A Karatsuba-Based Montgomery Multiplier

Chow, Gary C.T.; Eguro, Ken; Luk, Wayne; Leong, Philip H. W.

doi:10.1109/fpl.2010.89

Cited by 40 publications

(24 citation statements)

References 13 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Many hardware designs for computing Montgomery multiplications exist. A design involving the Karatsuba multiplication algorithm can be used to evaluate very large multiplications [11]. While this proved to be computationally effective in [11], such a method may not be suitable for some applications due to prohibitive hardware resource required for evaluating Montgomery multiplications even with relatively small operands.…”

Section: Return T 19: End Functionmentioning

confidence: 99%

Implementing homomorphic encryption based secure feedback control

Tran¹,

Farokhi

Cantoni

et al. 2020

Control Engineering Practice

View full text Add to dashboard Cite

This paper is about an encryption based approach to the secure implementation of feedback controllers for physical systems. Specifically, Paillier's homomorphic encryption is used to digitally implement a class of linear dynamic controllers, which includes the commonplace static gain and PID type feedback control laws as special cases. The developed implementation is amenable to Field Programmable Gate Array (FPGA) realization. Experimental results, including timing analysis and resource usage characteristics for different encryption key lengths, are presented for the realization of an inverted pendulum controller; as this is an unstable plant, the control is necessarily fast.

show abstract

Section: Return T 19: End Functionmentioning

confidence: 99%

Implementing homomorphic encryption based secure feedback control

Tran¹,

Farokhi

Cantoni

et al. 2020

Control Engineering Practice

View full text Add to dashboard Cite

show abstract

“…Theoretical minimum number ℓ of zero higher-order h-bit faulty signatures required to factor a balanced 1024-bit RSA modulus N using the general Cohn-Heninger attack or the simplified linear one. After a discussion about the tools needed to get the desired effects, we focus on several implementation proposals [29,18,16,21,28,19,6], chosen for their relevance.…”

Section: Fault Modelsmentioning

confidence: 99%

Attacking RSA–CRT signatures with faults on montgomery multiplication

Fouque¹,

Guillermin²,

Leresteux³

et al. 2013

J Cryptogr Eng

View full text Add to dashboard Cite

In this paper, we present several efficient fault attacks against implementations of RSA-CRT signatures that use modular exponentiation algorithms based on Montgomery multiplication. They apply to any padding function, including randomized paddings, and as such are the first fault attacks effective against RSA-PSS. The new attacks work provided that a small register can be forced to either zero, or a constant value, or a value with zero high-order bits. We show that these models are quite realistic, as such faults can be achieved against many proposed hardware designs for RSA signatures.

show abstract

“…After a discussion about the tools needed to get the desired effects, we focus on several implementation proposals [29,18,16,21,28,19,6], chosen for their relevance.…”

Section: Fault Modelsmentioning

confidence: 99%

“…To reduce the full complexity of the big multiplication, interpolation techniques are used. In [6], a classical nested Karatsuba multiplication is used, whereas [21] proposes RNS.…”

Section: High Radixmentioning

confidence: 99%

Attacking RSA–CRT Signatures with Faults on Montgomery Multiplication

Fouque

Guillermin

Leresteux

et al. 2012

Cryptographic Hardware and Embedded Systems – CHES 2012

View full text Add to dashboard Cite

International audienceIn this paper, we present several efficient fault attacks against implementations of RSA–CRT signatures that use modular exponentia-tion algorithms based on Montgomery multiplication. They apply to any padding function, including randomized paddings, and as such are the first fault attacks effective against RSA–PSS. The new attacks work provided that a small register can be forced to either zero, or a constant value, or a value with zero high-order bits. We show that these models are quite realistic, as such faults can be achieved against many proposed hardware designs for RSA signatures

show abstract

A Karatsuba-Based Montgomery Multiplier

Cited by 40 publications

References 13 publications

Implementing homomorphic encryption based secure feedback control

Implementing homomorphic encryption based secure feedback control

Attacking RSA–CRT signatures with faults on montgomery multiplication

Attacking RSA–CRT Signatures with Faults on Montgomery Multiplication

Contact Info

Product

Resources

About