Unlocking Lilliput: A Fault Injection Study

Author: Denis Avetisyan

New research systematically assesses the vulnerability of the Lilliput lightweight block cipher to differential fault analysis attacks.

The distribution of fault counts during key recovery demonstrates the frequency of various error types, with specific numerical data available in Table 7 of the Supplementary Material, Part A.

This paper details a successful key recovery strategy using fault injection with progressively relaxed attack models against the Lilliput cipher.

While lightweight block ciphers are designed for resource-constrained environments, their resilience against physical attacks remains a critical concern. This paper, ‘From Precise to Random: A Systematic Differential Fault Analysis of the Lightweight Block Cipher Lilliput’, presents a comprehensive differential fault analysis (DFA) of the Lilliput cipher, demonstrating successful key recovery under progressively relaxed adversarial models. Our analysis reveals that even with limited control over fault location and timing, a practical adversary can reliably compromise Lilliput with a moderate number of fault injections. These findings highlight a significant vulnerability in Lilliput’s design and raise important questions about the security of lightweight cryptography in real-world deployments.

The Precarious Balance of Lightweight Security

The proliferation of Internet of Things (IoT) devices and wearable technology has necessitated the development of cryptographic solutions tailored for severely limited computational power and memory. Traditional encryption algorithms, while robust, often prove impractical for these resource-constrained environments. Consequently, designers have turned to lightweight ciphers, such as Lilliput, which prioritize efficiency without entirely sacrificing security. These ciphers employ simplified designs and reduced key sizes, enabling secure communication on devices with minimal processing capabilities. However, this pursuit of leanness introduces inherent trade-offs, creating a landscape where even seemingly minor implementation flaws can be exploited by attackers, demanding a careful balance between performance and resilience in their deployment across increasingly interconnected systems.

Despite their efficiency, lightweight ciphers employed in modern, resource-constrained devices present a unique security challenge due to their inherent susceptibility to both side-channel and fault injection attacks. Side-channel attacks exploit unintentional information leaks – such as power consumption, electromagnetic radiation, or timing variations – during cryptographic operations, allowing attackers to deduce secret keys without directly breaking the cipher’s algorithm. Simultaneously, fault injection attacks deliberately introduce errors during computation, forcing the cipher to produce incorrect outputs that reveal crucial internal states or the key itself. This dual vulnerability stems from the simplified designs of lightweight ciphers, often lacking the robust error detection and masking techniques found in more complex algorithms, thereby creating significant risks for the growing number of connected devices relying on these streamlined cryptographic solutions.

Differential Fault Analysis, or DFA, represents a potent attack vector against cryptographic implementations by deliberately inducing errors during computation. This technique doesn’t target the cipher’s mathematical design itself, but rather the physical realization of the algorithm in hardware or software. A successful DFA attack necessitates a precise understanding of fault propagation – how an injected error, perhaps a bit flip or a skipped instruction, travels through the cipher’s internal processes and ultimately manifests as a detectable change in the ciphertext. By meticulously analyzing these faulty ciphertexts alongside their correct counterparts, attackers can deduce information about the secret key, effectively bypassing the intended security of the cryptographic system. This reliance on implementation details means even mathematically strong ciphers are susceptible if not carefully protected against physical manipulation and error induction.

The efficacy of Differential Fault Analysis (DFA) hinges on a meticulous understanding of how intentionally induced errors-or faults-propagate through a cryptographic implementation and ultimately manifest as alterations in the resulting ciphertext. A successful DFA attack doesn’t simply introduce a fault; it carefully characterizes the relationship between the injected fault and the observed ciphertext changes. By analyzing these correlations, attackers can deduce information about the internal state of the cipher during operation, effectively bypassing the intended security mechanisms. This characterization requires detailed knowledge of the cipher’s architecture and implementation, allowing the attacker to formulate specific hypotheses about the key and then confirm them through repeated fault injections and ciphertext analysis. The precision with which fault effects are mapped directly translates to the efficiency and feasibility of key recovery, making this characterization phase paramount to a successful attack.

