Paper Abstract and Keywords |
Presentation |
2018-07-25 15:25
Application of the Singular Curve Point Decompression Attack to the Bitcoin Curve Akira Takahashi (Kyoto Univ.), Mehdi Tibouchi, Masayuki Abe (NTT) ISEC2018-28 SITE2018-20 HWS2018-25 ICSS2018-31 EMM2018-27 |
Abstract |
(in Japanese) |
(See Japanese page) |
(in English) |
In this talk, we report that the singular curve point decompression attack of Blömer and Günther, which was originally presented as an attack against pairing-friendly curves, directly applies to the widely deployed secp k curve series. We experimentally verified that the attack can be carried out against an 8-bit microcontroller implementation of ECDSA over the secp256k1 curve, which is a high-profile target owing to its use in the Bitcoin protocol. The fault attack is devastating: the full secret key can be recovered by injecting a single clock glitch fault. We conclude that the point compression/decompression technique should never be applied to base points especially in constrained devices, such as Bitcoin hardware wallets. |
Keyword |
(in Japanese) |
(See Japanese page) |
(in English) |
ECDSA / secp256k1 / Fault attack / Singular Curve Point Decompression Attack / / / / |
Reference Info. |
IEICE Tech. Rep., vol. 118, no. 151, ISEC2018-28, pp. 149-153, July 2018. |
Paper # |
ISEC2018-28 |
Date of Issue |
2018-07-18 (ISEC, SITE, HWS, ICSS, EMM) |
ISSN |
Print edition: ISSN 0913-5685 Online edition: ISSN 2432-6380 |
Copyright and reproduction |
All rights are reserved and no part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopy, recording, or any information storage and retrieval system, without permission in writing from the publisher. Notwithstanding, instructors are permitted to photocopy isolated articles for noncommercial classroom use without fee. (License No.: 10GA0019/12GB0052/13GB0056/17GB0034/18GB0034) |
Download PDF |
ISEC2018-28 SITE2018-20 HWS2018-25 ICSS2018-31 EMM2018-27 |
Conference Information |
Committee |
HWS ISEC SITE ICSS EMM IPSJ-CSEC IPSJ-SPT |
Conference Date |
2018-07-25 - 2018-07-26 |
Place (in Japanese) |
(See Japanese page) |
Place (in English) |
Sapporo Convention Center |
Topics (in Japanese) |
(See Japanese page) |
Topics (in English) |
Security, etc. |
Paper Information |
Registration To |
ISEC |
Conference Code |
2018-07-HWS-ISEC-SITE-ICSS-EMM-CSEC-SPT |
Language |
English (Japanese title is available) |
Title (in Japanese) |
(See Japanese page) |
Sub Title (in Japanese) |
(See Japanese page) |
Title (in English) |
Application of the Singular Curve Point Decompression Attack to the Bitcoin Curve |
Sub Title (in English) |
|
Keyword(1) |
ECDSA |
Keyword(2) |
secp256k1 |
Keyword(3) |
Fault attack |
Keyword(4) |
Singular Curve Point Decompression Attack |
Keyword(5) |
|
Keyword(6) |
|
Keyword(7) |
|
Keyword(8) |
|
1st Author's Name |
Akira Takahashi |
1st Author's Affiliation |
Kyoto University (Kyoto Univ.) |
2nd Author's Name |
Mehdi Tibouchi |
2nd Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
3rd Author's Name |
Masayuki Abe |
3rd Author's Affiliation |
NTT Secure Platform Laboratories (NTT) |
4th Author's Name |
|
4th Author's Affiliation |
() |
5th Author's Name |
|
5th Author's Affiliation |
() |
6th Author's Name |
|
6th Author's Affiliation |
() |
7th Author's Name |
|
7th Author's Affiliation |
() |
8th Author's Name |
|
8th Author's Affiliation |
() |
9th Author's Name |
|
9th Author's Affiliation |
() |
10th Author's Name |
|
10th Author's Affiliation |
() |
11th Author's Name |
|
11th Author's Affiliation |
() |
12th Author's Name |
|
12th Author's Affiliation |
() |
13th Author's Name |
|
13th Author's Affiliation |
() |
14th Author's Name |
|
14th Author's Affiliation |
() |
15th Author's Name |
|
15th Author's Affiliation |
() |
16th Author's Name |
|
16th Author's Affiliation |
() |
17th Author's Name |
|
17th Author's Affiliation |
() |
18th Author's Name |
|
18th Author's Affiliation |
() |
19th Author's Name |
|
19th Author's Affiliation |
() |
20th Author's Name |
|
20th Author's Affiliation |
() |
Speaker |
Author-1 |
Date Time |
2018-07-25 15:25:00 |
Presentation Time |
25 minutes |
Registration for |
ISEC |
Paper # |
ISEC2018-28, SITE2018-20, HWS2018-25, ICSS2018-31, EMM2018-27 |
Volume (vol) |
vol.118 |
Number (no) |
no.151(ISEC), no.152(SITE), no.153(HWS), no.154(ICSS), no.155(EMM) |
Page |
pp.149-153 |
#Pages |
5 |
Date of Issue |
2018-07-18 (ISEC, SITE, HWS, ICSS, EMM) |
|