(In)security against fault injection attacks for CRT-RSA implementations

Fault Diagnosis and Tolerance in Cryptography - Proceedings of the 5th International Workshop, FDTC 2008

Volumn , Issue , 2008, Pages 101-107

  Berzati, Alexandre ^a   Canovas, Cécile ^a   Goubin, Louis ^b  

^a CEA LETI   (France)

^b LABORATOIRE DES SCIENCES DU CLIMAT ET DE L ENVIRONNEMENT   (France)

Author keywords

Countermeasures; CRT RSA; Fault attacks; Wagner's attack

Indexed keywords

CRYPTOGRAPHY; ELECTRIC FAULT CURRENTS; EMERGENCY VEHICLES; FAILURE ANALYSIS; FAULT TOLERANCE; FLUORESCENT SCREENS; NETWORK SECURITY; RELIABILITY; TELEVISION PICTURE TUBES;

COUNTERMEASURES; CRT-RSA; FAULT ATTACKS; FAULT DIAGNOSIS; FAULT-INJECTION; NEW MODEL; PROVABLY SECURE; WAGNER'S ATTACK;

QUALITY ASSURANCE;

EID: 52949130693     PISSN: None     EISSN: None     Source Type: Conference Proceeding    
DOI: 10.1109/FDTC.2008.9     Document Type: Conference Paper

References (20)

1. C. Aumüler, P. Bier, W. Fischer, P. Hofreiter, and J.-P. Seifert. Fault Attack on RSA with CRT : Concrete Results and Practical Countermeasures. In B. K. Jr., Ç.K. Koç, and C. Parr, editors, Cryptographic Hardware and Embedded Systems (CHES 2002), volume 2523 of Lecture Notes in Computer Science, pages 260-275. Springer, 2002.
2. H. Bar-El, H. Choukri, D. Naccache, M. Tunstall, and C. Whelan. The Sorcerer's Apprentice Guide to Fault Attacks. Cryptology ePrint Archive, Report 2004/100, 2004.
3. J. Blömer and M. Otto. Wagner's Attack on a secure CRTRSA Algorithm Reconsidered. In L. Breveglieri, I. Koren, D. Naccache, and J.-P. Seifert, editors, Fault Diagnosis and Tolerance in Cryptography (FDTC 2006), volume 4236 of Lecture Notes in Computer Science, pages 13-23. Springer-Verlag, 2006.
4. J. Blömer, M. Otto, and J.-P. Seifert. A New CRT-RSA Algorithm Secure Against Bellcore Attack. In ACM Conference on Computer and Communication Security (CCS 2003), pages 311-320. ACM Press, 2003.
5. D. Boneh, R. DeMillo, and R. Lipton. On the Importance of Checking Cryptographic Protocols for Faults. In W. Fumy, editor, EUROCRYPT'97, volume 1233 of Lecture Notes in Computer Science, pages 37-51. Springer-Verlag, 1997.
6. D. Boneh, R. DeMillo, and R. Lipton. "On the Importance of Eliminating Errors in Cryptographic Computations". Journal of Cryptology, 14(2):101-119, 2001.
7. C. Giraud. DFA on AES. In V. Rijmen, H. Dobbertin, and A. Sowa, editors, Fourth Conference on the Advanced Encryption Standard (AES4), volume 3373 of Lecture Notes in Computer Science, pages 27-41. Springer-Verlag, 2005.
8. C. Giraud. Procédé de traitement de données impliquant une exponentiation modulaire et un dispositif associé, March 2005. Numéro de publication: FR0503083, WO2006103341.
9. C. Giraud. Attaques de Cryptosystèmes Embarqués et Contre-Mesures Associées. PhD thesis, Université de Versailles Saint-Quentin, 2007.
10. M. Joye and M. Ciet. Practical Fault Countermeasures for Chinese Remaindering Based RSA. In L. Breveglieri and I. Koren, editors, Fault Diagnosis and Tolerance in Cryptography (FDTC 2005), pages 124-132, 2005.
11. M. Joye, A. Lenstra, and J.-J. Quisquater. "Chinese Remaindering Based Cryptosystems in the Presence of Faults". Journal of Cryptology, 12(4):241-245, 1999.
12. M. Joye, P. Paillier, and S.-M. Yen. Secure Evaluation of Modular Functions. In R. Hwang and C. Wu, editors, 2001 International Workshop on Cryptology and Network Security, pages 227-229, Taipei,Taiwan, 2001.
13. C. Kim and J.-J. Quisquater. Fault Attacks for CRT Based RSA : New Attacks, New Results and New Countermeasures. In Information Security Theory and Practices, Smart Cards, Mobile and Ubiquitus Computing Systems, volume 4462 of Lecture Notes in Computer Science, pages 215-228. Springer-Verlag, 2007.
14. R. Rivest, A. Shamir, and L. Adleman. A Method for Obtaining Digital Signature and Public-Key Cryptosystems. In Communications of the ACM, volume 21, pages 120-126, 1978.
15. A. Shamir. "Improved Method and Apparatus for Protecting Public Key Schemes from. Timing and Fault Attacks". Presented at the Rump Session of Eurocrypt'97, 1997.
16. D. Wagner. Cryptanalysis of a provably secure CRT-RSA algorithm. In Proceedings of the 11th ACM Conference on Computer Security (CCS 2004), pages 92-97. ACM, 2004.
17. S.-M. Yen and D. Kim. Cryptanalysis of Two Protocols for RSA with CRT Based on Fault Infection. In Fault Diagnosis and Tolerance in Cryptography (FDTC 2004), pages 381-385, 2004. IEEE Computer Society.
18. S.-M. Yen, D. Kim, S. Lim, and S. Moon. RSA Speedup with Residue Number System Immune Against Hardware Fault Cryptanalysis. In K. Kim, editor, Information Security and Cryptology (ISISC 2001), volume 2288 of Lecture Notes in Computer Science, pages 397-413. Springer-Verlag, 2001.
19. S.-M. Yen, D. Kim, and S. Moon. Cryptanalysis of Two Protocols for RSA with CRT Based on Fault Infection. In L. Breveglieri, I. Koren, D. Naccache, and J.-P. Seifert, editors, Fault Diagnosis and Tolerance in Cryptography (FDTC 2006), volume 4236 of Lecture Notes in Computer Science, pages 53-61. Springer-Verlag, 2006.
20. S.-M. Yen, S. Moon, and J.-C. Ha. Hardware Fault Attack on RSA with CRT Revisited. In C. Lim and P. Lee, editors, Information Security and Cryptology (ICISC 2002), volume 2587 of Lecture Notes in Computer Science, pages 374-388. Springer, 2002.