SIKE Channels: Zero-Value Side-Channel Attacks on SIKE

SIKE Channels: Zero-Value Side-Channel Attacks on SIKE

We present new side-channel attacks on SIKE, the isogeny-based candidate in the NIST PQC competition. Previous works had shown that SIKE is vulnerable to differential power analysis, and pointed to coordinate randomization as an effective countermeasure. We show that coordinate randomization alone i...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IACR transactions on cryptographic hardware and embedded systems 2022-06, Vol.2022 (3), p.264-289
Hauptverfasser: De Feo, Luca, El Mrabet, Nadia, Genêt, Aymeric, Kaluđerovi´c, Novak, Linard de Guertechin, Natacha, Pontié, Simon, Tasso, Élise
Format: Artikel
Sprache:eng
Schlagworte:
Computer Science
Cryptography and Security
Electronics
Engineering Sciences
Online-Zugang:Volltext
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:We present new side-channel attacks on SIKE, the isogeny-based candidate in the NIST PQC competition. Previous works had shown that SIKE is vulnerable to differential power analysis, and pointed to coordinate randomization as an effective countermeasure. We show that coordinate randomization alone is not sufficient, because SIKE is vulnerable to a class of attacks similar to refined power analysis in elliptic curve cryptography, named zero-value attacks. We describe and confirm in the lab two such attacks leading to full key recovery, and analyze their countermeasures.
ISSN:2569-2925
2569-2925
DOI:10.46586/tches.v2022.i3.264-289