论文信息 - A new fault analysis on RSA based on the fault of multiplier

A new fault analysis on RSA based on the fault of multiplier

The former fault analysis on RSA with "Left-to-Right" was based on modifying the public modulus N, but it is difficult to be taken in practice. In order to find a more practical attack method, considering the characteristic that the multiplier of microprocessor is easy to affect by voltage, the fault can be injected into the multiplier during the RSA signature by adjusting the voltage. This paper proposes a new fault analysis on RSA signature based the error with multiplier, improving the feasibility of attack, and extends the attack to RSA with fixed-window algorithm. In the end, the complexity of algorithm is analyzed; the expansibility and feasibility of algorithm are proved by demonstrating in theory and simulation experiments. The results of experiment show that the new fault analysis algorithm is more practical in operation.

[1] Jean-Guillaume Dumas,et al. Fault Attacks on RSA Public Keys: Left-To-Right Implementations Are Also Vulnerable , 2009, CT-RSA.

[2] JaeCheol Ha,et al. Hardware Fault Attackon RSA with CRT Revisited , 2002, ICISC.

[3] Eli Biham,et al. Differential Fault Analysis of Secret Key Cryptosystems , 1997, CRYPTO.

[4] Jan M. Rabaey,et al. Digital Integrated Circuits , 2003 .

[5] OpenSSL. OpenSSL : The open source toolkit for SSL/TSL , 2002 .

[6] Wieland Fischer,et al. Fault Attacks on RSA with CRT: Concrete Results and Practical Countermeasures , 2002, CHES.

[7] Jörn-Marc Schmidt,et al. A Practical Fault Attack on Square and Multiply , 2008, 2008 5th Workshop on Fault Diagnosis and Tolerance in Cryptography.

[8] Christophe Clavier,et al. Why One Should Also Secure RSA Public Key Elements , 2006, CHES.