Research on Sidechannel Attack Methods of IKE Protocol

Journal of Information Security Reserach ›› 2025, Vol. 11 ›› Issue (10): 933-.

Research on Sidechannel Attack Methods of IKE Protocol

Li Jun1, Sun Yunxiao2, and Wang Bailing1,2

1(School of Computer Science and Technology, Harbin Institute of Technology(Weihai), Weihai, Shandong 264209)
2(Research Institute of Cyberspace Security, Harbin Institute of Technology, Harbin 150001)

Online:2025-10-15 Published:2025-10-17

IKE协议的侧信道攻击方法研究

李军1孙云霄1王佰玲1,2

1(哈尔滨工业大学(威海)计算机科学与技术学院山东威海264209)
2(哈尔滨工业大学网络空间安全研究院哈尔滨150001)

通讯作者: 王佰玲博士，教授，博士生导师.主要研究方向为工业互联网安全、信息安全、金融安全. wbl@hit.edu.cn
作者简介:李军硕士.主要研究方向为网络安全协议分析. icelee1218@163.com 孙云霄博士.主要研究方向为网络安全协议分析. syx@hitwh.edu.cn 王佰玲博士，教授，博士生导师.主要研究方向为工业互联网安全、信息安全、金融安全. wbl@hit.edu.cn

Abstract

Abstract: Analyze the implementation of the IKE protocol, construct an IKE protocol message generation model, and verify three sidechannel attack methods against the IKE protocol under security assumptions and DolevYao threat models. Attackers can obtain users’ privacy information, and increase the number of target user tags they possess, based on which targeted attack methods and tools can be selected. For the three potential security risks that may cause privacy breaches, the information entropy algorithm is introduced for quantitative evaluation. By calculating the changes in information entropy, the impact of different privacy information breaches on user security is quantitatively analyzed, which is beneficial for users to take targeted security protection measures. The experimental results verified the effectiveness of three sidechannel attack methods, and also proved that the information entropy quantification evaluation method can clearly characterize the degree of harm caused by privacy leakage, providing a basis for users to formulate security protection measures and helping to reduce potential privacy leakage risks.

Key words: IKE protocol, sidechannel, privacy disclosure, information entropy, quantitative evaluation

摘要： 分析互联网密钥交换(Internet key exchange, IKE)协议的实现，构建IKE协议报文生成模型，在安全假设和DolevYao威胁模型的条件下验证3种针对IKE协议的侧信道攻击方法，攻击者可以获取用户的隐私信息，增加所掌握目标用户标签的数量，据此可以选取针对性的攻击方法和攻击工具.对于3种可能造成隐私泄露的安全隐患，引入信息熵算法进行量化评估，通过计算信息熵的变化，定量分析了不同隐私信息泄露对用户安全性的影响，有利于用户采取针对性的防护措施.实验结果验证了3种侧信道攻击方法的有效性，同时也证明通过信息熵量化评估方法可以清晰刻画隐私泄露的危害程度，为用户制定安全防护措施提供了依据，有助于减少潜在的隐私泄露风险.

关键词: 互联网密钥交换协议, 侧信道, 隐私泄露, 信息熵, 量化评估

CLC Number:

TP393

李军, 孙云霄, 王佰玲, . IKE协议的侧信道攻击方法研究[J]. 信息安全研究, 2025, 11(10): 933-.

