Skip to Main content Skip to Navigation
Conference papers

Resistance of Isogeny-Based Cryptographic Implementations to a Fault Attack

Abstract : The threat of quantum computers has sparked the development of a new kind of cryptography to resist their attacks. Isogenies between elliptic curves are one of the tools used for such cryptosystems. They are championed by SIKE (Supersingular isogeny key encapsulation), an "alternate candidate" of the third round of the NIST Post-Quantum Cryptography Standardization Process. While all candidates are believed to be mathematically secure, their implementations may be vulnerable to hardware attacks. In this work we investigate for the first time whether Ti's 2017 theoretical fault injection attack is exploitable in practice. We also examine suitable countermeasures. We manage to recover the secret thanks to electromagnetic fault injection on an ARM Cortex A53 using a correct and an altered public key generation. Moreover we propose a suitable countermeasure to detect faults that has a low overhead as it takes advantage of a redundancy already present in SIKE implementations.
Document type :
Conference papers
Complete list of metadata
Contributor : Élise Tasso Connect in order to contact the contributor
Submitted on : Tuesday, June 22, 2021 - 10:51:53 AM
Last modification on : Tuesday, September 27, 2022 - 4:22:07 PM
Long-term archiving on: : Thursday, September 23, 2021 - 6:19:27 PM


Files produced by the author(s)


  • HAL Id : cea-03266892, version 1



Élise Tasso, Luca de Feo, Nadia El Mrabet, Simon Pontié. Resistance of Isogeny-Based Cryptographic Implementations to a Fault Attack. Constructive Side-Channel Analysis and Secure Design (COSADE) 2021, Oct 2021, Lugano, Switzerland. ⟨cea-03266892⟩



Record views


Files downloads