Secure Application Programming in the Presence of Side Channel Attacks
White Papers
Side channel attacks can reveal secrets during program execution or change the behavior of a program. Without profound knowledge of these attacks, it is hard to defend code effectively. Whereas traditional secure programming methods focus mostly on input validation and output control, side channel security requires pervasive protection throughout the code.
This paper introduces a collection of secure programming patterns for security critical devices. These patterns help developers to mitigate the risk of side channel attacks.
The paper covers the following:
- Introduction to side channel attacks
- A number of leakage patterns dealing with the aspect of confidentiality
- A number of fault injection patterns dealing with the aspect of integrity
- Application of the patterns
- Conclusions