A Study on CC (Common Criteria) Evaluation Criteria for Side Channel Analysis

In cryptography, a side channel attack is any attack based on information gained from the physical implementation of a cryptosystem, rather than brute force or theoretical weaknesses in the algorithms (compare cryptanalysis). For example, timing information, power consumption, electromagnetic leaks or even sound can provide an extra source of information which can be exploited to break the system. Many side channel attacks require considerable technical knowledge of the internal operation of the system on which the cryptography is implemented. In this paper, the authors suggest safety evaluation scheme regarding side channel analysis could apply in smart card product evaluation.