Fast elliptic curve multiplications resistant against side channel attacks

IEICE Transactions on Fundamentals of Electronics, Communications and Computer Sciences

Volumn E88-A, Issue 1, 2005, Pages 161-171

  Izu, Tetsuya ^a,c,d,e   Takagi, Tsuyoshi ^b,f,g  

^a FUJITSU LABORATORIES LTD   (Japan)

^b DARMSTADT UNIVERSITY OF TECHNOLOGY   (Germany)

^c IPSJ   (Japan)

^d JSIAM   (Japan)

^e ROTHAMSTED RESEARCH   (United Kingdom)

^f International Association for Cryptologic Research IACR   (Germany)

^g Darmstadter Zentrum fur IT Sicherheit DZI   (Germany)

Author keywords

Elliptic curve cryptosystems (ECC); Scalar multiplication; Side channel attacks; SIMD operation

Indexed keywords

COMPUTATIONAL METHODS; CONSTRAINT THEORY; OPTIMIZATION; PUBLIC KEY CRYPTOGRAPHY;

ELLIPTIC CURVE CRYPTOSYSTEMS (ECC); SCALAR MULTIPLICATION; SIDE CHANNEL ATTACKS; SIMD OPERATION;

SECURITY OF DATA;

EID: 27544457322     PISSN: 09168508     EISSN: 17451337     Source Type: Journal    
DOI: 10.1093/ietfec/E88-A.1.161     Document Type: Conference Paper

References (37)

