CryptoDB
Side Channel Analysis of Practical Pairing Implementations: Which Path is More Secure?
Authors: | |
---|---|
Download: | |
Abstract: | We present an investigation into the security of three practical pairing algorithms; the Tate, Eta and Ate pairing, in terms of side channel vulnerability. These three algorithms have recently shown to be efficiently computable on the resource constrained smart card, yet no in depth side channel analysis has yet appeared in the literature. Since the secret parameter input to the pairing can potentially be entered in either of the two possible positions, there exist two avenues of attack, i.e. e(P,Q) or e(Q,P) where P is public and Q is private. We analyse the core operations fundamental to pairings and not only highlight how each implementation may potentially succumb to a side channel attack, but also show how one path is more susceptible than the other in Tate and Ate. For those who wish to deploy pairing based systems we make a simple suggestion to improve resistance to side channel attacks. |
BibTeX
@misc{eprint-2006-21730, title={Side Channel Analysis of Practical Pairing Implementations: Which Path is More Secure?}, booktitle={IACR Eprint archive}, keywords={Side Channel Analysis (SCA), Pairing Based Cryptography, Correlation Power Analysis (CPA), Tate Pairing.}, url={http://eprint.iacr.org/2006/237}, note={ cwhelan@computing.dcu.ie 13342 received 10 Jul 2006, last revised 13 Jul 2006}, author={Claire Whelan and Mike Scott}, year=2006 }