Successful differential fault analysis (DFA) attacks, as shown by the distribution of injected faults, typically require a specific number of total faults alongside dedicated faults to recover the keys <span class="katex-eq" data-katex-display="false">RK^{29}</span> and <span class="katex-eq" data-katex-display="false">RK^{28}</span>, represented in the legend as ‘aa-bb-cc’. — Successful differential fault analysis (DFA) attacks, as shown by the distribution of injected faults, typically require a specific number of total faults alongside dedicated faults to recover the keys $RK^{29}$ and $RK^{28}$ , represented in the legend as ‘aa-bb-cc’.

Mapping the Pathways of Error in Lilliput

Lilliput’s cipher structure is based on the Extended Generalized Feistel Network (EGFN), a variant of the Feistel network that allows for more complex round functions and data dependencies. Unlike traditional Feistel networks which split the data block into two halves, the EGFN utilizes a greater number of branches, increasing the complexity of data mixing. This architecture significantly impacts fault propagation; a single bit flip introduced during encryption doesn’t remain isolated to one branch but diffuses across multiple branches during each round. The increased connectivity within the EGFN means that faults can propagate non-linearly, making analysis more complex than in simpler network structures. Consequently, understanding the EGFN’s specific configuration – the number of branches, the width of each branch, and the permutation functions applied – is crucial for accurately modeling how faults manifest in the ciphertext.

The Round Function and Diffusion Layer within Lilliput are critical components in fault propagation due to their design and operation. The Round Function, responsible for non-linear mixing of data, introduces complexity that scatters the influence of a fault. Subsequently, the Diffusion Layer, composed of bit permutations and XOR operations, is specifically designed to spread these changes across multiple state bits with each round. This ensures that a single-bit fault injection doesn’t remain localized, but instead affects a growing number of bits in the ciphertext as the data passes through successive rounds. The efficiency of this diffusion directly impacts the observable ciphertext differences and the feasibility of differential fault analysis attacks.

Analyzing the fault propagation path within Lilliput is crucial for security evaluation because it directly links the physical location of a fault injection to observable changes in the ciphertext and, critically, the feasibility of extracting secret key information. The path, determined by the cipher’s structure and round function, defines how a single bit flip or other fault manifestation diffuses through the internal state. By tracing this diffusion, researchers can correlate specific ciphertext differences with potential key bits affected by the fault. This allows for the construction of fault models and the assessment of key recovery attacks; a predictable relationship between fault location and key compromise indicates a vulnerability, while a highly diffused and randomized propagation path can mitigate the risk. The granularity of this analysis-identifying which bits are most sensitive to faults at specific locations-is essential for both attack and defense strategies.

Accurate fault propagation path modeling in Lilliput is complicated by the cipher’s non-linear operations and the interplay between its components. The Extended Generalized Feistel Network (EGFN) structure, specifically the Round Function and Diffusion Layer, introduces dependencies that necessitate tracking data flow at the bit level. Determining how an injected fault at a specific location impacts the ciphertext requires a complete understanding of Lilliput’s key schedule, S-box layers, and the mixing operations within the Diffusion Layer. Furthermore, the EGFN’s iterative nature means that a single fault can propagate and combine with subsequent round operations, creating complex and often unpredictable ciphertext differences that demand precise tracing of the fault’s influence through each round.

Fault injection at location <span class="katex-eq" data-katex-display="false">X727X^{27}_{7}</span> resulted in observable fault propagation throughout the system. — Fault injection at location $X727X^{27}_{7}$ resulted in observable fault propagation throughout the system.

