WiP: Applicability of ISO Standard Side-Channel Leakage Tests to NIST Post-Quantum Cryptography

Tutkimustuotos: KonferenssiartikkeliTieteellinenvertaisarvioitu

5 Sitaatiot (Scopus)

Abstrakti

FIPS 140-3 is the main standard defining security requirements for cryptographic modules in U.S. and Canada; commercially viable hardware modules generally need to be compliant with it. The scope of FIPS 140-3 will also expand to the new NIST Post-Quantum Cryptography (PQC) standards when migration from older RSA and Elliptic Curve cryptography begins. FIPS 140-3 mandates the testing of the effectiveness of 'non-invasive attack mitigations', or side-channel attack coun-termeasures. At higher security levels 3 and 4, the FIPS 140-3 side-channel testing methods and metrics are expected to be those of ISO 17825, which is based on the older Test Vector Leakage Assessment (TVLA) methodology. We discuss how to apply ISO 17825 to hardware modules that implement lattice-based PQC standards for public-key cryptography - Key Encapsulation Mechanisms (KEMs) and Digital Signatures. We find that simple 'random key' vs. 'fixed key' tests are unsatisfactory due to the close linkage between public and private components of PQC keypairs. While the general statistical testing approach and requirements can remain consistent with older public-key algorithms, a non-trivial challenge in creating ISO 17825 testing procedures for PQC is the careful design of test vector inputs so that only relevant Critical Security Parameter (CSP) leakage is captured in power, electromagnetic, and timing measurements.

AlkuperäiskieliEnglanti
OtsikkoProceedings of the 2022 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2022
KustantajaIEEE
Sivut69-72
Sivumäärä4
ISBN (elektroninen)9781665485326
DOI - pysyväislinkit
TilaJulkaistu - 2022
Julkaistu ulkoisestiKyllä
OKM-julkaisutyyppiA4 Artikkeli konferenssijulkaisussa
Tapahtuma2022 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2022 - Washington, Yhdysvallat
Kesto: 27 kesäk. 202230 kesäk. 2022

Julkaisusarja

NimiProceedings of the 2022 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2022

Conference

Conference2022 IEEE International Symposium on Hardware Oriented Security and Trust, HOST 2022
Maa/AlueYhdysvallat
KaupunkiWashington
Ajanjakso27/06/2230/06/22

!!ASJC Scopus subject areas

  • Computer Networks and Communications
  • Hardware and Architecture
  • Electrical and Electronic Engineering
  • Safety, Risk, Reliability and Quality
  • Electronic, Optical and Magnetic Materials

Sormenjälki

Sukella tutkimusaiheisiin 'WiP: Applicability of ISO Standard Side-Channel Leakage Tests to NIST Post-Quantum Cryptography'. Ne muodostavat yhdessä ainutlaatuisen sormenjäljen.

Siteeraa tätä