A new fault cryptanalysis on montgomery ladder exponentiation algorithm

Jea Hoon Park; Ki Seok Bae; Sang Jae Moon; Doo Ho Choi; You Sung Kang; Jae Cheol Ha

doi:10.1145/1655925.1656088

A new fault cryptanalysis on montgomery ladder exponentiation algorithm

Jea Hoon Park
, Ki Seok Bae
, Sang Jae Moon
, Doo Ho Choi
, You Sung Kang
, Jae Cheol Ha

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

1 Citation (Scopus)

Abstract

The Montgomery ladder exponentiation algorithm is recognized as a very efficient countermeasure against Simple Power Analysis and C Safe-Error Attacks on RSA or elliptic curve cryptosystem. In this paper, we demonstrate the vulnerability of the Montgomery ladder algorithm to fault analysis attack when an error is injected during its operation in an embedded cryptographic chip. After injecting an error, we measure the power traced and compare it with an original correct trace. As a result, we can derive the secret key of the public-key cryptosystems such as RSA by computing the correlation coefficients of two power traces for correct and faulty cryptographic operations with same input.

Original language	English
Title of host publication	Proceedings of 2nd International Conference on Interaction Sciences
Subtitle of host publication	Information Technology, Culture and Human
Pages	896-899
Number of pages	4
DOIs	https://doi.org/10.1145/1655925.1656088
Publication status	Published - 2009
Externally published	Yes
Event	2nd International Conference on Interaction Sciences: Information Technology, Culture and Human, ICIS 2009 - Seoul, Korea, Republic of Duration: 2009 Nov 24 → 2009 Nov 26

Publication series

Name	ACM International Conference Proceeding Series
Volume	403

Other

Other	2nd International Conference on Interaction Sciences: Information Technology, Culture and Human, ICIS 2009
Country/Territory	Korea, Republic of
City	Seoul
Period	09/11/24 → 09/11/26

Keywords

Fault analysis attack
Montgomery ladder exponentiation algorithm
Physical cryptanalysis
RSA

ASJC Scopus subject areas

Software
Human-Computer Interaction
Computer Vision and Pattern Recognition
Computer Networks and Communications

Access to Document

10.1145/1655925.1656088

Cite this

Park, J. H., Bae, K. S., Moon, S. J., Choi, D. H., Kang, Y. S., & Ha, J. C. (2009). A new fault cryptanalysis on montgomery ladder exponentiation algorithm. In Proceedings of 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human (pp. 896-899). (ACM International Conference Proceeding Series; Vol. 403). https://doi.org/10.1145/1655925.1656088

A new fault cryptanalysis on montgomery ladder exponentiation algorithm. / Park, Jea Hoon; Bae, Ki Seok; Moon, Sang Jae et al.
Proceedings of 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human. 2009. p. 896-899 (ACM International Conference Proceeding Series; Vol. 403).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

Park, JH, Bae, KS, Moon, SJ, Choi, DH, Kang, YS & Ha, JC 2009, A new fault cryptanalysis on montgomery ladder exponentiation algorithm. in Proceedings of 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human. ACM International Conference Proceeding Series, vol. 403, pp. 896-899, 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human, ICIS 2009, Seoul, Korea, Republic of, 09/11/24. https://doi.org/10.1145/1655925.1656088

@inproceedings{73946ef0b54741209f50444e2745237f,

title = "A new fault cryptanalysis on montgomery ladder exponentiation algorithm",

abstract = "The Montgomery ladder exponentiation algorithm is recognized as a very efficient countermeasure against Simple Power Analysis and C Safe-Error Attacks on RSA or elliptic curve cryptosystem. In this paper, we demonstrate the vulnerability of the Montgomery ladder algorithm to fault analysis attack when an error is injected during its operation in an embedded cryptographic chip. After injecting an error, we measure the power traced and compare it with an original correct trace. As a result, we can derive the secret key of the public-key cryptosystems such as RSA by computing the correlation coefficients of two power traces for correct and faulty cryptographic operations with same input.",

keywords = "Fault analysis attack, Montgomery ladder exponentiation algorithm, Physical cryptanalysis, RSA",

author = "Park, \{Jea Hoon\} and Bae, \{Ki Seok\} and Moon, \{Sang Jae\} and Choi, \{Doo Ho\} and Kang, \{You Sung\} and Ha, \{Jae Cheol\}",

year = "2009",

doi = "10.1145/1655925.1656088",

language = "English",

isbn = "9781605587103",

series = "ACM International Conference Proceeding Series",

pages = "896--899",

booktitle = "Proceedings of 2nd International Conference on Interaction Sciences",

note = "2nd International Conference on Interaction Sciences: Information Technology, Culture and Human, ICIS 2009 ; Conference date: 24-11-2009 Through 26-11-2009",

}

TY - GEN

T1 - A new fault cryptanalysis on montgomery ladder exponentiation algorithm

AU - Park, Jea Hoon

AU - Bae, Ki Seok

AU - Moon, Sang Jae

AU - Choi, Doo Ho

AU - Kang, You Sung

AU - Ha, Jae Cheol

PY - 2009

Y1 - 2009

N2 - The Montgomery ladder exponentiation algorithm is recognized as a very efficient countermeasure against Simple Power Analysis and C Safe-Error Attacks on RSA or elliptic curve cryptosystem. In this paper, we demonstrate the vulnerability of the Montgomery ladder algorithm to fault analysis attack when an error is injected during its operation in an embedded cryptographic chip. After injecting an error, we measure the power traced and compare it with an original correct trace. As a result, we can derive the secret key of the public-key cryptosystems such as RSA by computing the correlation coefficients of two power traces for correct and faulty cryptographic operations with same input.

AB - The Montgomery ladder exponentiation algorithm is recognized as a very efficient countermeasure against Simple Power Analysis and C Safe-Error Attacks on RSA or elliptic curve cryptosystem. In this paper, we demonstrate the vulnerability of the Montgomery ladder algorithm to fault analysis attack when an error is injected during its operation in an embedded cryptographic chip. After injecting an error, we measure the power traced and compare it with an original correct trace. As a result, we can derive the secret key of the public-key cryptosystems such as RSA by computing the correlation coefficients of two power traces for correct and faulty cryptographic operations with same input.

KW - Fault analysis attack

KW - Montgomery ladder exponentiation algorithm

KW - Physical cryptanalysis

KW - RSA

UR - https://www.scopus.com/pages/publications/74949144120

U2 - 10.1145/1655925.1656088

DO - 10.1145/1655925.1656088

M3 - Conference contribution

AN - SCOPUS:74949144120

SN - 9781605587103

T3 - ACM International Conference Proceeding Series

SP - 896

EP - 899

BT - Proceedings of 2nd International Conference on Interaction Sciences

T2 - 2nd International Conference on Interaction Sciences: Information Technology, Culture and Human, ICIS 2009

Y2 - 24 November 2009 through 26 November 2009

ER -

A new fault cryptanalysis on montgomery ladder exponentiation algorithm

Abstract

Publication series

Other

Keywords

ASJC Scopus subject areas

Access to Document

Other files and links

Fingerprint

Cite this