Please use this identifier to cite or link to this item:
Scopus Web of Science® Altmetric
Type: Conference paper
Title: “Ooh Aah…, Just a Little Bit”: a small amount of side channel can go a long way
Author: Benger, N.
van de Pol, J.
Smart, N.
Yarom, Y.
Citation: Lecture Notes in Artificial Intelligence, 2014 / Batina, L., Robshaw, M. (ed./s), vol.8731, pp.75-92
Publisher: Springer
Issue Date: 2014
Series/Report no.: Lecture Notes in Computer Science
ISBN: 9783662447086
ISSN: 0302-9743
Conference Name: 16th International Workshop on Cryptographic Hardware and Embedded Systems (CHES) (23 Sep 2014 - 26 Sep 2014 : Busan, South Korea)
Editor: Batina, L.
Robshaw, M.
Statement of
Naomi Benger, Joop van de Pol, Nigel P. Smart, and Yuval Yarom
Abstract: We apply the FLUSH+RELOAD side-channel attack based on cache hits/misses to extract a small amount of data from OpenSSL ECDSA signature requests. We then apply a “standard” lattice technique to extract the private key, but unlike previous attacks we are able to make use of the side-channel information from almost all of the observed executions. This means we obtain private key recovery by observing a relatively small number of executions, and by expending a relatively small amount of post-processing via lattice reduction. We demonstrate our analysis via experiments using the curve secp256k1 used in the Bitcoin protocol. In particular we show that with as little as 200 signatures we are able to achieve a reasonable level of success in recovering the secret key for a 256-bit curve. This is significantly better than prior methods of applying lattice reduction techniques to similar side channel information.
Description: Lecture Notes in Computer Science, vol. 8731
Rights: © International Association for Cryptologic Research 2014
DOI: 10.1007/978-3-662-44709-3_5
Published version:
Appears in Collections:Aurora harvest 8
Computer Science publications

Files in This Item:
File Description SizeFormat 
  Restricted Access
Restricted Access280.36 kBAdobe PDFView/Open

Items in DSpace are protected by copyright, with all rights reserved, unless otherwise indicated.