Precision and Efficiency in Fault Analysis Models

Three distinct Deterministic Fault Analysis (DFA) models were implemented to evaluate the trade-offs between precision and efficiency in fault localization and propagation. Model I represents the highest precision, utilizing a multi-round analysis with fixed fault locations. Model II offers a simplified approach with a single-round analysis also employing fixed fault locations. Finally, Model III represents the lowest precision, using a single-round analysis but with randomly selected fault locations. This tiered approach allows for comparative assessment of how varying levels of precision impact the Fault Injection Success Rate and the number of fault injections required to achieve a given level of confidence.

Model I employs a fault injection methodology consisting of multiple analysis rounds, each targeting pre-defined, fixed locations within the system. This approach prioritizes focused testing of critical areas, resulting in a Fault Injection Success Rate of 98%. Importantly, this level of success is achieved with a relatively low number of injections – only 8 – indicating high efficiency in identifying faults within the specified locations. The fixed-location strategy minimizes the search space, enabling a high probability of fault detection with limited resources.

Model II employs a streamlined diagnostic fault analysis approach, completing the fault injection and analysis process within a single execution round. This model utilizes a pre-defined, fixed set of locations for fault injection, simplifying the analysis and reducing computational overhead. Despite this simplification, Model II achieves a high Fault Injection Success Rate of 99% with only 8 fault injections, demonstrating its effectiveness in accurately identifying and localizing faults under these constrained conditions. The fixed location methodology contributes to the model’s efficiency without significantly compromising diagnostic accuracy.

Model III utilizes a deterministic fault analysis (DFA) approach characterized by single-round testing with randomly selected fault locations. Despite employing the lowest precision among the tested models, it achieves a 99% Fault Injection Success Rate. This performance is attained with a requirement of 33 fault injections, representing a trade-off between precision and the number of injections needed for comprehensive fault coverage. The randomized fault locations in Model III necessitate a higher injection count compared to models utilizing fixed locations, but maintain a high success rate in identifying faults.

Following fault injection at <span class="katex-eq" data-katex-display="false">X728X^{28}_{7}</span>, the fault propagates through the eight sequentially numbered S-boxes (<span class="katex-eq" data-katex-display="false">S0S_{0}</span> to <span class="katex-eq" data-katex-display="false">S7S_{7}</span>) within each round of the cipher. — Following fault injection at $X728X^{28}_{7}$ , the fault propagates through the eight sequentially numbered S-boxes ( $S0S_{0}$ to $S7S_{7}$ ) within each round of the cipher.

Implications for Lightweight Cipher Design and Future Research

Research indicates that the Lilliput cipher, despite its intentionally simplified design, remains susceptible to differential fault analysis (DFA) attacks. This vulnerability persists even when employing reduced precision modeling during the attack simulations, suggesting that precise modeling isn’t a necessary condition for successful exploitation. The findings highlight a fundamental weakness in Lilliput’s structure, where carefully induced faults can significantly alter internal computations and leak information about the secret key. This demonstrates that even lightweight cryptographic algorithms, intended for resource-constrained environments, must be rigorously analyzed and fortified against potential implementation-level attacks, as simplified designs don’t automatically equate to increased security.

Rigorous statistical analysis validated the efficacy of each fault injection model employed in the study, revealing a clear correlation between model sophistication and attack success. Notably, Model III demonstrated exceptional performance, achieving a 95% success rate in key recovery with a remarkably low requirement of only 26 fault injections. This finding underscores the heightened vulnerability of the cipher to even a limited number of precisely targeted faults, suggesting that practical attacks are feasible with relatively accessible resources. The swift convergence towards successful key recovery with Model III provides compelling evidence for the model’s predictive power and highlights the critical need for robust countermeasures designed to detect and mitigate such attacks.

Despite its crucial role in introducing non-linearity – a key component of cryptographic security – the S-box within lightweight ciphers like Lilliput proves insufficient as a sole defense against fault injection attacks. Research indicates that while the S-box complicates the attacker’s task, it doesn’t fundamentally alter the cipher’s susceptibility to manipulation via induced errors. Faults introduced during computation can still propagate through the cipher’s structure, bypassing the non-linear transformations provided by the S-box and ultimately leaking information about the secret key. This suggests that effective countermeasures require a multi-layered approach, combining robust S-box designs with additional error detection and correction mechanisms to truly safeguard against these vulnerabilities.

