tacet 0.4.2

Detect timing side channels in cryptographic code
Documentation 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328

//! Configuration types for power analysis.

use serde::{Deserialize, Serialize};

/// Feature extraction family.
///
/// Determines which statistical features are extracted from each partition
/// of the power traces.
#[derive(Debug, Clone, Copy, PartialEq, Eq, Default, Serialize, Deserialize)]
pub enum FeatureFamily {
    /// Per-partition mean (standard TVLA).
    ///
    /// Extracts `d = num_partitions` features per trace.
    /// This is the simplest and most commonly used approach.
    #[default]
    Mean,

    /// Robust statistics: median, 10th, and 90th percentiles.
    ///
    /// Extracts `d = 3 × num_partitions` features per trace.
    /// More robust to outliers than mean-based analysis.
    Robust3,

    /// Centered variance per partition.
    ///
    /// Extracts `d = num_partitions` features per trace.
    /// Detects second-order (variance) leakage that mean-based
    /// analysis would miss.
    CenteredSquare,
}

impl std::fmt::Display for FeatureFamily {
    fn fmt(&self, f: &mut std::fmt::Formatter<'_>) -> std::fmt::Result {
        match self {
            FeatureFamily::Mean => write!(f, "Mean"),
            FeatureFamily::Robust3 => write!(f, "Robust3 (median, P10, P90)"),
            FeatureFamily::CenteredSquare => write!(f, "CenteredSquare (variance)"),
        }
    }
}

/// Configuration for trace partitioning.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct PartitionConfig {
    /// Number of partitions (bins) to divide each trace into.
    ///
    /// Default: 32
    ///
    /// Higher values provide finer granularity for localization but
    /// increase the feature dimension and may reduce statistical power.
    pub num_partitions: usize,

    /// Whether partitions should overlap.
    ///
    /// Default: false
    ///
    /// Overlapping partitions can improve sensitivity at boundaries
    /// but increase feature dimension and correlation.
    pub overlap: bool,

    /// Overlap fraction (0.0 to 0.5).
    ///
    /// Only used if `overlap` is true. A value of 0.25 means each
    /// partition overlaps 25% with its neighbors.
    pub overlap_fraction: f64,
}

impl Default for PartitionConfig {
    fn default() -> Self {
        Self {
            num_partitions: 32,
            overlap: false,
            overlap_fraction: 0.25,
        }
    }
}

impl PartitionConfig {
    /// Create a new partition config with the given number of partitions.
    pub fn new(num_partitions: usize) -> Self {
        Self {
            num_partitions,
            ..Default::default()
        }
    }

    /// Enable overlapping partitions with the given overlap fraction.
    pub fn with_overlap(mut self, fraction: f64) -> Self {
        self.overlap = true;
        self.overlap_fraction = fraction.clamp(0.0, 0.5);
        self
    }
}

/// Configuration for trace preprocessing.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct PreprocessingConfig {
    /// Lower percentile for winsorization (outlier removal).
    ///
    /// Default: 0.01 (0.01st percentile)
    ///
    /// Values below this percentile are clamped to the percentile value.
    pub winsorize_lower: f64,

    /// Upper percentile for winsorization (outlier removal).
    ///
    /// Default: 99.99 (99.99th percentile)
    ///
    /// Values above this percentile are clamped to the percentile value.
    pub winsorize_upper: f64,

    /// Normalize traces to zero mean.
    ///
    /// Default: true
    ///
    /// Removes DC offset, which is typically not informative.
    pub normalize_mean: bool,

    /// Normalize traces to unit variance.
    ///
    /// Default: false
    ///
    /// Can help with traces from different measurement setups but may
    /// obscure magnitude information.
    pub normalize_variance: bool,
}

impl Default for PreprocessingConfig {
    fn default() -> Self {
        Self {
            winsorize_lower: 0.01,
            winsorize_upper: 99.99,
            normalize_mean: true,
            normalize_variance: false,
        }
    }
}

impl PreprocessingConfig {
    /// Disable all preprocessing (raw samples).
    pub fn none() -> Self {
        Self {
            winsorize_lower: 0.0,
            winsorize_upper: 100.0,
            normalize_mean: false,
            normalize_variance: false,
        }
    }

    /// Standard preprocessing with mean normalization.
    pub fn standard() -> Self {
        Self::default()
    }

    /// Full normalization (zero mean, unit variance).
    pub fn full() -> Self {
        Self {
            normalize_variance: true,
            ..Default::default()
        }
    }
}

