当前位置:首页 > 报告详情

利用故障注入绕过 PQC 签名验证:Dilithium、XMSS、SPHINCS+.pdf

上传人: 竿*** 编号:981895 2025-11-29 134页 2.27MB

1、#BHUSA BlackHatEventsBypassing PQC Signature Verification with Bypassing PQC Signature Verification with Fault Injection:Dilithium,XMSS,SPHINCS+Fault Injection:Dilithium,XMSS,SPHINCS+Fikret Garipay#BHUSA BlackHatEventsHello!Security Engineer at Keysight Device Security Testing Passionate about softw

2、are exploitation and hardware attacks Twitter:erd0spyFikret Garipay2#BHUSA BlackHatEventsAgenda Introduction to Post Quantum Cryptography Target Implementation Voltage Fault Injection in Practice Fault Injection Attacks on Dilithium Verification Fault Injection Attacks on WOTS+in XMSS and SPHINCS+Fa

3、ult Injection on Fault Resistance XMSS Library Key Takeaways and Conclusions3#BHUSA BlackHatEventsIntroduction to Post Quantum Cryptography4#BHUSA BlackHatEventsPost-Quantum Crypto Is Getting Real Quantum computers arent breaking crypto yet.The shift is underway with standards,vendors,firmware PQC i

4、s set to replace RSA,ECC in secure boot,firmware signing,and more.That makes PQC fresh attack surface.5#BHUSA BlackHatEventsPQC Signatures Are Becoming Global StandardsAlgorithmSignature Scheme TypeCNSA 2.0(NSA)StandardDilithiumLattice-basedRequired for all digital signatures(general use)NIST FIPS 2

5、04(ML-DSA)LMSStateful hash-basedApproved for firmware/software signingISO/IEC 14888-4:2024XMSSStateful hash-basedApproved for firmware/software signingISO/IEC 14888-4:2024SPHINCS+Stateless hash-basedNot approved for any use in NSSNIST FIPS 205(SLH-DSA)6#BHUSA BlackHatEventsPQC Signatures in Industry

6、 Multiple vendors now offer PQC solutions for Firmware Update,Secure Boot,Signature VerificationSource:Fabrication begins for production OpenTitan silicon7#BHUSA BlackHatEventsPQC Signatures in Industry Multiple vendors now offer PQC solutions for Firmware Update,Secure Boot,Signature Verification O

word格式文档无特别注明外均可编辑修改,预览文件经过压缩,下载原文更清晰!
三个皮匠报告文库所有资源均是客户上传分享,仅供网友学习交流,未经上传用户书面授权,请勿作商用。
根据报告的内容,全文主要探讨了后量子密码学(PQC)签名验证的漏洞利用。以下是关键点: 1. **PQC签名验证的漏洞**:研究人员通过电压故障注入攻击,成功绕过了Dilithium、XMSS和SPHINCS+等PQC签名验证方案。 2. **攻击方法**:攻击者通过在验证过程中注入故障,使签名验证逻辑失效,从而接受攻击者生成的签名。 3. **攻击目标**:攻击主要针对PQC签名验证过程中的初始化、挑战生成、移位或减法操作。 4. **攻击效果**:攻击可能导致设备重置、停止工作或死亡,并可能改变软件决策或导致计算故障。 5. **攻击实例**:研究人员在OpenTitan芯片和Caliptra 2.0软件中发现了PQC签名验证的漏洞。 6. **防御建议**:强调PQC实现的安全性,指出“量子安全”代码并非免疫于故障注入攻击,防御措施需要不断更新。
**PQC签名验证漏洞?** **量子安全也能被破解?** **故障注入攻击揭秘**
客服
商务合作
小程序
服务号
折叠