by Sung-ming Yen, Marc Joye
IEEE Transactions on Computers
http://www.gemplus.com/smart/r_d/publications/pdf/YJ00chkb.pdf
Add To MetaCart
Abstract:
Abstract. In order to avoid fault-based attacks on cryptographic security modules (e.g., smart-cards), some authors suggest that the computation results should be checked for faults before being transmitted. In this paper, we describe a potential fault-based attack where key bits leak only through the information whether the device produces after a temporary fault a correct answer or not. This information is available to the adversary even if a check is performed before output.
Citations
|
1976
|
A method for obtaining digital signatures and public key cryptosystems
– Rivest, Shamir, et al.
- 1978
|
|
789
|
A public key cryptosystem and a signature scheme based on discrete logarithms
– Elgamal
- 1985
|
|
249
|
Tamper resistance – A cautionary note
– Anderson, Kuhn
- 1996
|
|
177
|
On the Importance of Checking Cryptographic Protocols for Faults,” EUROCRYPT’97
– Boneh, Demillo, et al.
- 1997
|
|
157
|
Low cost attacks on tamper resistant devices
– Anderson, Kuhn
- 1997
|
|
126
|
Differential Fault Analysis of Secret Key Cryptosystems
– Biham, Shamir
- 1997
|
|
72
|
Finding a small root of a univariate modular equation
– Coppersmith
- 1996
|
|
70
|
Secure Deletion of Data from Magnetic and Solid-State Memory, Retrieved February, 2006 from: http://www.cs.auckland.ac.nz/~pgut001/pubs/secure_del.htm l
– Gutmann
|
|
28
|
Breaking public key cryptosystems on tamper resistant devices in the presence of transient faults
– Bao, Deng, et al.
- 1997
|
|
27
|
An attack on RSA given a small fraction of the private key bits
– Boneh, Durfee, et al.
- 1998
|
|
17
|
Chinese remaindering based cryptosystems in the presence of faults
– Joye, Lenstra, et al.
- 1999
|
|
15
|
Hardwaresicherheit von mikrochips in chipkarten. Datenschutz und Datensicherheit
– Kocar
- 1996
|
|
15
|
RSA hardware implementation
– Koc
- 1996
|
|
13
|
Fault Induction Attacks, Tamper Resistance, and Hostile Reverse Engineering Die Datenschleuder #67
– Maher
- 1997
|
|
9
|
How to check modular exponentiation. Presented at the rump session of EUROCRYPT '97
– Shamir
- 1997
|
|
8
|
Breaking real-world implementations of cryptosystems by manipulating their random number generation
– Zheng, Matsumoto
- 1997
|
|
8
|
A computer algorithm for the product AB modulo M
– Blakley
- 1983
|
|
7
|
Comments on Some New Attacks on Cryptographic Devices
– Robshaw
- 1997
|
|
7
|
Chinks in digital armor -- exploiting faults to break smart-card cryptosystems
– Peterson
- 1997
|
|
5
|
Comments on \A computer algorithm for the product AB modulo M
– Sloan
- 1985
|
