Abstract
Nowadays RSA using Chinese Remainder Theorem (CRT) is widely used in practical applications. However there is a very powerful attack against it with a fault injection during one of its exponentiations. Many countermeasures were proposed but almost all of them are proven to be insecure. In 2005, two new countermeasures were proposed. However they still have a weakness. The final signature is stored in a memory after CRT combination and there is an error-check routine just after CRT combination. Therefore, if an attacker can do a double-fault attack that gives the first fault during one of the exponentiation and the other to skip the error-checking routine, then he can succeed in breaking RSA. In this paper, we show this can be done with the concrete result employing a glitch attack and propose a simple and almost cost-free method to defeat it. © IFIP International Federation for Information Processing 2007.
Cite
CITATION STYLE
Kim, C. H., & Quisquater, J. J. (2007). Fault attacks for CRT based RSA:b new attacks, new results, and new countermeasures. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 4462 LNCS, pp. 215–228). Springer Verlag. https://doi.org/10.1007/978-3-540-72354-7_18
Register to see more suggestions
Mendeley helps you to discover research relevant for your work.
