Simple countermeasure to cryptanalysis against unified ECC codes

As a countermeasure to simple power attack, the unified point addition codes for the elliptic curve cryptosystem were introduced. However, some authors proposed a different kind of power attacks to the codes. This power attack uses the observation that some internal operations in the codes behave differently for addition and doubling. In this paper, we propose a new counter-measure against such an attack. The basic idea of the new countermeasure is that, if one of the input points of the codes is transformed to an equivalent point over the underlying finite field, then the code will behave in the same manner for addition and doubling. The new countermeasure is highly efficient in that it only requires 27(n−1)/3 extra ordinary integer subtractions (in average) for the whole n-bit scalar multiplication. The timing analysis of the proposed countermeasure is also presented to confirm its SPA resistance.

[1]  K. Yee Numerical solution of initial boundary value problems involving maxwell's equations in isotropic media , 1966 .

[2]  A. Ruehli Equivalent Circuit Models for Three-Dimensional Multiconductor Systems , 1974 .

[3]  Y. Saad,et al.  GMRES: a generalized minimal residual algorithm for solving nonsymmetric linear systems , 1986 .

[4]  N. Koblitz Elliptic curve cryptosystems , 1987 .

[5]  P. L. Montgomery Speeding the Pollard and elliptic curve methods of factorization , 1987 .

[6]  Lawrence T. Pileggi,et al.  Asymptotic waveform evaluation for timing analysis , 1990, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[7]  R. Freund,et al.  QMR: a quasi-minimal residual method for non-Hermitian linear systems , 1991 .

[8]  Ronald A. Rohrer,et al.  Three dimensional circuit oriented electromagnetic modeling for VLSI interconnects , 1992, Proceedings 1992 IEEE International Conference on Computer Design: VLSI in Computers & Processors.

[9]  Roland W. Freund,et al.  Efficient linear circuit analysis by Pade´ approximation via the Lanczos process , 1994, EURO-DAC '94.

[10]  Michel S. Nakhla,et al.  Analysis of interconnect networks using complex frequency hopping (CFH) , 1995, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[11]  Allen Taflove,et al.  Computational Electrodynamics the Finite-Difference Time-Domain Method , 1995 .

[12]  Eli Chiprout,et al.  Efficient full-wave electromagnetic analysis via model-order reduction of fast integral transforms , 1996, DAC '96.

[13]  Jacob K. White,et al.  A coordinate-transformed Arnoldi algorithm for generating guaranteed stable reduced-order models of RLC circuits , 1996, ICCAD 1996.

[14]  Ian J Craddock,et al.  Derivation and application of a passive equivalent circuit for the finite difference time domain algorithm , 1996 .

[15]  I. Elfadel,et al.  A block rational Arnoldi algorithm for multipoint passive model-order reduction of multiport RLC networks , 1997, ICCAD 1997.

[16]  Eric James Grimme,et al.  Krylov Projection Methods for Model Reduction , 1997 .

[17]  J.-F. Lee,et al.  Application of the AWE method with the 3-D TVFEM to model spectral responses of passive microwave components , 1998 .

[18]  Michel S. Nakhla,et al.  Full-wave analysis of high-speed interconnects using complex frequency hopping , 1998, IEEE Trans. Comput. Aided Des. Integr. Circuits Syst..

[19]  Lawrence T. Pileggi,et al.  PRIMA: passive reduced-order interconnect macromodeling algorithm , 1997, ICCAD 1997.

[20]  Li Zhao,et al.  Electromagnetic model order reduction for system-level modeling , 1999 .

[21]  Ian F. Blake,et al.  Elliptic curves in cryptography , 1999 .

[22]  Jean-Sébastien Coron,et al.  Resistance against Differential Power Analysis for Elliptic Curve Cryptosystems , 1999, CHES.

[23]  B. Sheehan,et al.  ENOR: model order reduction of RLC circuits using nodal equations for efficient factorization , 1999, Proceedings 1999 Design Automation Conference (Cat. No. 99CH36361).

[24]  Hao Ji,et al.  How to efficiently capture on-chip inductance effects: introducing a new circuit element K , 2000, IEEE/ACM International Conference on Computer Aided Design. ICCAD - 2000. IEEE/ACM Digest of Technical Papers (Cat. No.00CH37140).

[25]  Daniël De Zutter,et al.  Automatic generation of subdomain models in 2D FDTD using reduced order modeling , 2000 .

[26]  Z. Cendes,et al.  ALPS-A new fast frequency-sweep procedure for microwave devices , 2001 .

[27]  L. Pileggi,et al.  Efficient inductance extraction via windowing , 2001, Proceedings Design, Automation and Test in Europe. Conference and Exhibition 2001.

[28]  Magdy F. Iskander,et al.  A New 3-D FDTD Multigrid Technique with , 2001 .

[29]  Andreas C. Cangellaris,et al.  Progress in the methodologies for the electrical modeling of interconnects and electronic packages , 2001, Proc. IEEE.

[30]  Lawrence T. Pileggi,et al.  Robust and passive model order reduction for circuits containing susceptance elements , 2002, ICCAD 2002.

[31]  Lawrence T. Pileggi,et al.  Window-based susceptance models for large-scale RLC circuit analyses , 2002, Proceedings 2002 Design, Automation and Test in Europe Conference and Exhibition.

[32]  Siva Sai Yerubandi,et al.  Differential Power Analysis , 2002 .

[33]  Marc Joye,et al.  Weierstraß Elliptic Curves and Side-Channel Attacks , 2002, Public Key Cryptography.

[34]  M. Mrozowski,et al.  Reduced order models of refined Yee's cells , 2003, IEEE Microwave and Wireless Components Letters.

[35]  Dagang Wu,et al.  Application of model order reduction techniques to compact FDFD method for guided wave structures , 2003, IEEE Antennas and Propagation Society International Symposium. Digest. Held in conjunction with: USNC/CNC/URSI North American Radio Sci. Meeting (Cat. No.03CH37450).

[36]  A. Cangellaris,et al.  Model-order reduction of finite-element approximations of passive electromagnetic devices including lumped electrical-circuit models , 2004, IEEE Transactions on Microwave Theory and Techniques.

[37]  C. D. Walter,et al.  Simple Power Analysis of Unified Code for ECC Double and Add , 2004, CHES.

[38]  Yousef Saad,et al.  Preconditioning techniques for the solution of the Helmholtz equation by the finite element method , 2003, Math. Comput. Simul..

[39]  L. Knockaert,et al.  Laguerre-based bandlimited reduced-order modeling , 2004, IEEE Transactions on Microwave Theory and Techniques.

[40]  Xuan Zeng,et al.  SAPOR: second-order Arnoldi method for passive order reduction of RCS circuits , 2004, ICCAD 2004.

[41]  Z. Cendes,et al.  Full-wave analysis in SPICE via model-order reduction , 2004, IEEE Transactions on Microwave Theory and Techniques.

[42]  P. Dooren,et al.  Model reduction of second order systems , 2005 .

[43]  Paul Van Dooren,et al.  A rational Lanczos algorithm for model reduction , 1996, Numerical Algorithms.

[44]  Zhaojun Bai,et al.  Dimension Reduction of Large-Scale Second-Order Dynamical Systems via a Second-Order Arnoldi Method , 2005, SIAM J. Sci. Comput..

[45]  Nicolas Thériault,et al.  Unified Point Addition Formulæ and Side-Channel Attacks , 2006, CHES.

[46]  M. Swaminathan,et al.  Multilayered Finite-Difference Method (MFDM) for Modeling of Package and Printed Circuit Board Planes , 2007, IEEE Transactions on Electromagnetic Compatibility.

[47]  R. Achar,et al.  Stability, Causality, and Passivity in Electrical Interconnect Models , 2007, IEEE Transactions on Advanced Packaging.

[48]  Tibor Juhas The use of elliptic curves in cryptography , 2007 .

[49]  Madhavan Swaminathan,et al.  Fast memory-efficient full-wave 3D simulation of power planes , 2009, 2009 IEEE International Symposium on Electromagnetic Compatibility.

[50]  Madhavan Swaminathan,et al.  Accelerated frequency domain analysis by susceptance-element based model order reduction of 3D full-wave equations , 2009, 2009 IEEE 18th Conference on Electrical Performance of Electronic Packaging and Systems.