发明名称 |
Method for testing the security of an electronic device against an attack, and electronic device implementing countermeasures |
摘要 |
A method of testing security of an electronic device against a combination of a side-channel attack and a fault-injection attack implemented during a method of cryptographic processing that includes: delivering a message signature based on a secret parameter and implementing a recombination of at least two intermediate values according to the Chinese remainder theorem; and verifying the signature on the basis of at least one public exponent. The method of testing includes: transmitting a plurality of messages to be signed by said electronic device; disturbing each message, including modifying the message by inserting an identical error for each message, before executing a step of determining one of the intermediate values; and analyzing physical measurements, obtained during the step of verifying the signature as a function of the message to be signed, the identical error for each message, and an assumption of a value of part of the secret parameter. |
申请公布号 |
US9069971(B2) |
申请公布日期 |
2015.06.30 |
申请号 |
US201314021868 |
申请日期 |
2013.09.09 |
申请人 |
OBERTHUR TECHNOLOGIES |
发明人 |
Barbu Guillaume;Batistello Alberto;Giraud Christophe;Renner Soline |
分类号 |
G06F11/30;G06F21/57;G06F7/72 |
主分类号 |
G06F11/30 |
代理机构 |
Westman, Champlin & Koehler, P.A. |
代理人 |
Brush David D.;Westman, Champlin & Koehler, P.A. |
主权项 |
1. A method for testing the security of an electronic device against a combination of a side-channel attack and a fault-injection attack implemented during an execution, in the electronic device, of a method of cryptographic processing that includes a step of delivering a signature of a message on the basis of at least one secret parameter, said step of delivering a signature implementing a recombination of at least two intermediate values according to the Chinese remainder theorem, and a step of verifying said signature on the basis of at least one public exponent, wherein the method for testing comprises:
a step of transmitting a plurality of messages to be signed by said electronic device; a step of disturbing each message, comprising a modification of said message by the insertion of an identical error into said message, before executing a step of determining one of the intermediate values to be recombined during the step of delivering a signature of said message; a step of obtaining physical measurements during said step of verifying said signature; a step of analyzing said physical measurements as a function of said message to be signed, said identical error, and an assumption of a value of a part of said at least one secret parameter. |
地址 |
Colombes FR |