Partial Key Exposure Attacks on BIKE, Rainbow and NTRU - Equipe Cybersécurité et Cryptographie
Communication Dans Un Congrès Année : 2022

Partial Key Exposure Attacks on BIKE, Rainbow and NTRU

Résumé

In a so-called partial key exposure attack one obtains some information about the secret key, e.g. via some side-channel leakage. This information might be a certain fraction of the secret key bits (erasure model) or some erroneous version of the secret key (error model). The goal is to recover the secret key from the leaked information. There is a common belief that, as opposed to e.g. the RSA cryptosystem, most post-quantum cryptosystems are usually resistant against partial key exposure attacks. We strongly question this belief by constructing partial key exposure attacks on code-based, multivariate, and latticebased schemes (BIKE, Rainbow and NTRU). Our attacks exploit the redundancy that modern PQ cryptosystems inherently use for efficiency reasons. The application and development of techniques from information set decoding plays a crucial role for achieving our results. On the theoretical side, we show non-trivial information leakage bounds that allow for a polynomial time key recovery attack. As an example, for all schemes the knowledge of a constant fraction of the secret key bits suffices to reconstruct the full key in polynomial time. Even if we no longer insist on polynomial time attacks, most of our attacks extend well and remain feasible up to large erasure and error rates. In the case of BIKE for example we obtain attack complexities around 60 bits when half of the secret key bits are erased, or a quarter of the secret key bits are faulty. Our results show that even highly error-prone key leakage of modern PQ cryptosystems may lead to full secret key recoveries.
Fichier principal
Vignette du fichier
KEAonLattices.pdf (894.51 Ko) Télécharger le fichier
Origine Fichiers produits par l'(les) auteur(s)

Dates et versions

hal-03876958 , version 1 (29-11-2022)

Identifiants

Citer

Andre Esser, Alexander May, Javier A. Verbel, Weiqiang Wen. Partial Key Exposure Attacks on BIKE, Rainbow and NTRU. Advances in Cryptology - CRYPTO 2022, Aug 2022, Santa Barbara, United States. pp.3-31, ⟨10.1007/978-3-031-15982-4_1⟩. ⟨hal-03876958⟩
64 Consultations
213 Téléchargements

Altmetric

Partager

More