Fault Analysis of Rabbit: Toward a Secret Key Leakage

Authors:
Alexandre Berzati;Cécile Canovas-Dumas;Louis Goubin
Affiliations:
CEA-LETI/MINATEC, Grenoble Cedex 9, France 38054 and Versailles Saint-Quentin-en-Yvelines University, Versailles Cedex, France 78035;CEA-LETI/MINATEC, Grenoble Cedex 9, France 38054;Versailles Saint-Quentin-en-Yvelines University, Versailles Cedex, France 78035
Venue:
INDOCRYPT '09 Proceedings of the 10th International Conference on Cryptology in India: Progress in Cryptology
Year:
2009

Citing 14
Cited 4

Differential Fault Analysis of Secret Key Cryptosystems

CRYPTO '97 Proceedings of the 17th Annual International Cryptology Conference on Advances in Cryptology
Breaking Public Key Cryptosystems on Tamper Resistant Devices in the Presence of Transient Faults

Proceedings of the 5th International Workshop on Security Protocols
Optical Fault Induction Attacks

CHES '02 Revised Papers from the 4th International Workshop on Cryptographic Hardware and Embedded Systems
Cryptanalysis of a provably secure CRT-RSA algorithm

Proceedings of the 11th ACM conference on Computer and communications security
Differential Fault Analysis of Trivium

Fast Software Encryption
Cryptanalysis of Rabbit

ISC '08 Proceedings of the 11th international conference on Information Security
Fault analysis of GRAIN-128

HST '09 Proceedings of the 2009 IEEE International Workshop on Hardware-Oriented Security and Trust
Differential Fault Analysis of Rabbit

Selected Areas in Cryptography
On the importance of checking cryptographic protocols for faults

EUROCRYPT'97 Proceedings of the 16th annual international conference on Theory and application of cryptographic techniques
Efficient algorithms for solving overdefined systems of multivariate polynomial equations

EUROCRYPT'00 Proceedings of the 19th international conference on Theory and application of cryptographic techniques
Impossible fault analysis of RC4 and differential fault analysis of RC4

FSE'05 Proceedings of the 12th international conference on Fast Software Encryption
Optically enhanced position-locked power analysis

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
Why one should also secure RSA public key elements

CHES'06 Proceedings of the 8th international conference on Cryptographic Hardware and Embedded Systems
Synchronization fault cryptanalysis for breaking a5/1

WEA'05 Proceedings of the 4th international conference on Experimental and Efficient Algorithms

Differential fault analysis of Sosemanuk

AFRICACRYPT'11 Proceedings of the 4th international conference on Progress in cryptology in Africa
Fault analysis on stream cipher MUGI

ICISC'10 Proceedings of the 13th international conference on Information security and cryptology
A differential fault attack on the grain family of stream ciphers

CHES'12 Proceedings of the 14th international conference on Cryptographic Hardware and Embedded Systems
Fault analysis study of the block cipher FOX64

Multimedia Tools and Applications

Quantified Score

Hi-index	0.00

Visualization

Abstract

Although Differential Fault Analysis (DFA) led to powerful applications against public key [15] and secret key [12] cryptosystems, very few works have been published in the area of stream ciphers.In this paper, we present the first application of DFA to the software eSTREAM candidate Rabbit that leads to a full secret key recovery. We show that by modifying modular additions of the next-state function, 32 faulty outputs are enough for recovering the whole internal state in time $\mathcal{O}\left( 2^{34}\right)$ and extracting the secret key. Thus, this work improves the previous fault attack against Rabbit both in terms of computational complexity and fault number.