Recently [1], Biham and Shamir announced an attack (Differential Fault Analysis, DFA for short) that recovers keys of arbitrary cryptosystems in polynomial (quadratic) complexity. In this paper, we show that under slightly modified assumptions, DFA is not polynomial and would simply result in the loss of some key-bits. Additionally, we prove the existence of cryptosystems on which DFA cannot reach the announced workfactor.
CITATION STYLE
Paillier, P. (1999). Evaluating differential fault analysis of unknown cryptosystems. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1560, pp. 235–244). Springer Verlag. https://doi.org/10.1007/3-540-49162-7_19
Mendeley helps you to discover research relevant for your work.