Chapter

Cryptographic Hardware and Embedded Systems — CHES 2001

Volume 2162 of the series Lecture Notes in Computer Science pp 39-50

Date:

Randomized Addition-Subtraction Chains as a Countermeasure against Power Attacks

  • Elisabeth OswaldAffiliated withInstitute for Applied Information Processing and Communications, Graz University of Technology
  • , Manfred AignerAffiliated withInstitute for Applied Information Processing and Communications, Graz University of Technology

Abstract

Power Analysis attacks on elliptic curve cryptosystems and various countermeasures against them, have been first discussed by Coron ([6]). All proposed countermeasures are based on the randomization or blinding of the inputparameters of the binary algorithm. We propose a countermeasure that randomizes the binary algorithm itself. Our algorithm needs approximately 9% more additions than the ordinary binary algorithm, but makes power analysis attacks really difficult.

Keywords

Power Analysis Elliptic Curve Cryptosystems