Topics in Cryptology –- CT-RSA 2015
Volume 9048 of the series Lecture Notes in Computer Science pp 3-21
Just a Little Bit More
- Joop van de PolAffiliated withDepartment Computer Science, University of Bristol Email author
- , Nigel P. SmartAffiliated withDepartment Computer Science, University of Bristol
- , Yuval YaromAffiliated withSchool of Computer Science, The University of Adelaide
Abstract
We extend the Flush+Reload side-channel attack of Benger et al. to extract a significantly larger number of bits of information per observed signature when using OpenSSL. This means that by observing only 25 signatures, we can recover secret keys of the secp256k1 curve, used in the Bitcoin protocol, with a probability greater than 50 percent. This is an order of magnitude improvement over the previously best known result.
The new method of attack exploits two points: Unlike previous partial disclosure attacks we utilize all information obtained and not just that in the least significant or most significant bits, this is enabled by a property of the “standard” curves choice of group order which enables extra bits of information to be extracted. Furthermore, whereas previous works require direct information on ephemeral key bits, our attack utilizes the indirect information from the wNAF double and add chain.
- Title
- Just a Little Bit More
- Book Title
- Topics in Cryptology –- CT-RSA 2015
- Book Subtitle
- The Cryptographer's Track at the RSA Conference 2015, San Francisco, CA, USA, April 20-24, 2015. Proceedings
- Pages
- pp 3-21
- Copyright
- 2015
- DOI
- 10.1007/978-3-319-16715-2_1
- Print ISBN
- 978-3-319-16714-5
- Online ISBN
- 978-3-319-16715-2
- Series Title
- Lecture Notes in Computer Science
- Series Volume
- 9048
- Series ISSN
- 0302-9743
- Publisher
- Springer International Publishing
- Copyright Holder
- Springer International Publishing Switzerland
- Additional Links
- Topics
- Industry Sectors
- eBook Packages
- Editors
-
-
Kaisa Nyberg
(13)
-
Kaisa Nyberg
- Editor Affiliations
-
- 13. Aalto University School of Science
- Authors
-
-
Joop van de Pol
(14)
-
Nigel P. Smart
(14)
-
Yuval Yarom
(15)
-
Joop van de Pol
- Author Affiliations
-
- 14. Department Computer Science, University of Bristol, Bristol, UK
- 15. School of Computer Science, The University of Adelaide, Adelaide, Australia
Continue reading...
To view the rest of this content please follow the download PDF link above.