Comments on: Fault injection: Ataque a RSA-CRT http://www.limited-entropy.com/fault-injection-ataque-a-rsa-crt Not so random thoughts on security featured by Eloi Sanfèlix Fri, 27 Jan 2012 03:06:42 +0000 hourly 1 http://wordpress.org/?v=3.3 By: Crypto04 challenge write-up from Campus Party Europe | It should work... http://www.limited-entropy.com/fault-injection-ataque-a-rsa-crt/comment-page-1#comment-13890 Crypto04 challenge write-up from Campus Party Europe | It should work... Mon, 19 Apr 2010 22:20:07 +0000 http://www.limited-entropy.com/?p=75#comment-13890 [...] From those hints we get that it is actually using the RSA-CRT algorithm, which is a RSA variation to reduce computational costs using the Chinese Remainder Theorem. The point is that instead of using the 2048 bit modular exponentation it splits them into two modular operations, aproximately half the size, make the calculations and then recombine the results as needed to obtain the regular RSA result. But here’s the trick, if we inject a fault in one of these two exponentiations, via power glitching for example, there’s a way to recover the private RSA key. The use of RSA-CRT is common in embedded devices such as smart cards, mainly because of the hardware limitations. You can read a post about it at Eloi’s blog, it’s in spanish though: RSA-CRT Fault Injection. [...] [...] From those hints we get that it is actually using the RSA-CRT algorithm, which is a RSA variation to reduce computational costs using the Chinese Remainder Theorem. The point is that instead of using the 2048 bit modular exponentation it splits them into two modular operations, aproximately half the size, make the calculations and then recombine the results as needed to obtain the regular RSA result. But here’s the trick, if we inject a fault in one of these two exponentiations, via power glitching for example, there’s a way to recover the private RSA key. The use of RSA-CRT is common in embedded devices such as smart cards, mainly because of the hardware limitations. You can read a post about it at Eloi’s blog, it’s in spanish though: RSA-CRT Fault Injection. [...]

]]> By: vierito5 http://www.limited-entropy.com/fault-injection-ataque-a-rsa-crt/comment-page-1#comment-1889 vierito5 Mon, 12 May 2008 02:28:01 +0000 http://www.limited-entropy.com/?p=75#comment-1889 jajjajaja me has hecho darle varias vueltas al post :) muy interesante !! jajjajaja me has hecho darle varias vueltas al post :)

muy interesante !!

]]>