Simple Power Analysis Attack on the QC-LDPC McEliece Cryptosystem

Fabšič, Tomáš; Gallo, Ondrej; Hromada, Viliam

doi:10.1515/tmmp-2016-0032

Cited by 6 publications

(6 citation statements)

References 7 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…success or failure), the required time for decoding, the power consumption of some particular step, etc. (see [14,15,[17][18][19]25] for some concrete possibilities). The adversary first collects all the oracle replies, and then performs a statistical analysis on them, with the aim of guessing some information about the secret key.…”

Section: Gsa Attackmentioning

confidence: 99%

Complexity of statistical attacks on QC‐LDPC code‐based cryptosystems

Santini

Baldi

Chiaraluce

2020

IET Information Security

View full text Add to dashboard Cite

Section: Gsa Attackmentioning

confidence: 99%

Complexity of statistical attacks on QC‐LDPC code‐based cryptosystems

Santini

Baldi

Chiaraluce

2020

IET Information Security

View full text Add to dashboard Cite

“…This information might be masked through proper implementation strategies; for instance, random permutations might be applied to the order of processing bits in the decoder. This solution, which was proposed by the authors of [11] as a countermeasure to the attack they introduced in the same paper, is however likely not to be strong enough for guaranteeing prevention of other kinds of information leaks.…”

Section: Other Sources Of Information Leakagementioning

confidence: 99%

“…Such a feature is crucial, since it has been shown how this probabilistic nature of the decoder actually exposes the system to cryptanalysis techniques based on the observation of the decryption phase. State-of-the-art attacks of this kind are commonly called reaction attacks, when based on decoding failures events [12], [13], [15], [22], or side-channel attacks, when based on information such as the duration of the decoding phase (in this case we speak properly of timing attacks) or other quantities [10], [11], [21]. All these previous techniques exploit the QC structure of the code and aim at recovering some characteristics of the secret key by performing a statistical analysis on a sufficiently large amount of collected data.…”

Section: Introductionmentioning

confidence: 99%

Analysis of Reaction and Timing Attacks Against Cryptosystems Based on Sparse Parity-Check Codes

Santini

Battaglioni

Chiaraluce

et al. 2019

Code-Based Cryptography

View full text Add to dashboard Cite

In this paper we study reaction and timing attacks against cryptosystems based on sparse paritycheck codes, which encompass low-density parity-check (LDPC) codes and moderate-density paritycheck (MDPC) codes. We show that the feasibility of these attacks is not strictly associated to the quasi-cyclic (QC) structure of the code but is related to the intrinsically probabilistic decoding of any sparse parity-check code. So, these attacks not only work against QC codes, but can be generalized to broader classes of codes. We provide a novel algorithm that, in the case of a QC code, allows recovering a larger amount of information than that retrievable through existing attacks and we use this algorithm to characterize new side-channel information leakages. We devise a theoretical model for the decoder that describes and justifies our results. Numerical simulations are provided that confirm the effectiveness of our approach.

show abstract

“…The two most common side channels exploited to breach practical implementations of cryptosystems are the execution time of the primitive and the instantaneous power consumption during its computation. In particular, in [15], it was shown how a QC-LDPC codebased system can be broken by means of simple power analysis, exploiting the control-flow dependent differences of the decoding algorithm. We note that employing ephemeral keys provides a natural resistance against non-profiled power consumption side channel attacks, as a significant amount of measurements with the same key (> 30) must be collected before the key is revealed.…”

Section: Properties Of the Proposed Cryptosystemmentioning

confidence: 99%

LEDAkem: A Post-quantum Key Encapsulation Mechanism Based on QC-LDPC Codes

Baldi

Barenghi

Chiaraluce

et al. 2018

Post-Quantum Cryptography

View full text Add to dashboard Cite

This work presents a new code-based key encapsulation mechanism (KEM) called LEDAkem. It is built on the Niederreiter cryptosystem and relies on quasi-cyclic low-density parity-check codes as secret codes, providing high decoding speeds and compact keypairs. LEDAkem uses ephemeral keys to foil known statistical attacks, and takes advantage of a new decoding algorithm that provides faster decoding than the classical bit-flipping decoder commonly adopted in this kind of systems. The main attacks against LEDAkem are investigated, taking into account quantum speedups. Some instances of LEDAkem are designed to achieve different security levels against classical and quantum computers. Some performance figures obtained through an efficient C99 implementation of LEDAkem are provided.

show abstract

Simple Power Analysis Attack on the QC-LDPC McEliece Cryptosystem

Cited by 6 publications

References 7 publications

Complexity of statistical attacks on QC‐LDPC code‐based cryptosystems

Complexity of statistical attacks on QC‐LDPC code‐based cryptosystems

Analysis of Reaction and Timing Attacks Against Cryptosystems Based on Sparse Parity-Check Codes

LEDAkem: A Post-quantum Key Encapsulation Mechanism Based on QC-LDPC Codes

Contact Info

Product

Resources

About