Securing RSA against Fault Analysis by Double Addition Chain Exponentiation

14 years 6 months ago

Download eprint.iacr.org

Abstract. Fault Analysis is a powerful cryptanalytic technique that enables to break cryptographic implementations embedded in portable devices more eﬃciently than any other technique. For an RSA implemented with the Chinese Remainder Theorem method, one faulty execution sufﬁces to factorize the public modulus and fully recover the private key. It is therefore mandatory to protect embedded implementations of RSA against fault analysis. This paper provides a new countermeasure against fault analysis for exponentiation and RSA. It consists in a self-secure exponentiation algorithm, namely an exponentiation algorithm that provides a direct way to check the result coherence. An RSA implemented with our solution hence avoids the use of an extended modulus (which slows down the computation) as in several other countermeasures. Moreover, our exponentiation

Matthieu Rivain

Real-time Traffic

Cryptology | CTRSA 2009 | Exponentiation Algorithm | Fault Analysis | Self-secure Exponentiation Algorithm |

claim paper

Post Info
More Details (n/a)

Added	19 May 2010
Updated	19 May 2010
Type	Conference
Year	2009
Where	CTRSA
Authors	Matthieu Rivain

Comments (0)

Sciweavers

Securing RSA against Fault Analysis by Double Addition Chain Exponentiation

Cryptology | CTRSA 2009 | Exponentiation Algorithm | Fault Analysis | Self-secure Exponentiation Algorithm |

Explore & Download

Productivity Tools

Document Tools

Image Tools

Sciweavers