1. K. Aoki, F. Hoshino, T. Kobayashi, and H. Oguro, "Elliptic curve arithmetic using SIMD," ISC2001, LNCS 2200, pp.235-247, Springer-Verlag, 2001.
2. 2155," IEEE J. Sel. Areas Commun., vol.11, no.5, pp.804-813, 1993.
3. ANSI X9.62, Public Key Cryptography for the Financial Services Industry: The Elliptic Curve Digital Signature Algorithm (ECDSA), draft, 1998.
4. A. Bellezza, "Countermeasures against side-channel attacks for elliptic curve cryptosystems," Cryptology ePrint Archive, 2001/103, 2001.
5. E. Brier and M. Joye, "Weierstraβ elliptic curves and side-channel attacks," PKC2002, LNCS 2274, pp.335-345, Springer-Verlag, 2002.
6. I. Blake, G. Seroussi, and N. Smart, Elliptic Curves in Cryptography, Cambridge University Press, 1999.
7. J. Coron, "Resistance against differential power analysis for elliptic curve cryptosystems," CHES'99, LNCS 1717, pp.292-302, Springer-Verlag, 1999.
8. H. Cohen, A. Miyaji, and T. Ono, "Efficient elliptic curve exponentiation using mixed coordinates," Asiacrypt'98, LNCS 1514, pp.51-65, Springer-Verlag, 1998.
9. C. Clavier and M. Joye, "Universal exponentiation algorithm - A first step towards provable SPA-resistance," CHES2001, LNCS 2162, pp.300-308, Springer-Verlag, 2001.
10. p hedged against non-differential side-channel attacks," Cryptology ePrint Archive, 2002/007, 2002.
11. D. Gordon, "A survey of fast exponentiation methods," J. Algorithms, vol.27, pp.129-146, 1998.
12. IEEE P1363, Standard Specifications for Public-Key Cryptography, 2000.
13. K. Itoh, T. Izu, and M. Takenaka, "Address-bit differential power analysis of cryptographic schemes OK-ECDH and OK-ECDSA," CHES 2002, LNCS 2523, pp.129-143, Springer-Verlag, 2003.
14. K. Itoh, T. Izu, and M. Takenaka, "A practical countermeasure against address-bit differential power analysis," CHES 2003, LNCS 2779, pp.382-396, Springer-Verlag, 2003.
15. T. Izu, B. Möller, and T. Takagi, "Improved elliptic curve multiplication methods resistant against side channel attacks," Indocrypt 2002, LNCS 2551, pp.296-313, 2002.
16. T. Izu and T. Takagi, "A fast parallel elliptic curve multiplication resistant against side channel attacks," Technical Report of CACR, CORR 2002-03, University of Waterloo, 2002.
17. T. Izu and T. Takagi, "A fast parallel elliptic curve multiplication resistant against side channel attacks," PKC 2002, LNCS 2274, pp.280-296, 2002.
18. T. Izu and T. Takagi, "Fast elliptic curve multiplications with SIMD operations," IEICE Trans. Fundamentals, vol.E87-A, no. 1, pp.85-93, Jan. 2004.
19. M. Joye and J. Quisquater, "Hessian elliptic curves and side-channel attacks," CHES2001, LNCS 2162, pp.402-410, Springer-Verlag, 2001.
20. M. Joye and C. Tymen, "Protections against differential analysis for elliptic curve cryptography," CHES2001, LNCS 2162, pp.377-390, Springer-Verlag, 2001.
21. N. Koblitz, "Elliptic curve cryptosystems," Math. Comput., vol.48, pp.203-209, 1987.
22. C. Kocher, "Timing attacks on implementations of Diffie-Hellman, RSA, DSS, and other systems," Crypto'96, LNCS 1109, pp. 104-113, Springer-Verlag, 1996.
23. C. Kocher, J. Jaffe, and B. Jun, "Differential power analysis," Crypto'99, LNCS 1666, pp.388-397, Springer-Verlag, 1999.
24. LiDIA, A C++ Library For Computational Number Theory, Technische Universtät Darmstadt,
25. P. Liardet and N. Smart, "Preventing SPA/DPA in ECC systems using the Jacobi form," CHES2001, LNCS 2162, pp.391-401, Springer-Verlag, 2001.
26. V.S. Miller, "Use of elliptic curves in cryptography," CRYPTO'85, LNCS 218, pp.417-426, Springer-Verlag, 1986.
27. B. Möller, "Securing elliptic curve point multiplication against side-channel attacks," ISC 2001, LNCS 2200, pp.324-334, Springer-Verlag, 2001.Weiner
28. P. Montgomery, "Speeding the Pollard and elliptic curve methods for factorizations," Math. Comput., vol.48, pp.243-264, 1987.
29. T. Messerges, E. Dabbish, and R. Sloan, "Investigations of power analysis attacks on smartcards," preprint, USENIX Workshop on Smartcard Technology, 1999.
30. National Institute of Standards and Technology, Recommended Elliptic Curves for Federal Government Use, in the appendix of FIPS 186-2.
31. K. Okeya, H. Kurumatani, and K. Sakurai, "Elliptic curves with the Montgomery form and their cryptographic applications," PKC2000, LNCS 1751, pp.446-465, Springer-Verlag, 2000.
32. K. Okeya, K. Miyazaki, and K. Sakurai, "A fast scalar multiplication method with randomized projective coordinates on a Montgomery-form elliptic curve secure against side channel attacks," ICISC 2001, LNCS 2288, pp.428-439, Springer-Verlag, 2002.
33. K. Okeya and K. Sakurai, "Power analysis breaks elliptic curve cryptosystems even secure against the timing attack," Indocrypt 2000, LNCS 1977, pp.178-190, Springer-Verlag, 2000.
34. M. Seysen, "DPA-Gegenmaβnahmen bei einer ECDSA-Implementierung auf Chipkarten," presented at DPA Workshop, BSI, ECC Brainpool, 2001.
35. N. Smart, "The Hessian form of an elliptic curve," CHES2001, LNCS 2162, pp.118-125, Springer-Verlag, 2001.
36. Standards for Efficient Cryptography Group (SECG), Specification of Standards for Efficient Cryptography.
37. Wireless Application Protocol (WAP) Forum, Wireless Transport Layer Security (WTLS) Specification.