中文摘要：

为弥补数学分析方法对 S 盒安全性评估的不足，使用相关能量分析和模板攻击，对 DES（data encryption standard）、AES（advanced encryption standard）和 Serpent 密码算法中不同的 S 盒结构进行安全评估，使用 MATLAB进行仿真实验。对于相关能量分析，Serpent 算法的单个 S 盒抗攻击性能最强，至少需要206条能量迹，AES 和DES 算法分别需要112条和160条能量迹。对于模板攻击，Serpent 算法的 S 盒也能最有效抵抗模板攻击，而 AES次之，DES 抗攻击性最弱。实验结果表明，在一轮算法操作比特总数相同的情况下，低位宽 S 盒抗能量分析攻击的效果优于高位宽 S 盒。

英文摘要：

In order to make up the safety assessment of S-boxes,which was traditionally tested by mathematical meth-ods,correlation power analysis and template attack were used on different S-boxes of DES,AES and Serpent. The sim-ulations were put forth by MATLAB to obtain the success rates. The S-box of Serpent was the strongest against both the correlation power analysis and template attack. In correlation power analysis,Serpent needed 206 power traces,while AES and DES needed only 112 and 160 respectively. In addition,AES was stronger than DES against template attack. The results showed that the low-wide S-box was stronger than the high-wide S-box with the same total number of bits in one round.