Abstract
In the present paper we propose an improvement of Bleichenbacher’s Oracle Padding Attack that makes breaking more restrictive implementations of the PKCS#1 v1.5 standard feasible both theoretically and in practice. It is proven that the current attack requires at most a quarter of the total number of queries used by the original version. Using the proposed algorithm, we conducted experiments on various restrictive oracles for illustrating the theoretical improvement, and attacked a real device that implements the PKCS #11 standard in a reasonable amount of time. Note that the use of the original algorithm would have led to only a partial decryption of the ciphertext in a larger time interval.
Access this chapter
Tax calculation will be finalised at checkout
Purchases are for personal use only
Notes
- 1.
Of course, until quantum computers will become truly practical for performing quantum cryptanalysis.
References
Bardou, R., Focardi, R., Kawamoto, Y., Simionato, L., Steel, G., Tsay, J.-K.: Efficient padding oracle attacks on cryptographic hardware. In: Safavi-Naini, R., Canetti, R. (eds.) CRYPTO 2012. LNCS, vol. 7417, pp. 608–625. Springer, Heidelberg (2012). https://doi.org/10.1007/978-3-642-32009-5_36
Bleichenbacher, D.: Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1. In: Krawczyk, H. (ed.) CRYPTO 1998. LNCS, vol. 1462, pp. 1–12. Springer, Heidelberg (1998). https://doi.org/10.1007/BFb0055716
Böck, H., Somorovsky, J., Young, C.: Return of Bleichenbacher’s oracle threat (ROBOT). In: 27th USENIX Security Symposium (USENIX Security 18), pp. 817–849. USENIX Association (2018), https://www.usenix.org/conference/usenixsecurity18/presentation/bock
Katz, J., Lindell, Y.: Introduction to Modern Cryptography, 2nd (edn.) (2014)
Kelesidis, E.-A.: Optimization of Bleichenbacher’s attack (2021). https://github.com/EvaKelesidis/Bleichenbacher-optimisation
Meyer, C., Somorovsky, J., Weiss, E., Schwenk, J., Schinzel, S., Tews, E.: Revisiting SSL/TLS implementations: new Bleichenbacher side channels and attacks. In: 23rd USENIX Security Symposium (USENIX Security 14), pp. 733–748. USENIX Association (2014). https://www.usenix.org/conference/usenixsecurity14/technical-sessions/presentation/meyer
Moriarty, K., Kaliski, B., Jonsson, J., Rusch, A.: PKCS #1: RSA Cryptography Specifications Version 2.2. RFC 8017 (2016). https://rfc-editor.org/rfc/rfc8017.txt
Oasis Open: Public Key Cryptography Standard #11. https://docs.oasis-open.org/pkcs11/pkcs11-base/v2.40/os/pkcs11-base-v2.40-os.html ()
Rivest, R.L., Shamir, A., Adleman, L.: A method for obtaining digital signatures and public-key cryptosystems. Commun. ACM 21(2), 120–126 (1978)
Ronen, E., Gillham, R., Genkin, D., Shamir, A., Wong, D., Yarom, Y.: The 9 lives of bleichenbacher’s CAT: new cache attacks on TLS implementations. In: SP 2019, pp. 435–452. IEEE (2019)
Acknowledgments
The author would like to thank Paul Cotan, Cristi Hristea, Diana Maimut and George Teseleanu for their helpful comments.
Author information
Authors and Affiliations
Corresponding author
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2022 Springer Nature Switzerland AG
About this paper
Cite this paper
Kelesidis, EA. (2022). An Optimization of Bleichenbacher’s Oracle Padding Attack. In: Ryan, P.Y., Toma, C. (eds) Innovative Security Solutions for Information Technology and Communications. SecITC 2021. Lecture Notes in Computer Science, vol 13195. Springer, Cham. https://doi.org/10.1007/978-3-031-17510-7_10
Download citation
DOI: https://doi.org/10.1007/978-3-031-17510-7_10
Published:
Publisher Name: Springer, Cham
Print ISBN: 978-3-031-17509-1
Online ISBN: 978-3-031-17510-7
eBook Packages: Computer ScienceComputer Science (R0)