Skip to Main content Skip to Navigation
Conference papers

Fault Attacks on Projective-to-Affine Coordinates Conversion

Abstract : This paper presents a new type of fault attacks on elliptic curves cryptosystems. At EUROCRYPT 2004, Naccache et alii showed that when the result of an elliptic curve scalar multiplication [k] P (computed using a fixed scalar multiplication algorithm, such as double-and-add) is given in projective coordinates, an attacker can recover information on k. The attack is somewhat theoretical, because elliptic curve cryptosystems implementations usually convert scalar multiplication's result back to affine coordinates before outputting [k]P. This paper explains how injecting faults in the final projective-to-affine coordinate conversion enables an attacker to retrieve the projective coordinates of [k]P, making Naccache et alii's attack also applicable to implementations that output points in affine coordinates. As a result, such faults allow the recovery of information about k.
Document type :
Conference papers
Complete list of metadata
Contributor : David Naccache Connect in order to contact the contributor
Submitted on : Tuesday, January 21, 2014 - 8:27:07 PM
Last modification on : Thursday, August 4, 2022 - 5:28:54 PM

Links full text



Diana Maimut, Cédric Murdica, David Naccache, Mehdi Tibouchi. Fault Attacks on Projective-to-Affine Coordinates Conversion. COSADE 2013 - 4th International Workshop Constructive Side-Channel Analysis and Secure Design, 2013, Paris, France. pp.46-61, ⟨10.1007/978-3-642-40026-1_4⟩. ⟨hal-00934335⟩