Countermeasures Against High-Order Fault-Injection Attacks on CRT-RSA

Abstract : In this paper we study the existing CRT-RSA countermeasures against fault-injection at-tacks. In an attempt to classify them we get to achieve deep understanding of how they work. We show that the many countermeasures that we study (and their variations) actually share a number of common features, but optimize them in different ways. We also show that there is no conceptual distinction between test-based and infective countermeasures and how either one can be transformed into the other. Furthermore, we show that faults on the code (skipping instructions) can be captured by considering only faults on the data. These intermediate results allow us to improve the state of the art in several ways: (a) we fix an existing and that was known to be broken countermeasure (namely the one from Shamir); (b) we drastically optimize an existing countermeasure (namely the one from Vigilant) which we reduce to 3 tests instead of 9 in its original version, and prove that it resists not only one fault but also an arbitrary number of randomizing faults; (c) we also show how to upgrade countermeasures to resist any given number of faults: given a correct first-order countermeasure, we present a way to design a prov-able high-order countermeasure (for a well-defined and reasonable fault model). Finally, we pave the way for a generic approach against fault attacks for any modular arithmetic computations, and thus for the automatic insertion of countermeasures.
Type de document :
Communication dans un congrès
Fault Diagnosis and Tolerance in Cryptography, Sep 2014, Busan, South Korea. Eleventh Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC 2014), 2014, 〈10.1109/FDTC.2014.17〉
Liste complète des métadonnées

https://hal.archives-ouvertes.fr/hal-01071425
Contributeur : Pablo Rauzy <>
Soumis le : mardi 14 octobre 2014 - 11:35:21
Dernière modification le : vendredi 24 novembre 2017 - 01:25:27
Document(s) archivé(s) le : jeudi 15 janvier 2015 - 10:21:18

Fichiers

hofa.pdf
Fichiers produits par l'(les) auteur(s)

Licence


Distributed under a Creative Commons Paternité 4.0 International License

Identifiants

Collections

Citation

Pablo Rauzy, Sylvain Guilley. Countermeasures Against High-Order Fault-Injection Attacks on CRT-RSA. Fault Diagnosis and Tolerance in Cryptography, Sep 2014, Busan, South Korea. Eleventh Workshop on Fault Diagnosis and Tolerance in Cryptography (FDTC 2014), 2014, 〈10.1109/FDTC.2014.17〉. 〈hal-01071425〉

Partager

Métriques

Consultations de la notice

311

Téléchargements de fichiers

87