Degenerate Fault Attacks on Elliptic Curve Parameters in OpenSSL

Takahashi, Akira; Tibouchi, Mehdi

doi:10.1109/eurosp.2019.00035

Cited by 9 publications

(7 citation statements)

References 43 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…This was crucial in establishing an encrypted connection between the sensor nodes and the database, protecting the privacy and security of the collected data. To ensure confidential exchanges, we made use of a dual encryption method, generating SSL keys (both public and private) with the help of RSA-2048 48 . Additionally, AES-256 49 was implemented to guarantee a high level of security for stored information.…”

Section: Ssnmentioning

confidence: 99%

Understanding the Impact of IoT Security Patterns on CPU Usage and Energy Consumption on IoT Devices

Jamshidi,

Nikanjam,

Kawser

et al. 2024

Preprint

View full text Add to dashboard Cite

The Internet of Things (IoT) has given rise to numerous security issues that require effective solutions. IoT security patterns have been suggested as an effective approach to address recurrent security design issues. Although several IoT security patterns are proposed in the literature, it remains unclear how they impact the energy consumption and CPU usage of IoT-edge-based applications. We conducted an empirical study using three testbed IoT applications (i.e., smart home, smart city, and healthcare) to shed light on this issue. We evaluated the impact of six IoT security patterns, including Personal Zone Hub, Trusted Communication Partner, Outbound-Only Connection, Blacklist, Whitelist, and Secure Sensor Node, both in pairs and in combination (i.e., all patterns). Specifically, we conducted multiple penetration tests to first assess the pattern’s effectiveness against attacks. Then, we conducted a comprehensive analysis of the energy consumption and CPU usage of the applications with/without the implemented security patterns, aiming to evaluate the potential impact of these patterns on energy efficiency and CPU usage. Our findings demonstrate a statistically significant increase in energy consumption and CPU usage. Based on these findings, we provide guidelines for IoT developers to follow when implementing IoT-edge-based applications.

show abstract

Section: Ssnmentioning

confidence: 99%

Understanding the Impact of IoT Security Patterns on CPU Usage and Energy Consumption on IoT Devices

Jamshidi,

Nikanjam,

Kawser

et al. 2024

Preprint

View full text Add to dashboard Cite

show abstract

“…Nonetheless, the practical difference between the methods in IEEE and Dragonfly seems negligible given that the probability of an "invalid" output occurring by chance is negligible. (However, it is unclear if an attack action, e.g., fault injection [95], could significantly increase the probability of the "invalid" case. )…”

Section: Class-2: Password-derived Generatormentioning

confidence: 99%

“…Following this path, IEEE 1363.2 [51] generalized its SPEKE spec to allow short exponents as in DSA groups, resulting in changing 𝑓 (as noted in §3.2) to 𝑓 = 𝐻 (𝑤) 𝑘 mod 𝑝; again 𝑝 = 𝑘 • 𝑞 + 1 and 𝑘 is a co-factor. Compared with a safe-prime modulus, the probability for getting an "invalid" output by chance in a DSA group (same modulus size) increases, but remains negligible (without considering attack actions like fault injection [95]). However, in a DSA group, it now requires one exponentiation to validate a received public key.…”

Section: Long and Short Exponentsmentioning

confidence: 99%

SoK

Hao

Oorschot

2022

Proceedings of the 2022 ACM on Asia Conference on Computer and Communications Security

View full text Add to dashboard Cite

show abstract

“…The first model considered is the skip instruction that was applied successfully in practice on RSA exponentiation with a spike injection on a microcontroller to skip a squaring [31]. It was also recently applied in the elliptic curve point decompression algorithm to make a point lie on weak curve [5,36].…”

Section: Realization Of the Fault Attackmentioning

confidence: 99%

Differential Fault Attack on Montgomery Ladder and in the Presence of Scalar Randomization

Russon

2021

Lecture Notes in Computer Science

View full text Add to dashboard Cite

Differential fault attacks are powerful techniques to break a cryptographic primitive, where the adversary disrupts the execution of a calculation to find a secret key. Those attacks have been applied in Elliptic Curve Cryptography under various types of faults, and there exists several protection mechanisms to prevent them.In this paper, we present a new differential fault attack on the Montgomery ladder algorithm for scalar multiplication. We further present that such attacks can be applied when specific point additions formulas are used and when different scalar blinding techniques to randomize the computation are present.

show abstract

Degenerate Fault Attacks on Elliptic Curve Parameters in OpenSSL

Cited by 9 publications

References 43 publications

Understanding the Impact of IoT Security Patterns on CPU Usage and Energy Consumption on IoT Devices

Understanding the Impact of IoT Security Patterns on CPU Usage and Energy Consumption on IoT Devices

SoK

Differential Fault Attack on Montgomery Ladder and in the Presence of Scalar Randomization

Contact Info

Product

Resources

About