| 发明名称 | Method for testing the security of an electronic device against an attack, and electronic device implementing countermeasures | ||
| 摘要 | A method of testing security of an electronic device against a combination of a side-channel attack and a fault-injection attack implemented during a method of cryptographic processing that includes: delivering a message signature based on a secret parameter and implementing a recombination of at least two intermediate values according to the Chinese remainder theorem; and verifying the signature on the basis of at least one public exponent. The method of testing includes: transmitting a plurality of messages to be signed by said electronic device; disturbing each message, including modifying the message by inserting an identical error for each message, before executing a step of determining one of the intermediate values; and analyzing physical measurements, obtained during the step of verifying the signature as a function of the message to be signed, the identical error for each message, and an assumption of a value of part of the secret parameter. | ||
| 申请公布号 | US9069971(B2) | 申请公布日期 | 2015.06.30 |
| 申请号 | US201314021868 | 申请日期 | 2013.09.09 |
| 申请人 | OBERTHUR TECHNOLOGIES | 发明人 | Barbu Guillaume;Batistello Alberto;Giraud Christophe;Renner Soline |
| 分类号 | G06F11/30;G06F21/57;G06F7/72 | 主分类号 | G06F11/30 |
| 代理机构 | Westman, Champlin & Koehler, P.A. | 代理人 | Brush David D.;Westman, Champlin & Koehler, P.A. |
| 主权项 | 1. A method for testing the security of an electronic device against a combination of a side-channel attack and a fault-injection attack implemented during an execution, in the electronic device, of a method of cryptographic processing that includes a step of delivering a signature of a message on the basis of at least one secret parameter, said step of delivering a signature implementing a recombination of at least two intermediate values according to the Chinese remainder theorem, and a step of verifying said signature on the basis of at least one public exponent, wherein the method for testing comprises: a step of transmitting a plurality of messages to be signed by said electronic device; a step of disturbing each message, comprising a modification of said message by the insertion of an identical error into said message, before executing a step of determining one of the intermediate values to be recombined during the step of delivering a signature of said message; a step of obtaining physical measurements during said step of verifying said signature; a step of analyzing said physical measurements as a function of said message to be signed, said identical error, and an assumption of a value of a part of said at least one secret parameter. | ||
| 地址 | Colombes FR | ||