The distributions of individual bits in the output of multiplicative operations

Michael Tunstall; Marc Joye

首页> 外文期刊>Cryptography and Communications >The distributions of individual bits in the output of multiplicative operations

【24h】

The distributions of individual bits in the output of multiplicative operations

机译：乘法运算输出中各个位的分布

获取原文

获取原文并翻译 | 示例

获取外文期刊封面封底 >>

开具论文收录证明 >>

文献代查 >>

页面导航

摘要
著录项
相似文献
相关主题

摘要

A difference-of-means test applied to acquisitions of the instantaneous power consumption has been shown to be a suitable means of distinguishing a multiplication from a squaring operation over the integers. This has been attributed to the difference in expected Hamming weight of the output of these operations but few details are present in the literature. In this paper we define how this difference occurs and show that, somewhat surprisingly, a difference can, for some moduli, still be observed after a modular reduction. Moreover, we show that this difference leads to a practical attack under reasonable assumptions where a modulus is blinded. The presented attack goes beyond the cryptographic primitive and applies to concrete provably secure implementations, including RSA-PSS for signature generation or RSA-OAEP for encryption that uses side-channel countermeasures.

机译：已经证明，应用于瞬时功率消耗的均值检验是区分整数与平方运算的乘法的合适方法。这归因于这些操作的输出的预期汉明权重的差异，但是文献中很少有细节。在本文中，我们定义了这种差异是如何发生的，并显示出令人惊讶的是，对于某些模量，在模数减少后仍可以观察到差异。此外，我们表明，这种差异会导致在合理的假设下模数是盲目的实际攻击。所提出的攻击超出了密码原语的范围，并适用于可证明的具体安全实现，包括用于签名生成的RSA-PSS或使用侧信道对策的用于加密的RSA-OAEP。

著录项

来源
《Cryptography and Communications》 |2015年第1期|71-90|共20页
作者
Michael Tunstall; Marc Joye;
展开▼
作者单位

Cryptography Research Inc.">(1);

Technicolor">(2);

展开▼
收录信息
原文格式 PDF
正文语种 eng
中图分类
关键词
Side-channel analysis; Exponentiation algorithms;

机译：旁通道分析;求幂算法;

相似文献

外文文献
中文文献
专利

1. The distributions of individual bits in the output of multiplicative operations [J] . Michael Tunstall, Marc Joye Cryptography and Communications . 2015,第1期

机译：乘法运算输出中各个位的分布
2. Determination of Performance Time for the Complete Set of Operations in a Multifunction Radar System With Arbitrary Time Distributions of Particular Operations [J] . N. I. Matyukhin Telecommunications and Radio Engineering . 1998,第3期

机译：具有特定操作任意时间分布的多功能雷达系统中整套操作的执行时间的确定
3. 10 Gbit/s high sensitivity, low-voltage-operation avalanche photodiodes with thin InAlAs multiplication layer and waveguide structure [J] . Nakata T., Takeuchi T. Electronics Letters . 2000,第24期

机译：具有薄InAlAs倍增层和波导结构的10 Gbit / s高灵敏度，低电压工作雪崩光电二极管
4. Individual and Global Assessments with Signed Distance Defuzzification, and Characteristics of the Output Distributions based on an Empirical Analysis [C] . Redina Berkachy, Laurent Donze International Joint Conference on Computational Intelligence . 2016

机译：基于实证分析的个人和全局评估，以及输出分布的特点
5. Impact of information asymmetry on firms' optimal investment, financing, and payout policies under arbitrary output distributions. [D] . Agrawal, Vipin Kumar. 2003

机译：任意产出分布下信息不对称对企业最优投资，融资和支付政策的影响。
6. Introduction to The Distribution of Earnings and of Individual Output by A.D. Roy [O] . James J Heckman, Michael Sattinger -1

机译：罗伊（A.D. Roy）介绍收益和个人产出的分配
7. Financial Development and the Distributional Effects of Monetary Policy Do the distributional consequences of monetary policy depend on the extent of financial development? Should optimal monetary policy vary across countries? In order to answer these questions, we develop a monetary growth production model with heterogeneous agents. In our economy, optimal policy needs to weigh the effects of policy across two groups — capital owners and individuals who hold liquid assets. While banks help limit the exposure to inflation, there are limits because money alleviates the frictions of private information and limited communication. In this environment, we compare two economies that are identical in every aspect except for their level of financial development. In a country with limited financial development, a stock market is absent. In the other, an equity market is active. In either economy, inflation adversely affects capital formation and output. Individuals who hold liquid assets are always adversely affected by inflation, but the attitude of capital owners depends on the level of financial development. In particular, in the presence of a stock market, the impact of inflation on the welfare of capital owners is non-monotonic. Nevertheless, optimal monetary policy is always more conservative at higher levels of financial development. [O] . TINA M. Edgar A. Ghossoub, TINA M. Robert R. Reedy 100

机译：金融发展和货币政策的分配效应货币政策的分配后果是否取决于金融发展的程度？各国的最优货币政策应该不同吗？为了回答这些问题，我们开发了一个具有异构代理的货币增长生产模型。在我们的经济中，最优政策需要权衡两个群体的政策效应 - 资本所有者和持有流动资产的个人。虽然银行帮助限制通胀风险，但存在限制，因为资金减轻了私人信息的摩擦和有限的沟通。在这种环境下，我们比较两个经济体在各个方面都是相同的，除了它们的金融发展水平。在金融发展有限的国家，缺乏股票市场。另一方面，股票市场活跃。在任一经济体中，通胀都会对资本形成和产出产生不利影响持有流动资产的个人总是受到通货膨胀的不利影响，但资本所有者的态度取决于金融发展的水平。特别是，在股票市场存在的情况下，通货膨胀对资本所有者福利的影响是非单调的。尽管如此，在较高的金融发展水平下，最优货币政策总是更加保守。
8. WAXICON Design Code for Arbitrary Input-Output Intensity Distributions [R] . Aronson, E. A., Romero, L. A., Treadway, A. H. 1986

机译：任意输入 - 输出强度分布的WaXICON设计规范

The distributions of individual bits in the output of multiplicative operations

摘要

著录项

相似文献

相关主题

期刊订阅