{"title":"ZKFault:基于零知识的后量子数字签名方案的故障攻击分析","authors":"Puja Mondal, Supriya Adhikary, Suparna Kundu, Angshuman Karmakar","doi":"arxiv-2409.07150","DOIUrl":null,"url":null,"abstract":"Computationally hard problems based on coding theory, such as the syndrome\ndecoding problem, have been used for constructing secure cryptographic schemes\nfor a long time. Schemes based on these problems are also assumed to be secure\nagainst quantum computers. However, these schemes are often considered\nimpractical for real-world deployment due to large key sizes and inefficient\ncomputation time. In the recent call for standardization of additional\npost-quantum digital signatures by the National Institute of Standards and\nTechnology, several code-based candidates have been proposed, including LESS,\nCROSS, and MEDS. These schemes are designed on the relatively new\nzero-knowledge framework. Although several works analyze the hardness of these\nschemes, there is hardly any work that examines the security of these schemes\nin the presence of physical attacks. In this work, we analyze these signature schemes from the perspective of\nfault attacks. All these schemes use a similar tree-based construction to\ncompress the signature size. We attack this component of these schemes.\nTherefore, our attack is applicable to all of these schemes. In this work, we\nfirst analyze the LESS signature scheme and devise our attack. Furthermore, we\nshowed how this attack can be extended to the CROSS signature scheme. Our\nattacks are built on very simple fault assumptions. Our results show that we\ncan recover the entire secret key of LESS and CROSS using as little as a single\nfault. Finally, we propose various countermeasures to prevent these kinds of\nattacks and discuss their efficiency and shortcomings.","PeriodicalId":501332,"journal":{"name":"arXiv - CS - Cryptography and Security","volume":"15 1","pages":""},"PeriodicalIF":0.0000,"publicationDate":"2024-09-11","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"","citationCount":"0","resultStr":"{\"title\":\"ZKFault: Fault attack analysis on zero-knowledge based post-quantum digital signature schemes\",\"authors\":\"Puja Mondal, Supriya Adhikary, Suparna Kundu, Angshuman Karmakar\",\"doi\":\"arxiv-2409.07150\",\"DOIUrl\":null,\"url\":null,\"abstract\":\"Computationally hard problems based on coding theory, such as the syndrome\\ndecoding problem, have been used for constructing secure cryptographic schemes\\nfor a long time. Schemes based on these problems are also assumed to be secure\\nagainst quantum computers. However, these schemes are often considered\\nimpractical for real-world deployment due to large key sizes and inefficient\\ncomputation time. In the recent call for standardization of additional\\npost-quantum digital signatures by the National Institute of Standards and\\nTechnology, several code-based candidates have been proposed, including LESS,\\nCROSS, and MEDS. These schemes are designed on the relatively new\\nzero-knowledge framework. Although several works analyze the hardness of these\\nschemes, there is hardly any work that examines the security of these schemes\\nin the presence of physical attacks. In this work, we analyze these signature schemes from the perspective of\\nfault attacks. All these schemes use a similar tree-based construction to\\ncompress the signature size. We attack this component of these schemes.\\nTherefore, our attack is applicable to all of these schemes. In this work, we\\nfirst analyze the LESS signature scheme and devise our attack. Furthermore, we\\nshowed how this attack can be extended to the CROSS signature scheme. Our\\nattacks are built on very simple fault assumptions. Our results show that we\\ncan recover the entire secret key of LESS and CROSS using as little as a single\\nfault. Finally, we propose various countermeasures to prevent these kinds of\\nattacks and discuss their efficiency and shortcomings.\",\"PeriodicalId\":501332,\"journal\":{\"name\":\"arXiv - CS - Cryptography and Security\",\"volume\":\"15 1\",\"pages\":\"\"},\"PeriodicalIF\":0.0000,\"publicationDate\":\"2024-09-11\",\"publicationTypes\":\"Journal Article\",\"fieldsOfStudy\":null,\"isOpenAccess\":false,\"openAccessPdf\":\"\",\"citationCount\":\"0\",\"resultStr\":null,\"platform\":\"Semanticscholar\",\"paperid\":null,\"PeriodicalName\":\"arXiv - CS - Cryptography and Security\",\"FirstCategoryId\":\"1085\",\"ListUrlMain\":\"https://doi.org/arxiv-2409.07150\",\"RegionNum\":0,\"RegionCategory\":null,\"ArticlePicture\":[],\"TitleCN\":null,\"AbstractTextCN\":null,\"PMCID\":null,\"EPubDate\":\"\",\"PubModel\":\"\",\"JCR\":\"\",\"JCRName\":\"\",\"Score\":null,\"Total\":0}","platform":"Semanticscholar","paperid":null,"PeriodicalName":"arXiv - CS - Cryptography and Security","FirstCategoryId":"1085","ListUrlMain":"https://doi.org/arxiv-2409.07150","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"","JCRName":"","Score":null,"Total":0}
引用次数: 0
摘要
长期以来,基于编码理论的计算困难问题,如综合解码问题,一直被用于构建安全的加密方案。基于这些问题的方案也被认为对量子计算机是安全的。然而,由于密钥规模大、计算时间短,这些方案在实际应用中往往被认为是不切实际的。美国国家标准与技术研究院(National Institute of Standards andTechnology)最近呼吁对额外的量子后数字签名进行标准化,其中提出了几种基于代码的候选方案,包括 LESS、CROSS 和 MEDS。这些方案都是基于相对较新的零知识框架设计的。虽然有几项工作分析了这些方案的硬度,但几乎没有任何工作研究这些方案在物理攻击情况下的安全性。在这项工作中,我们从故障攻击的角度分析了这些签名方案。所有这些方案都使用类似的树状结构来压缩签名大小。因此,我们的攻击适用于所有这些方案。在这项工作中,我们首先分析了 LESS 签名方案,并设计了我们的攻击。此外,我们还展示了如何将这种攻击扩展到 CROSS 签名方案。我们的攻击建立在非常简单的故障假设之上。我们的结果表明,只需一个故障,我们就能恢复 LESS 和 CROSS 的整个密钥。最后,我们提出了防止这类攻击的各种对策,并讨论了它们的效率和缺点。
ZKFault: Fault attack analysis on zero-knowledge based post-quantum digital signature schemes
Computationally hard problems based on coding theory, such as the syndrome
decoding problem, have been used for constructing secure cryptographic schemes
for a long time. Schemes based on these problems are also assumed to be secure
against quantum computers. However, these schemes are often considered
impractical for real-world deployment due to large key sizes and inefficient
computation time. In the recent call for standardization of additional
post-quantum digital signatures by the National Institute of Standards and
Technology, several code-based candidates have been proposed, including LESS,
CROSS, and MEDS. These schemes are designed on the relatively new
zero-knowledge framework. Although several works analyze the hardness of these
schemes, there is hardly any work that examines the security of these schemes
in the presence of physical attacks. In this work, we analyze these signature schemes from the perspective of
fault attacks. All these schemes use a similar tree-based construction to
compress the signature size. We attack this component of these schemes.
Therefore, our attack is applicable to all of these schemes. In this work, we
first analyze the LESS signature scheme and devise our attack. Furthermore, we
showed how this attack can be extended to the CROSS signature scheme. Our
attacks are built on very simple fault assumptions. Our results show that we
can recover the entire secret key of LESS and CROSS using as little as a single
fault. Finally, we propose various countermeasures to prevent these kinds of
attacks and discuss their efficiency and shortcomings.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
