Home > CAPEC List > CAPEC-624: Fault Injection (Version 2.9)  

CAPEC-624: Fault Injection

Fault Injection
Definition in a New Window Definition in a New Window
Attack Pattern ID: 624
Abstraction: Meta
Status: Draft
Completeness: Stub
Presentation Filter:
+ Summary

Fault injection attacks use disruptive signals or events (e.g. electromagnetic pulses, laser pulses, clock glitches, etc.) to cause faulty behavior in electronic devices. When performed in a controlled manner on devices performing cryptographic operations, this faulty behavior can be exploited to derive secret key information.

+ Attacker Skills or Knowledge Required

Skill or Knowledge Level: High

Adversaries require non-trivial technical skills to create and implement fault injection attacks. Although this style of attack has become easier (commercial equipment and training classes are available to perform these attacks), they usual require significant setup and experimentation time during which physical access to the device is required. This prerequisite makes the attack challenging to perform (assuming that physical security countermeasures and monitoring are in place).

+ Content History
CAPEC Content TeamThe MITRE Corporation2015-11-09Internal_CAPEC_Team

More information is available — Please select a different filter.
Page Last Updated or Reviewed: December 07, 2015