发明名称 |
Methods and systems for glitch-resistant cryptographic signing |
摘要 |
Methods and devices disclosed herein use techniques to resist glitch attacks when computing discrete-log based signatures. The methods and systems described herein replace the random nonce in conventional signature systems with a pseudorandom nonce derived in a deterministic way from some internal state information, such as a secret key or a counter, such that the nonce is not repeated. The methods and systems described herein may also use tests to verify that a glitch has not occurred or been introduced. |
申请公布号 |
US9571289(B2) |
申请公布日期 |
2017.02.14 |
申请号 |
US201314441998 |
申请日期 |
2013.11.11 |
申请人 |
Cryptography Research, Inc. |
发明人 |
Jaffe Joshua M |
分类号 |
G06F21/00;H04L9/32;H04L9/00;H04L9/14 |
主分类号 |
G06F21/00 |
代理机构 |
Finnegan, Henderson, Farabow, Garrett & Dunner, LLP |
代理人 |
Finnegan, Henderson, Farabow, Garrett & Dunner, LLP |
主权项 |
1. A computer-implemented method for generating a digital signature involving a secret nonce in a manner that resists glitches, the method to be performed by a system comprising at least one processor and at least one memory, the method comprising:
generating, using a reversible function, a valid non-zero nonce based on a first secret key and a counter value stored in a first location of the at least one memory; updating the counter value and confirming that the first memory location contains the updated counter value; generating a digital signature based on the valid non-zero nonce and a second secret key, wherein the second secret key is a private key of a key pair; generating an inverse of the valid non-zero nonce; generating a check digital signature based on the inverse of the valid non-zero nonce; and determining whether the digital signature was generated without a glitch by comparing the generated digital signature with the check digital signature. |
地址 |
San Francisco CA US |