Power Attack on Small RSA Public Exponent

Pierre-Alain Fouque; Sébastien Kunz-Jacques; Gwenaëlle Martinet; Frédéric Muller; Frédéric Valette

doi:10.1007/11894063_27

Conference papers

Power Attack on Small RSA Public Exponent

Pierre-Alain Fouque ^{1, 2} Sébastien Kunz-Jacques Gwenaëlle Martinet Frédéric Muller Frédéric Valette

1 LIENS - Laboratoire d'informatique de l'école normale supérieure

2 ENS Paris - École normale supérieure - Paris

Abstract : In this paper, we present a new attack on RSA when the public exponent is short, for instance 3 or 216+1, and when the classical exponent randomization is used. This attack works even if blinding is used on the messages. From a Simple Power Analysis (SPA) we study the problem of recovering the RSA private key when non consecutive bits of it leak from the implementation. We also show that such information can be gained from sliding window implementations not protected against SPA.

Document type :

Conference papers

Domain :

Computer Science [cs] / Cryptography and Security [cs.CR]

Complete list of metadata

https://hal.inria.fr/inria-00563960
Contributor : Pierre-Alain Fouque <>
Submitted on : Monday, February 7, 2011 - 4:28:56 PM
Last modification on : Thursday, July 1, 2021 - 5:32:36 PM

Power Attack on Small RSA Public Exponent

Links full text

Identifiers

Collections

Citation

Export

Metrics

173

Contact Legal Notice Personal Data

Power Attack on Small RSA Public Exponent

Links full text

Identifiers

Collections

Citation

Export

Share

Metrics

173

Contact Legal Notice Personal Data