Abstract: We will discuss Statistical Ineffective Fault Attacks (SIFA) and several recently proposed countermeasures against this new approach. While classical differential fault attacks rely on observing the incorrect output of a faulted cipher computation and can thus be prevented by correctness checks, SIFA and other Ineffective Fault attacks need only correct outputs where the fault had no effect. For this reason, SIFA can even be applied successfully to implementations protected by classical fault countermeasures as well as side-channel countermeasures. New mechanisms are thus needed to prevent this threat, and several proposals have been made recently. We will analyze why and when SIFA works, what its links with cryptanalysis are, and how these countermeasures try to prevent it.
The slide is available here