An experimental test of robustness to timing attack is reported for the widely used public-key cryptographic algorithm in IoT transducers, the Elliptic Curve Digital Signature Algorithm (ECDSA). To this aim, a timing-lattice attack is addressed on ECDSA of the firmware Library MbedTLS for ARM microcontrollers. Timing is assessed by measuring the execution time of ecdsa-write-signature of MbedTLS library implemented on an ARM Cortex-M4 microcontroller. The time intervals required to sign the messages, the messages themselves, and the signatures, are used to mount a lattice attack in order to discover ECDSA private key. Experimental results highlight the security of ECDSA function in MbedTLS library to the implemented attack.

Experimental test of ECDSA digital signature robustness from timing-lattice attack / Angrisani, L.; Arpaia, P.; Bonavolonta, F.; Cioffi, A.. - (2020), pp. 1-6. (Intervento presentato al convegno 2020 IEEE International Instrumentation and Measurement Technology Conference, I2MTC 2020 tenutosi a hrv nel 2020) [10.1109/I2MTC43012.2020.9129144].

Experimental test of ECDSA digital signature robustness from timing-lattice attack

Angrisani L.;Arpaia P.;Bonavolonta F.;Cioffi A.
2020

Abstract

An experimental test of robustness to timing attack is reported for the widely used public-key cryptographic algorithm in IoT transducers, the Elliptic Curve Digital Signature Algorithm (ECDSA). To this aim, a timing-lattice attack is addressed on ECDSA of the firmware Library MbedTLS for ARM microcontrollers. Timing is assessed by measuring the execution time of ecdsa-write-signature of MbedTLS library implemented on an ARM Cortex-M4 microcontroller. The time intervals required to sign the messages, the messages themselves, and the signatures, are used to mount a lattice attack in order to discover ECDSA private key. Experimental results highlight the security of ECDSA function in MbedTLS library to the implemented attack.
2020
978-1-7281-4460-3
Experimental test of ECDSA digital signature robustness from timing-lattice attack / Angrisani, L.; Arpaia, P.; Bonavolonta, F.; Cioffi, A.. - (2020), pp. 1-6. (Intervento presentato al convegno 2020 IEEE International Instrumentation and Measurement Technology Conference, I2MTC 2020 tenutosi a hrv nel 2020) [10.1109/I2MTC43012.2020.9129144].
File in questo prodotto:
Non ci sono file associati a questo prodotto.

I documenti in IRIS sono protetti da copyright e tutti i diritti sono riservati, salvo diversa indicazione.

Utilizza questo identificativo per citare o creare un link a questo documento: https://hdl.handle.net/11588/848614
Citazioni
  • ???jsp.display-item.citation.pmc??? ND
  • Scopus 5
  • ???jsp.display-item.citation.isi??? ND
social impact