A randomised scheme for secured modular exponentiation against power analysis attacks

Barman, Moushumi; Mahanta, Hridoy Jyoti

doi:10.1080/23335777.2019.1637944

Cited by 3 publications

(2 citation statements)

References 12 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…In the exponent blinding method [20][21][22], the exponent is randomized or split, and consequently, subsequent exponentiation operations handle different exponential data. For message blinding methods [23][24][25], the message is multiplied by a random value, and this blinded message is then used in exponentiation algorithms.…”

Section: Related Workmentioning

confidence: 99%

“…The exponent blinding method and the message blinding method can also be regarded as effective countermeasures for modular exponentiation algorithms. There are generally two type exponent blinding countermeasures in present [20][21][22][23][24][25]. Ha et al [24] proposed a modular exponentiation protection method for double masking by using a random number r to blind the message and the exponent split.…”

Section: Exponent and Message Blinding Modular Exponentiation Algorithmmentioning

confidence: 99%

See 1 more Smart Citation

Clustering Collision Power Attack on RSA-CRT

Wan¹,

Chen²,

Xia³

et al. 2021

Computer Systems Science and Engineering

View full text Add to dashboard Cite

In this paper, we propose two new attack algorithms on RSA implementations with CRT (Chinese remainder theorem). To improve the attack efficiency considerably, a clustering collision power attack on RSA with CRT is introduced via chosen-message pairs. This attack method is that the key parameters d p and d q are segmented by byte, and the modular multiplication collisions are identified by k-means clustering. The exponents d p and d q were recovered by 12 power traces of six groups of the specific message pairs, and the exponent d was obtained. We also propose a second order clustering collision power analysis attack against RSA implementation with CRT, which applies double blinding exponentiation. To reduce noise and artificial participation, we analyze the power points of interest by preprocessing and k-means clustering with horizontal correlation collisions. Thus, we recovered approximately 91% of the secret exponents manipulated with a single power curve on RSA-CRT with countermeasures of double blinding methods.

show abstract