Resilience of Randomized RNS Arithmetic with Respect to Side-Channel Leaks of Cryptographic Computation

Courtois, Jérôme; Abbas-Turki, Lokman; Bajard, Jean-Claude

doi:10.1109/tc.2019.2924630

Cited by 8 publications

(4 citation statements)

References 31 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Their work only considered primes as it was easy to count them for security purposes, and did not have a way to randomly generate pairwise coprime sets and let alone count them: opening the path to pairwise coprime sets, which includes sets of prime numbers, would allow them to keep a similar level of security with smaller sets or smaller moduli as the number of possible combinations increases. The approach of using large combination sets to enhance the security is not new: it has been used to increase the amount of possible number representations possible to thwart side-channels attacks [4,10,35].…”

Section: Required Propertiesmentioning

confidence: 99%

“…As we do not require modular inverses or base extensions, we could also use redundant arithmetic or random draws of moduli without resorting on coprimality. Like in [4,10,35], a high number of possible combinations is at the core of the security, and our generator provide it. The issue is the lack of guaranteed coprimality and maybe the computation of modular inverses in constant time without branching, but this could be a (very difficult) further research direction.…”

Section: Side-channel Attacksmentioning

confidence: 99%

See 1 more Smart Citation

Fast verification and public key storage optimization for unstructured lattice-based signatures

et al. 2023

Self Cite

View full text Add to dashboard Cite

A recent work of Sipasseuth, Plantard and Susilo proposed to accelerate lattice-based signature verifications and compress public key storage at the cost of a precomputation on a public key. This first approach, which focused on a restricted type of key, did not include most NIST candidates, or most lattice representations in general. In this work, we first present a way to improve even further both their verification speed and their public key compression capability by using a generator of numbers that better suit the method needs. We then also generalize their framework to apply to q-ary lattice schemes as well as classical lattices using Hermite Normal Form, improving their security and applicable scope, thus exhibiting potential trade-offs to accelerate lattice-based signature verification in general and compression of the public key on the verifier side for unstructured lattices.

show abstract

Section: Required Propertiesmentioning

confidence: 99%

Section: Side-channel Attacksmentioning

confidence: 99%

Fast verification and public key storage optimization for unstructured lattice-based signatures

et al. 2023

Self Cite

View full text Add to dashboard Cite

show abstract

“…RNS are also particularly interesting for countering attacks by faults, as the addition of redundancy elements at the base level makes it possible to set up fault detection [27]. Finally, the random drawing of bases ensures that the same calculation produces different patterns at each evaluation, making learning possible leakage of information more difficult [28].…”

Section: Introductionmentioning

confidence: 99%

Generating Very Large RNS Bases

Bajard

Fukushima

Plantard³

et al. 2022

IEEE Trans. Emerg. Topics Comput.

View full text Add to dashboard Cite

HAL is a multi-disciplinary open access archive for the deposit and dissemination of scientific research documents, whether they are published or not. The documents may come from teaching and research institutions in France or abroad, or from public or private research centers. L'archive ouverte pluridisciplinaire HAL, est destinée au dépôt et à la diffusion de documents scientifiques de niveau recherche, publiés ou non, émanant des établissements d'enseignement et de recherche français ou étrangers, des laboratoires publics ou privés.

show abstract

“…These two representations support the paralellization of the computation since operations over each moduli or coefficients are independent. Furthermore, both arithmetics have sidechannel attack resistance properties [9], [16], [17].…”

Section: Introductionmentioning

confidence: 99%

A software comparison of RNS and PMNS

Didier

Robert

Dosso

et al. 2022

2022 IEEE 29th Symposium on Computer Arithmetic (ARITH)

View full text Add to dashboard Cite

The Polynomial Modular Number System (PMNS) and the Residue Number System (RNS) are integer number systems which aim to speed up modular arithmetic. Their parallel properties make them suitable for the implementation of cryptographic applications on modern processors with SIMD instructions. In this work, we will show the implementation choices made for the modular multiplication in both systems and compare their implementation performances for several sizes of moduli. We target the Intel 64-bit sequential instruction set and the Intel AVX-512 vector instruction set. This instruction set allows significant speed-ups up to 1 621 bit size moduli, while the vectorized PMNS implementation is up to 2.5 times faster than the vectorized RNS, though the vectorized RNS becomes slightly better for 3 251 bits, due to the difficulty to find a PMNS with a suitable parameter n. The vectorized RNS implementations reach performance levels close the state-of-the-art GMP library, while the retired instruction counts are lower for sizes between 401 and 3 251 bits.

show abstract

Resilience of Randomized RNS Arithmetic with Respect to Side-Channel Leaks of Cryptographic Computation

Cited by 8 publications

References 31 publications

Fast verification and public key storage optimization for unstructured lattice-based signatures

Fast verification and public key storage optimization for unstructured lattice-based signatures

Generating Very Large RNS Bases

A software comparison of RNS and PMNS

Contact Info

Product

Resources

About