Template Attacks on ECDSA

Authors:
Marcel Medwed;Elisabeth Oswald
Affiliations:
Institute for Applied Information Processing and Communications, Graz University of Technology, Graz, Austria 8010 and Secure Business Austria (SBA), Vienna, Austria 1040;Computer Science Department, University of Bristol, Bristol, UK BS8 1UB and Institute for Applied Information Processing and Communications, Graz University of Technology, Graz, Austria 8010
Venue:
Information Security Applications
Year:
2009

Citing 8
Cited 3

Resistance against Differential Power Analysis for Elliptic Curve Cryptosystems

CHES '99 Proceedings of the First International Workshop on Cryptographic Hardware and Embedded Systems
Template Attacks

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
The Insecurity of the Elliptic Curve Digital Signature Algorithm with Partially Known Nonces

Designs, Codes and Cryptography
Power Analysis Attacks: Revealing the Secrets of Smart Cards (Advances in Information Security)

Power Analysis Attacks: Revealing the Secrets of Smart Cards (Advances in Information Security)
Template attacks in principal subspaces

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
Practical template attacks

WISA'04 Proceedings of the 5th international conference on Information Security Applications
Templates as master keys

CHES'05 Proceedings of the 7th international conference on Cryptographic hardware and embedded systems
EM analysis of rijndael and ECC on a wireless java-based PDA

CHES'05 Proceedings of the 7th international conference on Cryptographic hardware and embedded systems

Cache-Timing Template Attacks

ASIACRYPT '09 Proceedings of the 15th International Conference on the Theory and Application of Cryptology and Information Security: Advances in Cryptology
An updated survey on secure ECC implementations: attacks, countermeasures and cost

Cryptography and Security
Localized electromagnetic analysis of cryptographic implementations

CT-RSA'12 Proceedings of the 12th conference on Topics in Cryptology

Quantified Score

Hi-index	0.00

Visualization

Abstract

Template attacks have been considered exclusively in the context of implementations of symmetric cryptographic algorithms on 8-bit devices. Within these scenarios, they have proven to be the most powerful attacks. In this article we investigate how template attacks can be applied to implementations of an asymmetric cryptographic algorithm on a 32-bit platform. The asymmetric cryptosystem under scrutiny is the elliptic curve digital signature algorithm (ECDSA). ECDSA is particularly suitable for 32-bit platforms. In this article we show that even SPA resistant implementations of ECDSA on a typical 32-bit platform succumb to template-based SPA attacks. The only way to secure such implementations against template-based SPA attacks is to make them resistant against DPA attacks.