A New Side-Channel Attack on RSA Prime Generation

Authors:
Thomas Finke;Max Gebhardt;Werner Schindler
Affiliations:
Bundesamt für Sicherheit in der Informationstechnik (BSI), Bonn, Germany 53175;Bundesamt für Sicherheit in der Informationstechnik (BSI), Bonn, Germany 53175;Bundesamt für Sicherheit in der Informationstechnik (BSI), Bonn, Germany 53175
Venue:
CHES '09 Proceedings of the 11th International Workshop on Cryptographic Hardware and Embedded Systems
Year:
2009

Citing 10
Cited 2

Handbook of Applied Cryptography

Handbook of Applied Cryptography
Differential Power Analysis

CRYPTO '99 Proceedings of the 19th Annual International Cryptology Conference on Advances in Cryptology
Timing Attacks on Implementations of Diffie-Hellman, RSA, DSS, and Other Systems

CRYPTO '96 Proceedings of the 16th Annual International Cryptology Conference on Advances in Cryptology
Efficient Generation of Shared RSA Keys (Extended Abstract)

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
Speeding up Prime Number Generation

ASIACRYPT '91 Proceedings of the International Conference on the Theory and Applications of Cryptology: Advances in Cryptology
A Combined Timing and Power Attack

PKC '02 Proceedings of the 5th International Workshop on Practice and Theory in Public Key Cryptosystems: Public Key Cryptography
A Timing Attack against RSA with the Chinese Remainder Theorem

CHES '00 Proceedings of the Second International Workshop on Cryptographic Hardware and Embedded Systems
On the Implementation of a Fast Prime Generation Algorithm

CHES '07 Proceedings of the 9th international workshop on Cryptographic Hardware and Embedded Systems
Finding small roots of bivariate integer polynomial equations: a direct approach

CRYPTO'07 Proceedings of the 27th annual international cryptology conference on Advances in cryptology
Fast generation of prime numbers on portable devices: an update

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems

RSA key generation: new attacks

COSADE'12 Proceedings of the Third international conference on Constructive Side-Channel Analysis and Secure Design
Generating provable primes efficiently on embedded devices

PKC'12 Proceedings of the 15th international conference on Practice and Theory in Public Key Cryptography

Quantified Score

Hi-index	0.00

Visualization

Abstract

We introduce and analyze a side-channel attack on a straight-forward implementation of the RSA key generation step. The attack exploits power information that allows to determine the number of the trial divisions for each prime candidate. Practical experiments are conducted, and countermeasures are proposed. For realistic parameters the success probability of our attack is in the order of 10---15 %.