Loop abort Faults on Lattice-Based Fiat-Shamir & Hash'n Sign signatures - IMT - Institut Mines-Télécom Accéder directement au contenu
Communication Dans Un Congrès Année : 2016

Loop abort Faults on Lattice-Based Fiat-Shamir & Hash'n Sign signatures

Résumé

As the advent of general-purpose quantum computers appears to be drawing closer, agencies and advisory bodies have started recommending that we prepare the transition away from factoring and discrete logarithm-based cryptography, and towards postquantum secure constructions, such as lattice-based schemes. Almost all primitives of classical cryptography (and more!) can be realized with lattices, and the efficiency of primitives like encryption and signatures has gradually improved to the point that key sizes are competitive with RSA at similar security levels, and fast performance can be achieved both in software and hardware. However, little research has been conducted on physical attacks targeting concrete implementations of postquantum cryptography in general and lattice-based schemes in particular , and such research is essential if lattices are going to replace RSA and elliptic curves in our devices and smart cards. In this paper, we look in particular at fault attacks against some instances of the Fiat-Shamir family of signature scheme on lattices (BLISS, GLP, TESLA and PASSSign) and on the GPV scheme, member of the Hash'n Sign family. Some of these schemes have achieved record-setting efficiency in software and hardware. We present several possible fault attacks, one of which allows a full key recovery with as little as a single faulty signature, and discuss possible countermeasures to mitigate these attacks.
Fichier principal
Vignette du fichier
LatticesSignatures.pdf (504.1 Ko) Télécharger le fichier
Origine : Fichiers produits par l'(les) auteur(s)
Loading...

Dates et versions

hal-01561424 , version 1 (12-07-2017)

Identifiants

  • HAL Id : hal-01561424 , version 1

Citer

Thomas Espitau, Pierre-Alain Fouque, Benoit Gérard, Mehdi Tibouchi. Loop abort Faults on Lattice-Based Fiat-Shamir & Hash'n Sign signatures. 23rd Conference on Selected Area In Cryptography, Aug 2016, Saint John's, Canada. ⟨hal-01561424⟩
340 Consultations
147 Téléchargements

Partager

Gmail Facebook X LinkedIn More