Fault Detection Architectures for Post-Quantum Cryptographic Stateless Hash-Based Secure Signatures Benchmarked on ASIC

Kermani, Mehran Mozaffari; Azarderakhsh, Reza; Aghaie, Anita

doi:10.1145/2930664

Cited by 31 publications

(8 citation statements)

References 37 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…BLAKE is one of the fastest hash algorithms and has strong security [50,58]. Recent research has pointed out that BLAKE is a suitable algorithm for source limited devices [59,60]. • De-identification mechanism…”

Section: -Blake Familymentioning

confidence: 99%

REISCH: Incorporating Lightweight and Reliable Algorithms into Healthcare Applications of WSNs

Al-Zubaidie

Zhang

2020

Applied Sciences

View full text Add to dashboard Cite

Healthcare institutions require advanced technology to collect patients’ data accurately and continuously. The tradition technologies still suffer from two problems: performance and security efficiency. The existing research has serious drawbacks when using public-key mechanisms such as digital signature algorithms. In this paper, we propose Reliable and Efficient Integrity Scheme for Data Collection in HWSN (REISCH) to alleviate these problems by using secure and lightweight signature algorithms. The results of the performance analysis indicate that our scheme provides high efficiency in data integration between sensors and server (saves more than 24% of alive sensors compared to traditional algorithms). Additionally, we use Automated Validation of Internet Security Protocols and Applications (AVISPA) to validate the security procedures in our scheme. Security analysis results confirm that REISCH is safe against some well-known attacks.

show abstract

Section: -Blake Familymentioning

confidence: 99%

REISCH: Incorporating Lightweight and Reliable Algorithms into Healthcare Applications of WSNs

Al-Zubaidie

Zhang

2020

Applied Sciences

View full text Add to dashboard Cite

show abstract

“…Although quantum cryptography is not widely found and deployed in real-world applications (at the time of writing), the research community has already started studying post-quantum cryptography [Broadbent and Schaffner 2016;. In this special section, for example, Mozaffari-Kermani et al [2016] noted that hash-, code-, and lattice-based solutions, as well as multivariate-quadratic-equations could potentially resist cryptanalysis efforts from pre-quantum and quantum computing devices. The authors then propose and evaluate fault diagnosis approaches for hash-based post-quantum signatures.…”

Section: Cryptographic Solutions and Attacksmentioning

confidence: 99%

Embedded Device Forensics and Security

Choo

Fei

Xiang

et al. 2016

ACM Trans. Embed. Comput. Syst.

View full text Add to dashboard Cite

While the increasing digitalization of our society and amalgamation of embedded devices into the everincreasing facets of our daily life (e.g., in smart and intelligent vehicles, smart cities and smart nations, and critical infrastructure sectors) have resulted in improved productivity and quality of life, the trend has also resulted in a trend of increasing frequency and sophistication of cyber exploitation and cyber threats. Hence, there is a need for coordinated efforts from the research community to address resulting concerns using both cryptographic and non-cryptographic solutions, such as those presented in this special section.

show abstract

“…In the work of [CMP18] by Castelnovi, Martinelli, and Prest, the authors failed to find a specific countermeasure and recommend classical redundancy instead. The work by Mozaffari Kermani, Azarderakhsh, and Aghaie in [KAA17] proposes specific error-detection mechanisms in hash function implementations which therefore do not entirely cover the SPHINCS + signing procedure, as well as a generic countermeasure based on recomputing hash trees with swapped nodes (i.e., also redundancy). In [GKPM18], Genêt et al show that caching the one-time signatures of the hash trees in stateful hash-based signature schemes effectively protects against similar fault-based forgeries.…”

Section: Introductionmentioning

confidence: 99%

On Protecting SPHINCS+ Against Fault Attacks

Genêt

2023

TCHES

View full text Add to dashboard Cite

SPHINCS+ is a hash-based digital signature scheme that was selected by NIST in their post-quantum cryptography standardization process. The establishment of a universal forgery on the seminal scheme SPHINCS was shown to be feasible in practice by injecting a fault when the signing device constructs any non-top subtree. Ever since the attack has been made public, little effort was spent to protect the SPHINCS family against attacks by faults. This paper works in this direction in the context of SPHINCS+ and analyzes the current algorithms that aim to prevent fault-based forgeries.First, the paper adapts the original attack to SPHINCS+ reinforced with randomized signing and extends the applicability of the attack to any combination of faulty and valid signatures. Considering the adaptation, the paper then presents a thorough analysis of the attack. In particular, the analysis shows that, with high probability, the security guarantees of SPHINCS+ significantly drop when a single random bit flip occurs anywhere in the signing procedure and that the resulting faulty signature cannot be detected with the verification procedure. The paper shows both in theory and experimentally that the countermeasures based on caching the intermediate W-OTS+s offer a marginally greater protection against unintentional faults, and that such countermeasures are circumvented with a tolerable number of queries in an active attack. Based on these results, the paper recommends real-world deployments of SPHINCS+ to implement redundancy checks.

show abstract

Fault Detection Architectures for Post-Quantum Cryptographic Stateless Hash-Based Secure Signatures Benchmarked on ASIC

Cited by 31 publications

References 37 publications

REISCH: Incorporating Lightweight and Reliable Algorithms into Healthcare Applications of WSNs

REISCH: Incorporating Lightweight and Reliable Algorithms into Healthcare Applications of WSNs

Embedded Device Forensics and Security

On Protecting SPHINCS+ Against Fault Attacks

Contact Info

Product

Resources

About