References

［1］Papadopoulos P, Kourtellis N, Markatos E P. Exclusive: How the (synced) cookie monster breached my encrypted vpn session［C］ Proc of the 11th European Workshop on Systems Security. New York: ACM, 2018: 16［2］Kent S, Seo K. RFC 4301: Security architecture for the Internet protocol［EBOL］. 2005 ［20250115］. https:www.rfceditor.orgrfcrfc4301［3］Kaufman C. RFC 4306: Internet key exchange (IKEv2) protocol［EBOL］. 2005 ［20250115］. https:www.rfceditor.orgrfcrfc4306［4］Bhargavan K, Leurent G. Transcript collision attacks: Breaking authentication in TLS, IKE, and SSH［C］ Proc of Network and Distributed System Security Symposium (NDSS 2016). Piscataway, NJ: IEEE, 2016: 118［5］Yao A C C, Zhao Y. Privacypreserving authenticated keyexchange over internet［J］.  IEEE Trans on Information Forensics and Security, 2013, 9(1): 125140［6］Nir Y,Smyslov V. Protecting internet key exchange protocol version 2 (IKEv2) implementations from distributed denialofservice attacks［ROL］. https:www.rfceditor.orgrfcrfc8019, 2016［7］Hemme L. A differential fault attack against early rounds of (triple) DES［C］ Proc of Int Workshop on Cryptographic Hardware and Embedded Systems. Berlin: Springer, 2004: 254267［8］Kuznetsov A A. Parallel algorithm for MD5 collision attack［J］.  Program Systems: Theory and Applications, 2015, 6(3): 6172［9］Kang B H, Balitanas M O. Vulnerabilities of VPN using IPSec and defensive measures［J］.  International Journal of Advanced Science and Technology, 2009, 8(7): 918［10］Felsch D, Grothe M, Schwenk J, et al. The dangers of key reuse: Practical attacks on {IPsec}{IKE}［C］ Proc of the 27th USENIX Security Symposium (USENIX Security 18).  Berkeley, CA: USENIX Association, 2018: 567583［11］Ninet T, Legay A, Maillard R, et al. The deviation attack: A novel denialofservice attack against IKEv2［C］ Proc of the 18th IEEE Int Conf on Trust, Security and Privacy in Computing and Communications13th IEEE Int Conf on Big Data Science and Engineering (TrustComBigDataSE). Piscataway, NJ: IEEE, 2019: 6674［12］Cremers C. Key exchange in IPsec revisited: Formal analysis of IKEv1 and IKEv2［C］ Proc of the 16th European Symp on Research in Computer Security(ESORICS 2011). Berlin: Springer, 2011: 315334［13］周梓馨, 张功萱, 寇小勇, 等. 一种基于自注意力机制的深度学习侧信道攻击方法［J］. 信息安全研究, 2022, 8(8): 812824［14］Taylor V F,Spolaor R, Conti M, et al. Appscanner: Automatic fingerprinting of smartphone apps from encrypted network traffic［C］ Proc of the 2016 IEEE European Symp on Security and Privacy (EuroS&P). Piscataway, NJ: IEEE, 2016: 439454［15］Herzog J. A computational interpretation of Dolev—Yao adversaries［J］.  Theoretical Computer Science, 2005, 340(1): 5781［16］Meadows C. Analysis of the Internet key exchange protocol using the NRL protocol analyzer［C］ Proc of the 1999 IEEE Symp on Security and Privacy (Cat No 99CB36344). Piscataway, NJ: IEEE, 1999: 216231［17］Permadi K B, Seta H B, Astriratma R. Pengamanan jaringan wireless LAN dengan protokol EAPTTLS dan otentikasi MSCHAPv2 pada fakultas ilmu komputer UPN veteran jakarta［J］.  Informatik: Jurnal Ilmu Komputer, 2020, 16(2): 95105［18］Shannon C E. A mathematical theory of communication［J］.  The Bell System Technical Journal, 1948, 27(3): 379423

[1]	. Hardware Trojan Detection Method Integrating Multiple Sidechannel #br# Analysis and Pearson Correlation Coefficient#br# [J]. Journal of Information Security Reserach, 2025, 11(5): 420-.
[2]	. Privacy Measures for Secure Multiparty Computing Applications [J]. Journal of Information Security Reserach, 2024, 10(1): 6-.
[3]	. Study on DDoS Attack Detection Based on Biological Immune Principle [J]. Journal of Information Security Reserach, 2022, 8(11): 1129-.
[4]	. Research on Data Security Composite Governance [J]. Journal of Information Security Reserach, 2021, 7(12): 1110-.
[5]	. A Trusted QoS Evaluation Model Based on Service Perception [J]. Journal of Information Security Research, 2018, 4(4): 307-314.