Paper Info
Title
Exploiting Determinism in Lattice-based Signatures - Practical Fault Attacks on pqm4 Implementations of NIST Candidates.
Abstract
In this paper, we analyze the implementation level fault vulnerabilities of deterministic lattice-based signature schemes. In particular, we extend the practicality of skip-addition fault attacks through exploitation of determinism in Dilithium and qTESLA signature schemes, which are two leading candidates for the NIST standardization of post-quantum cryptography. We show that single targeted faults injected in the signing procedure allow to recover an important portion of the secret key. Though faults injected in the signing procedure do not recover all the secret key elements, we propose a novel forgery algorithm that allows the attacker to sign any given message with only the extracted portion of the secret key. We perform experimental validation of our attack using Electromagnetic fault injection on reference implementations taken from the pqm4 library, a benchmarking and testing framework for post quantum cryptographic implementations for the ARM Cortex-M4 microcontroller. We also show that our attacks break two well known countermeasures known to protect against skip-addition fault attacks. We further propose an efficient mitigation strategy against our attack that exponentially increases the attacker's complexity at almost zero increase in computational complexity.
Year
DOI
Venue
2019
10.1145/3321705.3329821
AsiaCCS
Keywords
DocType
Volume
Deterministic Lattice Signatures, pqm4, Fault Attack, Lattice-based Cryptography
Journal
2019
ISBN
Citations 
PageRank 
978-1-4503-6752-3
1
0.35
References 
Authors
0
5
Name
Order
Citations
PageRank
Prasanna Ravi110.35
Mahabir Prasad Jhanwar210.35
James Howe311.02
Anupam Chattopadhyay431862.76
Shivam Bhasin531158.38