Recovering RSA Private Keys on Implementations with Tampered LSBs
Constantinos Patsakis
2013
Abstract
The theoretical security that modern encryption algorithms are providing, leads researchers to new attack scenarios which are more implementation centric. By discovering hardware or software flaws that can recover some information about the decryption key, cryptanalysts try to exploit this knowledge. Therefore, many side channel attacks have appeared, illustrating that the concept of having secure code or even embedding all cryptographic functions in hardware modules, in many cases in not adequate. The aim of this work is to illustrate how partial information can be used to exploit the extracted information, leading to full reconstruction of the private key of RSA, for some implementations of the algorithm where the LSB has been selected to fit several constraints. More precisely, we study the case where the LSB half of the primes is identical or when there is a linear equation that mixes the LSB halves of the two primes.
DownloadPaper Citation
in Harvard Style
Patsakis C. (2013). Recovering RSA Private Keys on Implementations with Tampered LSBs . In Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013) ISBN 978-989-8565-73-0, pages 453-460. DOI: 10.5220/0004534904530460
in Bibtex Style
@conference{secrypt13,
author={Constantinos Patsakis},
title={Recovering RSA Private Keys on Implementations with Tampered LSBs},
booktitle={Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013)},
year={2013},
pages={453-460},
publisher={SciTePress},
organization={INSTICC},
doi={10.5220/0004534904530460},
isbn={978-989-8565-73-0},
}
in EndNote Style
TY - CONF
JO - Proceedings of the 10th International Conference on Security and Cryptography - Volume 1: SECRYPT, (ICETE 2013)
TI - Recovering RSA Private Keys on Implementations with Tampered LSBs
SN - 978-989-8565-73-0
AU - Patsakis C.
PY - 2013
SP - 453
EP - 460
DO - 10.5220/0004534904530460