Section: New Results

Verified Proofs of Higher-Order Masking

Participants : Gilles Barthe [IMDEA Software, Madrid] , Sonia Belaïd [Thales Communication] , François Dupressoir [IMDEA Software, Madrid] , Pierre-Alain Fouque [Université de Rennes, IUF] , Benjamin Grégoire, Pierre-Yves Strub [IMDEA Software, Madrid] .

We study the problem of automatically verifying higher-order masking countermeasures. We propose a method based on program verification techniques, to check the independence of sets of intermediate variables from secrets. This new language-based technique makes it possible to implement several algorithms that reduce the number of sets of variables that need consideration. The tool also has the capability to to give useful information when proofs fail, for instance by discovering possible attacks. This is based on EasyCrypt. This work has been published in [8] .