Conference ProceedingsOPEN ACCESS

CRT RSA algorithm protected against fault attacks

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (2007) 4462 LNCS 229-243
DOI: 10.1007/978-3-540-72354-7_19
47Citations
Citations of this article
17Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

Embedded devices performing RSA signatures are subject to Fault Attacks, particularly when the Chinese Remainder Theorem is used. In most cases, the modular exponentiation and the Garner recombination algorithms are targeted. To thwart Fault Attacks, we propose a new generic method of computing modular exponentiation and we prove its security in a realistic fault model. By construction, our proposal is also protected against Simple Power Analysis. Based on our new resistant exponentiation algorithm, we present two different ways of computing CRT RSA signatures in a secure way. We show that those methods do not increase execution time and can be easily implemented on low-resource devices. © IFIP International Federation for Information Processing 2007.

Author supplied keywords

Cite

CITATION STYLE

APA

Boscher, A., Naciri, R., & Prouff, E. (2007). CRT RSA algorithm protected against fault attacks. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4462 LNCS, pp. 229–243). Springer Verlag. https://doi.org/10.1007/978-3-540-72354-7_19

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free