In this paper, we show that the presence of transient faults can leak some secret information. We prove that only one faulty RSAsignature is needed to recover one bit of the secret key. Thereafter, we extend this result to Lucas-based and elliptic curve systems.
CITATION STYLE
Joye, M., Quisquater, J. J., Bao, F., & Deng, R. H. (1997). RSA-type signatures in the presence of transient faults. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1355, pp. 155–160). Springer Verlag. https://doi.org/10.1007/bfb0024460
Mendeley helps you to discover research relevant for your work.