Power Attack on Small RSA Public Exponent

14 years 2 months ago

Download www.di.ens.fr

In this paper, we present a new attack on RSA when the public exponent is short, for instance 3 or 216 +1, and when the classical exponent randomization is used. This attack works even if blinding is used on the messages. From a Simple Power Analysis (SPA) we study the problem of recovering the RSA private key when non consecutive bits of it leak from the implementation. We also show that such information can be gained from sliding window implementations not protected against SPA.

Pierre-Alain Fouque, Sébastien Kunz-Jacques

Real-time Traffic

CHES 2006 | Classical Exponent Randomization | Cryptology | Non Consecutive Bits | RSA Private Key |

claim paper

Related Content

» Tunable Balancing of RSA

» Maximizing Small Root Bounds by Linearization and Applications to Small Secret Exponent RS...

» Partial Key Exposure Attacks on RSA up to Full Size Exponents

» Partial Key Exposure Attack on RSA Improvements for Limited Lattice Dimensions

» Protecting RSA against Fault Attacks The Embedding Method

» New Approaches to Password Authenticated Key Exchange Based on RSA

» New Partial Key Exposure Attacks on RSA

» RSA with Balanced Short Exponents and Its Application to Entity Authentication

» Cryptanalysis of the RSA Schemes with Short Secret Exponent from Asiacrypt 99

Post Info
More Details (n/a)

Added	20 Aug 2010
Updated	20 Aug 2010
Type	Conference
Year	2006
Where	CHES
Authors	Pierre-Alain Fouque, Sébastien Kunz-Jacques, Gwenaëlle Martinet, Frédéric Muller, Frédéric Valette

Comments (0)

Sciweavers

Power Attack on Small RSA Public Exponent

CHES 2006 | Classical Exponent Randomization | Cryptology | Non Consecutive Bits | RSA Private Key |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers