Differential Power Analysis of the Picnic Signature Scheme

Tim Gellersen; Okan Seker; Thomas Eisenbarth

doi:10.1007/978-3-030-81293-5_10

Differential Power Analysis of the Picnic Signature Scheme

Tim Gellersen, Okan Seker, Thomas Eisenbarth

Institut für IT-Sicherheit

11 Zitate (Scopus)

Abstract

This work introduces the first differential side-channel analysis of the Picnic Signature Scheme, an alternate candidate in the ongoing competition for post-quantum cryptography by the National Institute of Standards and Technology (NIST). We present a successful side-channel analysis of the underlying multiparty implementation of the LowMC block cipher (MPC-LowMC) and show how side-channel information can be used to recover the entire secret key by exploiting two different parts of the algorithm. LowMC key recovery then allows to forge signatures for the calling Picnic post-quantum signature scheme. We target the NIST reference implementation executed on a FRDM-K66F development board. Key recovery succeeds with fewer than 1000 LowMC traces, which can be obtained from fewer than 30 observed Picnic signatures.

Originalsprache	Englisch
DOIs	https://doi.org/10.1007/978-3-030-81293-5_10
Publikationsstatus	Veröffentlicht - 27.02.2020

UN SDGs

Dieser Output leistet einen Beitrag zu folgendem(n) Ziel(en) für nachhaltige Entwicklung

SDG 9 – Industrie, Innovation und Infrastruktur
SDG 11 – Nachhaltige Städte und Gemeinschaften
SDG 12 – Verantwortungsvoller Konsum und Produktion

Dokumente

10.1007/978-3-030-81293-5_10

Zitieren

@misc{783bb0aed1c849f187770fde48ada7f7,

title = "Differential Power Analysis of the Picnic Signature Scheme",

abstract = "This work introduces the first differential side-channel analysis of the Picnic Signature Scheme, an alternate candidate in the ongoing competition for post-quantum cryptography by the National Institute of Standards and Technology (NIST). We present a successful side-channel analysis of the underlying multiparty implementation of the LowMC block cipher (MPC-LowMC) and show how side-channel information can be used to recover the entire secret key by exploiting two different parts of the algorithm. LowMC key recovery then allows to forge signatures for the calling Picnic post-quantum signature scheme. We target the NIST reference implementation executed on a FRDM-K66F development board. Key recovery succeeds with fewer than 1000 LowMC traces, which can be obtained from fewer than 30 observed Picnic signatures. ",

author = "Tim Gellersen and Okan Seker and Thomas Eisenbarth",

note = "https://eprint.iacr.org/2020/267",

year = "2020",

month = feb,

day = "27",

doi = "10.1007/978-3-030-81293-5\_10",

language = "English",

publisher = "Springer International Publishing",

type = "Other",

}

TY - GEN

T1 - Differential Power Analysis of the Picnic Signature Scheme

AU - Gellersen, Tim

AU - Seker, Okan

AU - Eisenbarth, Thomas

N1 - https://eprint.iacr.org/2020/267

PY - 2020/2/27

Y1 - 2020/2/27

N2 - This work introduces the first differential side-channel analysis of the Picnic Signature Scheme, an alternate candidate in the ongoing competition for post-quantum cryptography by the National Institute of Standards and Technology (NIST). We present a successful side-channel analysis of the underlying multiparty implementation of the LowMC block cipher (MPC-LowMC) and show how side-channel information can be used to recover the entire secret key by exploiting two different parts of the algorithm. LowMC key recovery then allows to forge signatures for the calling Picnic post-quantum signature scheme. We target the NIST reference implementation executed on a FRDM-K66F development board. Key recovery succeeds with fewer than 1000 LowMC traces, which can be obtained from fewer than 30 observed Picnic signatures.

AB - This work introduces the first differential side-channel analysis of the Picnic Signature Scheme, an alternate candidate in the ongoing competition for post-quantum cryptography by the National Institute of Standards and Technology (NIST). We present a successful side-channel analysis of the underlying multiparty implementation of the LowMC block cipher (MPC-LowMC) and show how side-channel information can be used to recover the entire secret key by exploiting two different parts of the algorithm. LowMC key recovery then allows to forge signatures for the calling Picnic post-quantum signature scheme. We target the NIST reference implementation executed on a FRDM-K66F development board. Key recovery succeeds with fewer than 1000 LowMC traces, which can be obtained from fewer than 30 observed Picnic signatures.

U2 - 10.1007/978-3-030-81293-5_10

DO - 10.1007/978-3-030-81293-5_10

M3 - Other

PB - Springer International Publishing

ER -

Differential Power Analysis of the Picnic Signature Scheme

Abstract

UN SDGs

Dokumente

Fingerprint

Zitieren