Internet Archive Scholar

Side-Channel Analysis of SM2

Nicola Tuveri, Sohaib ul Hassan, Cesar Pereida Garcia, Billy Bob Brumley
2018 Proceedings of the 34th Annual Computer Security Applications Conference on - ACSAC '18  

Preserved Fulltext

fulltext thumbnail
Web Archive Capture PDF (5.3 MB)
https://web.archive.org/web/20190218001055/https://eprint.iacr.org/2018/651.pdf

A copy of this work was available on the public web and has been preserved in the Wayback Machine. The capture dates from 2019; you can also visit the original URL. The file type is application/pdf.

SM2 is a public key cryptography suite originating from Chinese standards, including digital signatures and public key encryption. Ahead of schedule, code for this functionality was recently mainlined in OpenSSL, marked for the upcoming 1.1.1 release. We perform a security review of this implementation, uncovering various deficiencies ranging from traditional software quality issues to side-channel risks. To assess the latter, we carry out a side-channel security evaluation and discover that
more » ... implementation hits every pitfall seen for OpenSSL's ECDSA code in the past decade. We carry out remote timings, cache timings, and EM analysis, with accompanying empirical data to demonstrate secret information leakage during execution of both digital signature generation and public key decryption. Finally, we propose, implement, and empirically evaluate countermeasures.
doi:10.1145/3274694.3274725 dblp:conf/acsac/TuveriHGB18 fatcat:vztueekdx5ctjiqtfvcoyikcji
Citation

Nicola Tuveri, Sohaib ul Hassan, Cesar Pereida Garcia, Billy Bob Brumley. "Side-Channel Analysis of SM2." Proceedings of the 34th Annual Computer Security Applications Conference on - ACSAC '18 (2018) 147-160