack_w4', ['W'], lambda stack_range, addr, size, data: stack_range[0] <= addr <= stack_range[1] and size == 4, lambda addr, size, data: data, '<I')
# Low byte(s) address of data read from data segment:
mem_addr1_rw1 =Filter('mem_addr1_rw1', ['R', 'W'], lambda stack_range, addr, size, data: (addr < stack_range[0] or addr > stack_range[1]) and size == 1, lambda addr, size, data: addr & 0xFF, '<B')
mem_addr1_rw4 =Filter('mem_addr1_rw4', ['R', 'W'], lambda stack_range, addr, size, data: (addr < stack_range[0] or addr > stack_range[1]) and size == 4, lambda addr, size, data: addr & 0xFF, '<B')
mem_addr2_rw1 =Filter('mem_addr2_rw1', ['R', 'W'], lambda stack_range, addr, size, data: (addr < stack_range[0] or addr > stack_range[1]) and size == 1, lambda addr, size, data: addr & 0xFFFF, '<H')
# Bytes read from data segment:
mem_data_rw1 =Filter('mem_data_rw1', ['R', 'W'], lambda stack_range, addr, size, data: (addr < stack_range[0] or addr > stack_range[1]) and size == 1, lambda addr, size, data: data, '<B')
mem_data_rw4 =Filter('mem_data_rw4', ['R', 'W'], lambda stack_range, addr, size, data: (addr < stack_range[0] or addr > stack_range[1]) and size == 4, lambda addr, size, data: data, '<I')So one can use any of them as shortcuts, e.g.:
myfilters=[DefaultFilters.stack_w4, DefaultFilters.mem_data_rw4]
At the moment there are two classes deriving from Tracer: TracerPIN and TracerGrind, with (almost) the same interface, so you can easily swap a call to one by a call to the other one.
Both will produce traces according to the filters defined as explained above, in several files with this type of filename: trace_<<keyword>>_<<index>>_<<input>>_<<output>>.bin.
It's possible to run several traces in parallel (unless you specify identical tmptracefile, be careful) and combine all the resulting files to convert them as we will see in the next step.
TracerPIN and TracerGrind __init__ arguments are:
target: (str) the executable, required. Must be in the PATH so prepend './' if needed.processinput: the helper function to prepare the input, cf above.
Default: a helper writing the input in hexprocessoutput: the helper function to extract the output data, cf above.
Default: a helper expecting the output in hexarch: ARCH.i386 or ARCH.amd64.
Default: ARCH.amd64blocksize: (int) cipher blocksize.
Default: 16tmptracefile: (str) name of a temp file.
Default: 'default' will create a temp file based on a timestamp at instanciation, so several instances can run in parallel.addr_range: (str) instructions address range to trace, expressed in a string, e.g. '0x400000-0x4100000'.
Default: 'default' which means for TracerPIN that only the main executable will be traced and for TracerGrind that only range '0x400000-0x3ffffff' will be traced.stack_range: (str) memory address range to be considered as stack, expressed in a string (cf addr_range).
Default: 'default' which means some heuristics will be used depending on the platform and the tracer tool used.filters: a list of filters as described in the section above.
Default: 'default' which means a set of default filters will be used:[DefaultFilters.stack_w1, DefaultFilters.mem_addr1_rw1, DefaultFilters.mem_data_rw1]tolerate_error: (bool) tolerate that the traced executable returns an error code else than 0?
Default: Falseshell: (bool) use a Bash wrapper to call the executable? This enables one string options and Bash process substitution.
Default: Falsedebug: (bool) display executable call and full output and don't delete tmp file, to investigate initial setup.
Default: Falserecord_info: (bool) do you want to record an additional trace required bysample2event(see below)?
Default: True for TracerPIN,False for TracerGrind that doesn't suppport yet this feature.
Once a tracer is instanciated, call run with the following arguments:
n: int telling how many times the executable should be run and traced.verbose: be verbose? Default: True
Simplest example:
from deadpool_dca import *
T=TracerPIN('mywhitebox')
T.run(100)Traces are recorded in binary files with a very easy structure as we saw in the previous step. This allows producing traces by other means than using TracePIN or TraceGrind and converting them with the same tools used in this step. The only requirement is to use the same type of filenames trace_<<keyword>>_<<index>>_<<input>>_<<output>>.bin.
bin2daredevil converts a set of binary trace files into a set of files suitable for Daredevil. Arguments:
keyword: (str) keyword of the trace set to use. Instead of a string you can provide directly the corresponding Filter that was used to create that set. But if you produce traces by yourself, no need to create a Filter.keywords: alternatively, you can provide a list of keywords, or a list of Filters.
Default: (only ifkeywordis not defined) the set of default Filters, cffiltersofTracerabove.delete_bin: (bool) shall we delete binary files while they are converted? Default: Trueconfigorconfigs: (dict of) configuration, see below. Default: some standard configuration suitable for CPA against first round of AES encryption.
A configuration is a dictionary of elements recognized by Daredevil. The following keywords are supported:
threads, algorithm, position, des_switch, guess, bytenum, bitnum, correct_key, memory, top.
For guess there is a shortcut: just tell input or output depending if you want to attack the first or the last round.
Alternatively bin2trs converts a set of binary trace files into a (set of) tracefile suitable for Riscure Inspector. Arguments:
keyword: (str) keyword of the trace set to use. Instead of a string you can provide directly the corresponding Filter that was used to create that set. But if you produce traces by yourself, no need to create a Filter.keywords: alternatively, you can provide a list of keywords, or a list of Filters.
Default: (only ifkeywordis not defined) the set of default Filters, cffiltersofTracerabove.delete_bin: (bool) shall we delete binary files while they are converted? Default: True
deadpool_dca module has a little helper function sample2event that relies on the record_info defined above and tries to provide information about a given sample.
E.g. if your CPA tool finds a strong leakage in the traces at a given sample, use sample2event to know more about this sample.
If the whitebox executable is compiled with debug info, you'll get even the corresponding source code line. Arguments:
sample: (int) the sample number you want info about.filtr: the Filter that was used to record the trace containing that sampletarget: (str) the executable
It returns a tuple with the corresponding event number and, if corresponding .info files are found, a list of details in tuples:
(memory mode, item, instruction address, memory address, data size, data, and if compiled with debug info the corresponding source code line)
Tracer classes have a little helper function run_once if you want to execute one single trace and get one full human readable trace. Arguments:
iblock: (int) input block Default: a random blocktracefile: (str) filename to store the trace
Default: a random temp filename
Example:
T=TracerPIN('mywhitebox')
T.run_once(tracefile='fulltrace.txt')