Template Attacks on ECDSA

Elisabeth Oswald; Medweb Marcel

Template Attacks on ECDSA

Elisabeth Oswald, Medweb Marcel

Research output: Chapter in Book/Report/Conference proceeding › Conference Contribution (Conference Proceeding)

Abstract

Template attacks have been considered exclusively in the context of implementations of symmetric cryptographic algorithms on 8-bit devices. Within these scenarios, they have proven to be the most powerful attacks. In this article we investigate how template attacks can be applied to implementations of an asymmetric cryptographic algorithm on a 32-bit platform. The asymmetric cryptosystem under scrutiny is the elliptic curve digital signature algorithm (ECDSA). ECDSA is particularly suitable for 32-bit platforms. In this article we show that even SPA resistant implementations of ECDSA on a typical 32-bit platform succumb to template-based SPA attacks. The only way to secure such implementations against template-based SPA attacks is to make them resistant against DPA attacks.

Translated title of the contribution	Template Attacks on ECDSA
Original language	English
Title of host publication	Information Security Applications - WISA 2008
Publisher	Springer Berlin Heidelberg
Pages	14-27
Volume	5379
Publication status	Published - 2008

Bibliographical note

ISBN: 9783642003059
Publisher: Springer LNCS 5379
Name and Venue of Conference: Information Security Applications - WISA 2008
Other identifier: 2001104

Access to Document

http://www.cs.bris.ac.uk/Publications/pub_master.jsp?id=2001104

Handle.net

Persistent link

Cite this

@inproceedings{15818d0eb04f4118adbd9944a12ee855,

title = "Template Attacks on ECDSA",

abstract = " Template attacks have been considered exclusively in the context of implementations of symmetric cryptographic algorithms on 8-bit devices. Within these scenarios, they have proven to be the most powerful attacks. In this article we investigate how template attacks can be applied to implementations of an asymmetric cryptographic algorithm on a 32-bit platform. The asymmetric cryptosystem under scrutiny is the elliptic curve digital signature algorithm (ECDSA). ECDSA is particularly suitable for 32-bit platforms. In this article we show that even SPA resistant implementations of ECDSA on a typical 32-bit platform succumb to template-based SPA attacks. The only way to secure such implementations against template-based SPA attacks is to make them resistant against DPA attacks. ",

author = "Elisabeth Oswald and Medweb Marcel",

note = "ISBN: 9783642003059 Publisher: Springer LNCS 5379 Name and Venue of Conference: Information Security Applications - WISA 2008 Other identifier: 2001104",

year = "2008",

language = "English",

volume = "5379",

pages = "14--27",

booktitle = "Information Security Applications - WISA 2008",

publisher = "Springer Berlin Heidelberg",

address = "Germany",

}

TY - GEN

T1 - Template Attacks on ECDSA

AU - Oswald, Elisabeth

AU - Marcel, Medweb

N1 - ISBN: 9783642003059 Publisher: Springer LNCS 5379 Name and Venue of Conference: Information Security Applications - WISA 2008 Other identifier: 2001104

PY - 2008

Y1 - 2008

N2 - Template attacks have been considered exclusively in the context of implementations of symmetric cryptographic algorithms on 8-bit devices. Within these scenarios, they have proven to be the most powerful attacks. In this article we investigate how template attacks can be applied to implementations of an asymmetric cryptographic algorithm on a 32-bit platform. The asymmetric cryptosystem under scrutiny is the elliptic curve digital signature algorithm (ECDSA). ECDSA is particularly suitable for 32-bit platforms. In this article we show that even SPA resistant implementations of ECDSA on a typical 32-bit platform succumb to template-based SPA attacks. The only way to secure such implementations against template-based SPA attacks is to make them resistant against DPA attacks.

AB - Template attacks have been considered exclusively in the context of implementations of symmetric cryptographic algorithms on 8-bit devices. Within these scenarios, they have proven to be the most powerful attacks. In this article we investigate how template attacks can be applied to implementations of an asymmetric cryptographic algorithm on a 32-bit platform. The asymmetric cryptosystem under scrutiny is the elliptic curve digital signature algorithm (ECDSA). ECDSA is particularly suitable for 32-bit platforms. In this article we show that even SPA resistant implementations of ECDSA on a typical 32-bit platform succumb to template-based SPA attacks. The only way to secure such implementations against template-based SPA attacks is to make them resistant against DPA attacks.

M3 - Conference Contribution (Conference Proceeding)

VL - 5379

SP - 14

EP - 27

BT - Information Security Applications - WISA 2008

PB - Springer Berlin Heidelberg

ER -

Template Attacks on ECDSA

Abstract

Bibliographical note

Access to Document

Handle.net

Fingerprint

Cite this