Recent investigations have revealed a critical vulnerability within the Lilliput cipher’s key recovery process, specifically concerning the $R\_K328RK^{28}\_{3}$ bottleneck. Researchers successfully demonstrated that targeted improvements to this particular stage of key recovery significantly accelerate the process, making it substantially more efficient for potential attackers. By focusing on optimizing the handling of this bottleneck, the study showcased a marked increase in the speed and reliability of key extraction, indicating a previously underestimated weakness in the cipher’s security architecture. This finding underscores the importance of detailed analysis of internal processes within lightweight ciphers, even those seemingly secure, and highlights the potential for substantial gains in attack efficiency through focused optimization of specific vulnerabilities.

Addressing the evolving threat of differential fault analysis (DFA) necessitates a dual-pronged approach to lightweight cipher security. Current research indicates that existing countermeasures, while providing some protection, are often insufficient against increasingly sophisticated attack vectors. Consequently, future efforts should prioritize the development of novel defense mechanisms, potentially leveraging techniques such as masking, redundancy, or hardware-based protection schemes. Simultaneously, exploration of entirely new cipher designs – those fundamentally resistant to DFA by virtue of their architecture – holds considerable promise. This includes investigating alternative mathematical structures and exploring designs that minimize the information leakage exploitable by fault injection, ultimately fostering a more secure landscape for resource-constrained devices and applications.

Key-recovery success rates decrease with an increasing number of injected faults, as detailed in Table 8 of the Supplementary Material (Part A).

The study meticulously dismantles assumptions regarding cryptographic security, exposing vulnerabilities in Lilliput through controlled perturbations. This approach aligns with Paul Erdős’s sentiment: “A mathematician knows a lot of things, but a physicist knows everything.” The researchers, much like a physicist probing a system, systematically introduced ‘faults’-controlled inconsistencies-to reveal the underlying structure of the cipher. The successful key recovery, even with relaxed attack models, demonstrates a preference for elegant simplicity in the attack vectors-a principle mirroring the beauty found in lossless compression. The work highlights how reducing a complex system to its essential components-through fault injection-can expose inherent weaknesses, revealing the ‘vanity’ of assumed security.

What Remains to be Seen

The systematic dismantling of Lilliput’s security, achieved through progressively less-informed fault injections, reveals a familiar truth: cryptographic strength often resides not in architectural complexity, but in the sheer cost of observation. The demonstrated efficacy of these attacks suggests a need to reassess the threat model for lightweight ciphers; presumptions of security predicated on impractical attack requirements are, demonstrably, fragile. Further work should not focus on patching Lilliput, but rather on distilling its lessons into genuinely minimal designs.

A valuable, though perhaps uncomfortable, direction lies in formalizing the notion of ‘acceptable’ fault injection cost. How many faults, and of what severity, must be realistically anticipated before a cipher’s design is considered fundamentally flawed? Current metrics often prioritize theoretical resistance over practical resilience. The pursuit of ‘provable security’ should not eclipse the simple principle that a lock, however complex, is useless if the key is easily duplicated-or bypassed with a well-placed hammer.

Ultimately, the field would benefit from a shift in emphasis. Rather than striving to build increasingly elaborate defenses, the focus should be on identifying, and embracing, inherent limitations. A cipher that acknowledges its vulnerability, and minimizes the impact of a successful attack, may prove more secure-and certainly more honest-than one that promises invulnerability and delivers only illusion.

Original article: https://arxiv.org/pdf/2603.19781.pdf

Contact the author: https://www.linkedin.com/in/avetisyan/

The Precarious Balance of Lightweight Security

Mapping the Pathways of Error in Lilliput

Precision and Efficiency in Fault Analysis Models

Implications for Lightweight Cipher Design and Future Research

What Remains to be Seen

See also: