Re: [Taler] Fault attacks on RSA in libgcrypt

taler

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Taler] Fault attacks on RSA in libgcrypt

From:	Jeff Burdges
Subject:	Re: [Taler] Fault attacks on RSA in libgcrypt
Date:	Wed, 24 Aug 2016 13:46:06 +0200

I found an article which provides the same sort of fault protections
with a randomized CRT algorithm.  I'd expect it gives stronger
protections against timing attacks, etc., even if fault attacks prove
not to be realistic. 
http://dl.acm.org/citation.cfm?doid=1873548.1873556

This is probably more the sort of thing one should be doing.  It appears
the random numbers injected should be quite small, making this scheme
fairly fast.  This particular paper however only really focuses on fault
attacks.  

It would be good to see this or similar schemes evaluated for timing
attack protections though, as folks understandably care way more about
timing than about fault attacks. 

Best,
Jeff

signature.asc
Description: This is a digitally signed message part

[Prev in Thread]

Current Thread

[Next in Thread]

[Taler] Fault attacks on RSA in libgcrypt, Jeff Burdges, 2016/08/22
- Re: [Taler] Fault attacks on RSA in libgcrypt, Jeff Burdges, 2016/08/22
- Re: [Taler] Fault attacks on RSA in libgcrypt, Stephan Mueller, 2016/08/23
  - Re: [Taler] Fault attacks on RSA in libgcrypt, Christian Grothoff, 2016/08/23
- Re: [Taler] Fault attacks on RSA in libgcrypt, Jeff Burdges, 2016/08/23
  - Re: [Taler] Fault attacks on RSA in libgcrypt, Jeff Burdges <=
- Re: [Taler] Fault attacks on RSA in libgcrypt, Werner Koch, 2016/08/24
  - Re: [Taler] Fault attacks on RSA in libgcrypt, Jeff Burdges, 2016/08/24

Prev by Date: Re: [Taler] Fault attacks on RSA in libgcrypt
Next by Date: Re: [Taler] Fault attacks on RSA in libgcrypt
Previous by thread: Re: [Taler] Fault attacks on RSA in libgcrypt
Next by thread: Re: [Taler] Fault attacks on RSA in libgcrypt
Index(es):
- Date
- Thread