| 摘要 |
The invention concerns a method of detecting a fault attack during a cryptographic operation using at least one look-up table, said look-up table comprising a plurality of sub-tables each having a same number of values of a fixed bit length, a fixed relation existing between values at same locations in each sub-table, the method comprising: performing a load operation to retrieve from said look-up table data values (B_1(Xi) to B_4(Xi)) from a same location in each of said sub-tables; verifying that said fixed relation exists between at least two of said data values; and generating an output signal based on said verification. |
