Abstract
Sflash is a multivariate signature scheme, and a candidate for standardisation, currently evaluated by the European call for primitives Nessie. The present paper is about the design of a highly optimized implementation of Sflash on a low-cost 8-bit smart card (without coprocessor). On top of this, we will also present a method to protect the implementation protection against power attacks such as Differential Power Analysis.
Our fastest implementation of Sflash takes 59 ms on a 8051 based CPU at 10MHz. Though the security of Sflash is not as well understood as for example for RSA, Sflash is apparently the fastest signature scheme known. It is suitable to implement PKI on low-cost smart card, token or palm devices. It allows also to propose secure low-cost payment/banking solutions.
The work described in this paper has been supported by the French Ministry of Research under RNRT Project “Turbo-signatures”..
Chapter PDF
Similar content being viewed by others
Keywords
References
Nicolas Courtois, La sécurité des primitives cryptographiques basées sur les problèmes algébriques multivariables MQ, IP, MinRank, et HFE, PhD Thesis, Paris 6 University, 2001, in French. Available at http://www.minrank.org/phd.pdf 268
Nicolas Courtois, Magnus Daum, Patrick Felke, On the Security of HFE, HFEvand Quartz, PKC’2003, to appear in LNCS, Springer. 268
Magnus Daum, Patrick Felke, Some new aspects concerning the Analysis of HFE type Cryptosystems, Presented at Yet Another Conference on Cryptography (YACC’02), June 3–7, 2002, Porquerolles Island, France. 268
Magnus Daum, Das Kryptosystem HFE und quadratische Gleichungssysteme über endlichen Körpern, Diplomarbeit, Universität Dortmund, 2001. Available at http://emdaum@itsc.ruhr-uni-bochum.de
Jean-Charles Faugère, Report on a successful attack of HFE Challenge 1 with Gröbner bases algorithm F5/2, announcement that appeared in sci.crypt newsgroup on the internet on April 19th 2002.
Henri Gilbert, Marine Minier, Cryptanalysis of Sflash, EUROCRYPT’2002, LNCS 2332, Springer, pp. 288–298. 268
Michael Garey, David Johnson, Computers and Intractability, a guide to the theory of NP-completeness, Freeman, p. 251.
Willi Geiselmann, Rainer Steinwandt, Thomas Beth, Revealing 441 Key Bits of SFLASH-v2, Third NESSIE Workshop, November 6–7, 2002, Munich, Germany. 270
A page about the Gray code,http://www.nist.gov/dads/HTML/graycode.html
Neal Koblitz,Algebraic aspects of cryptography, Springer, ACM3, 1998, Chapter 4: “Hidden Monomial Cryptosystems”, pp. 80–102. 267
Paul Kocher, Joshua Jaffe, Benjamin Jun, Introduction to Differential Power Analysis and Related Attacks. Technical Report, Cryptography Research Inc., 1998. Available at http://www.cryptography.com/dpa/technic/index.html 268, 274
Tsutomu Matsumoto, Hideki Imai, Public Quadratic Polynomial-tuples for efficient signature-verification and message-encryption, EUROCRYPT’88, LNCS 330, Springer 1998, pp. 419–453. 267
Jacques Patarin, Cryptanalysis of the Matsumoto and Imai Public Key Scheme of Eurocrypt’88, CRYPTO’95, LNCS 963, Springer, pp. 248–261. 267
Jacques Patarin, Nicolas Courtois, Louis Goubin, C*-+ and HM-Variations around two schemes of T. Matsumoto and H. Imai, ASIACRYPT’98, LNCS 1514, Springer, pp. 35–49. 267, 268
Jacques Patarin, Louis Goubin, Nicolas Courtois, Quartz, 128-bit long digital signatures, Cryptographers’ Track RSA Conference 2001, San Francisco 8–12 April 2001, LNCS 2020, Springer, pp. 282–297. Note: The Quartz signature scheme has been updated since, see [16].
Jacques Patarin, Louis Goubin, Nicolas Courtois, Quartz, 128-bit long digital signatures, An updated version of Quartz specification. available at http://www.cryptosystem.net/quartz/or http://www.cryptonessie.org 278
Jacques Patarin, Louis Goubin, Nicolas Courtois, Flash, a fast multivariate signature algorithm, Cryptographers’ Track RSA Conference 2001, San Francisco 8–12 April 2001, LNCS 2020, Springer, pp. 298–307. 267, 268, 269
Adi Shamir, Efficient signature schemes based on birational permutations, CRYPTO’93, LNCS 773, Springer, pp. 1–12. 268
Author information
Authors and Affiliations
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2003 Springer-Verlag Berlin Heidelberg
About this paper
Cite this paper
Akkar, ML., Courtois, N.T., Duteuil, R., Goubin, L. (2003). A Fast and Secure Implementation of Sflash. In: Desmedt, Y.G. (eds) Public Key Cryptography — PKC 2003. PKC 2003. Lecture Notes in Computer Science, vol 2567. Springer, Berlin, Heidelberg. https://doi.org/10.1007/3-540-36288-6_20
Download citation
DOI: https://doi.org/10.1007/3-540-36288-6_20
Published:
Publisher Name: Springer, Berlin, Heidelberg
Print ISBN: 978-3-540-00324-3
Online ISBN: 978-3-540-36288-3
eBook Packages: Springer Book Archive