Efficient Private Circuits with Precomputation

Abstract: At CHES 2022, Wang et al. described a new paradigm for masked implementations using private circuits, where most intermediates can be precomputed before the input shares are accessed, significantly accelerating the online execution of masked functions. However, the masking scheme they proposed mainly featured (and was designed for) the cost amortization, leaving its (limited) suitability in the above precomputation-based paradigm just as a bonus. This paper aims to provide an efficient, reliable, easy-to-use, … Show more

“…To validate the impact of the randomness on the practical security, we run LatinAND and another multiplication gadget proposed in [28] on a ChipWhisperer STM32F4 UFO target board and collect its power traces with Picoscope 5244D at sampling rate of 125 MS/s. Besides, we perform a Welch's T-test with 10, 000 executions, whose randoms are generated by PRGs (LatinAND) and TRNGs (AND gadget proposed in [28]), respectively, to compare the randomness of the PRG implementation and the TRNG ones. Figure 4 depicts the T-test results for LatinAND, and we provide in Figure 5, the result for the other gadget with the randomness from TRNGs.…”

Improved Masking Multiplication with PRGs and Its Application to Arithmetic Addition

“…To validate the impact of the randomness on the practical security, we run LatinAND and another multiplication gadget proposed in [28] on a ChipWhisperer STM32F4 UFO target board and collect its power traces with Picoscope 5244D at sampling rate of 125 MS/s. Besides, we perform a Welch's T-test with 10, 000 executions, whose randoms are generated by PRGs (LatinAND) and TRNGs (AND gadget proposed in [28]), respectively, to compare the randomness of the PRG implementation and the TRNG ones. Figure 4 depicts the T-test results for LatinAND, and we provide in Figure 5, the result for the other gadget with the randomness from TRNGs.…”

Improved Masking Multiplication with PRGs and Its Application to Arithmetic Addition