/// Main configuration for power analysis.
#[derive(Debug, Clone, Serialize, Deserialize)]
pub struct Config {
    /// Feature extraction family.
    pub feature_family: FeatureFamily,

    /// Partition configuration.
    pub partition: PartitionConfig,

    /// Preprocessing configuration.
    pub preprocessing: PreprocessingConfig,

    /// Multiplier for noise floor threshold.
    ///
    /// Default: 5.0
    ///
    /// The effective threshold is `floor_multiplier × θ_floor` where
    /// θ_floor is estimated from calibration noise.
    pub floor_multiplier: f64,

    /// Whether to analyze stages independently.
    ///
    /// Default: true
    ///
    /// If traces have markers, each stage is analyzed separately.
    /// If false, the entire trace is analyzed as one segment.
    pub stage_wise: bool,

    /// Random seed for reproducibility.
    ///
    /// Default: None (random)
    pub seed: Option<u64>,

    /// Number of bootstrap iterations for covariance estimation.
    ///
    /// Default: 2000
    pub bootstrap_iterations: usize,

    /// Pass threshold for posterior probability.
    ///
    /// Default: 0.05
    ///
    /// If P(leak > θ | data) < pass_threshold, the test passes.
    pub pass_threshold: f64,

    /// Fail threshold for posterior probability.
    ///
    /// Default: 0.95
    ///
    /// If P(leak > θ | data) > fail_threshold, the test fails.
    pub fail_threshold: f64,
}

impl Default for Config {
    fn default() -> Self {
        Self {
            feature_family: FeatureFamily::default(),
            partition: PartitionConfig::default(),
            preprocessing: PreprocessingConfig::default(),
            floor_multiplier: 5.0,
            stage_wise: true,
            seed: None,
            bootstrap_iterations: 2000,
            pass_threshold: 0.05,
            fail_threshold: 0.95,
        }
    }
}

impl Config {
    /// Create a new config with default settings.
    pub fn new() -> Self {
        Self::default()
    }

    /// Set the feature family.
    pub fn with_feature_family(mut self, family: FeatureFamily) -> Self {
        self.feature_family = family;
        self
    }

    /// Set the number of partitions.
    pub fn with_partitions(mut self, num_partitions: usize) -> Self {
        self.partition.num_partitions = num_partitions;
        self
    }

    /// Set the floor multiplier.
    pub fn with_floor_multiplier(mut self, multiplier: f64) -> Self {
        self.floor_multiplier = multiplier;
        self
    }

    /// Disable stage-wise analysis.
    pub fn without_stages(mut self) -> Self {
        self.stage_wise = false;
        self
    }

    /// Set a random seed for reproducibility.
    pub fn with_seed(mut self, seed: u64) -> Self {
        self.seed = Some(seed);
        self
    }

    /// Get the feature dimension for this configuration.
    ///
    /// Returns the number of features extracted per trace.
    pub fn feature_dimension(&self) -> usize {
        match self.feature_family {
            FeatureFamily::Mean => self.partition.num_partitions,
            FeatureFamily::Robust3 => 3 * self.partition.num_partitions,
            FeatureFamily::CenteredSquare => self.partition.num_partitions,
        }
    }
}

#[cfg(test)]
mod tests {
    use super::*;

    #[test]
    fn test_feature_dimension() {
        let mut config = Config::default();
        config.partition.num_partitions = 32;

        config.feature_family = FeatureFamily::Mean;
        assert_eq!(config.feature_dimension(), 32);

        config.feature_family = FeatureFamily::Robust3;
        assert_eq!(config.feature_dimension(), 96);

        config.feature_family = FeatureFamily::CenteredSquare;
        assert_eq!(config.feature_dimension(), 32);
    }

    #[test]
    fn test_config_builder() {
        let config = Config::new()
            .with_feature_family(FeatureFamily::Robust3)
            .with_partitions(64)
            .with_floor_multiplier(3.0)
            .with_seed(42);

        assert_eq!(config.feature_family, FeatureFamily::Robust3);
        assert_eq!(config.partition.num_partitions, 64);
        assert_eq!(config.floor_multiplier, 3.0);
        assert_eq!(config.seed, Some(42));
    }

    #[test]
    fn test_preprocessing_presets() {
        let none = PreprocessingConfig::none();
        assert!(!none.normalize_mean);
        assert!(!none.normalize_variance);

        let standard = PreprocessingConfig::standard();
        assert!(standard.normalize_mean);
        assert!(!standard.normalize_variance);

        let full = PreprocessingConfig::full();
        assert!(full.normalize_mean);
        assert!(full.normalize_variance);
    }
}