TU Darmstadt / ULB / TUbiblio

Exponent Blinding Does not Always Lift (Partial) SPA Resistance to Higher-Level Security

Schindler, Werner ; Itoh, Kouichi
Hrsg.: Lopez, J. ; Tsudik, G. (2011)
Exponent Blinding Does not Always Lift (Partial) SPA Resistance to Higher-Level Security.
Konferenzveröffentlichung, Bibliographie

Kurzbeschreibung (Abstract)

Exponent blinding is known as a secure countermeasure against side-channel attacks. If single power traces reveal some exponent bits, an attack by Fouque et al. applies that recovers the exponent. However, this attack becomes infeasible if some of the guessed bits are incorrect. Thus, the attack was not assumed to be a realistic threat. In this paper we present two variants of a novel generic attack, which works for considerable error rates at each bit position, disproving the hypothesis that mere exponent blinding is always sufficient. We confirmed experimentally that our attack permits up to 28% (RSA case) or 23% (ECC case) error bits.

Typ des Eintrags: Konferenzveröffentlichung
Erschienen: 2011
Herausgeber: Lopez, J. ; Tsudik, G.
Autor(en): Schindler, Werner ; Itoh, Kouichi
Art des Eintrags: Bibliographie
Titel: Exponent Blinding Does not Always Lift (Partial) SPA Resistance to Higher-Level Security
Sprache: Englisch
Publikationsjahr: Juni 2011
Verlag: Springer
(Heft-)Nummer: 6715
Buchtitel: ACNS 2011
Reihe: LNCS
Kurzbeschreibung (Abstract):

Exponent blinding is known as a secure countermeasure against side-channel attacks. If single power traces reveal some exponent bits, an attack by Fouque et al. applies that recovers the exponent. However, this attack becomes infeasible if some of the guessed bits are incorrect. Thus, the attack was not assumed to be a realistic threat. In this paper we present two variants of a novel generic attack, which works for considerable error rates at each bit position, disproving the hypothesis that mere exponent blinding is always sufficient. We confirmed experimentally that our attack permits up to 28% (RSA case) or 23% (ECC case) error bits.

Freie Schlagworte: Secure Things;side-channel analysis, exponent blinding, NAF representation
ID-Nummer: TUD-CS-2011-0129
Fachbereich(e)/-gebiet(e): 20 Fachbereich Informatik > Sicherheit in der Informationstechnik
LOEWE > LOEWE-Zentren > CASED – Center for Advanced Security Research Darmstadt
LOEWE > LOEWE-Zentren
20 Fachbereich Informatik
LOEWE
Hinterlegungsdatum: 30 Dez 2016 20:23
Letzte Änderung: 15 Mai 2018 13:42
PPN:
Export:
Suche nach Titel in: TUfind oder in Google
Frage zum Eintrag Frage zum Eintrag

Optionen (nur für Redakteure)
Redaktionelle Details anzeigen Redaktionelle Details anzeigen