Difference between revisions of "Lucky 13"

Lucky 13 is a timing attack on TLS/DTLS discovered in 2012 by Nadhem AlFardan and Kenny Paterson. In 2013 they published their findings and released their whitepaper. The attack is shown to only work on LAN and is hindered by noise on the network (unwanted traffic).

To understand the attack, first explanation of a few concepts is needed.

Basics

Cipher Block Chaining (CBC) and MAC-then-encrypt are being used in the DTLS record protocol.

Cipher Block Chaining (CBC)

CBC is a method of encrypting plaintext. It takes a block of clear text and adds it (bit-by-bit) to the previous encryption.

IV = Initialization Vector is a (pseudo)random sequence of characters added to an encryption key. The IV should be different for any two messages encrypted with the same cryptography key. First step is to divide the pain text into block size (size depends on underlying symmetric encryption algorithm). Plain text (${\displaystyle P_{i}}$) and previous ciphertext (Failed to parse (syntax error): {\displaystyle \C_{i−1}} ) are combined with an XOR operation. Then it gets encrypted with the key. Repeat. In the first step we do not have any ciphertext (${\displaystyle C_{i}}$) so we use the IV (initialization vector) for this one. ${\displaystyle E}$ stands for the encryption process.

This leaves us with this formula:

${\displaystyle C_{i}=E(P_{i}\oplus C_{i-1})}$

MAC-then-encrypt

MAC provides message authentication. Sender and receiver share a symmetric key.

• The sender uses some publicly known MAC algorithm, inputs the message and the secret key K and produces a MAC value.
• Send it.
• On receipt of the message and the MAC, the receiver feeds the received message and the shared secret key K into the MAC algorithm and re-computes the MAC value.
• The receiver now checks equality of freshly computed MAC with the MAC received from the sender. If they match, then the receiver accepts the message and assures himself that the message has been sent by the intended sender.

DTLS Record Protocol

Encryption

${\displaystyle R}$ = individual record (payload)

MAC calculation:

${\displaystyle T={\mathtt {SQN}}||{\mathtt {HDR}}||R}$ SQN and HDR are prepended and are 13 bytes long:

• SQN = 8-byte
• HDR = 5-byte
  • version field = 2-byte
  • type = 1-byte
  • length = 2-byte

${\displaystyle T}$ is the resulting MAC.

Next, the plaintext (${\displaystyle P}$) is created to encrypt with the following formula:

${\displaystyle P=R||T||{\mathtt {pad}}}$

pad stands for "padding" which is appended to the plaintext. The size of the padding is to fit the block size of the selected block cipher (3DSE = 8 bytes/ AES = 16 bytes). Padding may span over several blocks. Padding added in TLS and DTLS must consist of ${\displaystyle p+1}$ copies of the same byte value ${\displaystyle p}$. The Range for ${\displaystyle p}$ is ${\displaystyle 0\leq p\leq 255}$. For example, 1 times “0x00” or 3 times “0x02”.

Now the plaintext is being encrypted with CBC-mode:

${\displaystyle C_{j}=E_{K_{e}}(P_{j}\oplus C_{j-1})}$

${\displaystyle P_{j}}$ is the information we want to encrypt. ${\displaystyle _{j}}$ identifies the different blocks we want to encrypt. ${\displaystyle C_{0}}$ is our starting point (IV). ${\displaystyle K_{e}}$ is for the block cipher ${\displaystyle E}$.

Put together the data encrypted and being transmitted is:

${\displaystyle {\mathtt {HDR}}||C}$

${\displaystyle C}$ being the cipher text and HDR including version, type and length field. No sequence number (SQN) being transmitted.

Decryption

${\displaystyle P_{j}=D_{K_{e}}(C_{j})\oplus C_{j-1}}$

${\displaystyle D}$ = Decryption algorithm of the block cipher. ${\displaystyle P_{j}}$ is the Plaintext we receive. The decryption is performed block by block. When finished, the padding is removed and the MAC is being checked. Finally, the sequence number can be checked.

HMAC

TLS and DTLS exclusively use the HMAC algorithm. HMAC-MD5, HMAC-SHA-1, and HMAC-SHA-256 are supported in TLS 1.2.

Fomula:

${\displaystyle T=H((K_{a}\oplus {\mathtt {opad}})||H((K_{a}\oplus {\mathtt {ipad}})||M))}$

${\displaystyle T}$ = MAC tag ${\displaystyle M}$ = Message ${\displaystyle K_{a}}$ = Key ${\displaystyle H}$ = Algorithm

HMAC applies the specified hash algorithem twice in an iterated fashion.

opad and ipad are specific 64-byte values (padding) that combined with the Key are exaclty 64 bytes. The hash function uses an encoding step called Merkle-Damg ̊ard strengthening.

HMAC is computed of 64 byte blocks. This block takes 8 bytes for the header and at least 1 byte of padding. 55 bytes of data is the maximum a single block can take. A Message of the length up to 55 bytes need 4 comparison function evaluations to complete: 2 in the hash operation, 2 in the outer hash operation. Messages from 55 up to (64+55=) 119 bytes give us two 64-byte block. This means that the we have 3 inner hash operations and 2 outer hash operations. For more blocks (3 and more) we can assume you add 1 operation per block. Remember that every operation takes some amount of time to be computed. Operations are in the sub-μ seconds spectrum