APPARATUS AND METHOD FOR PERFORMING OPERATION BEING SECURE AGAINST SIDE CHANNEL ATTACK

US 20190327073A1
Filed: 08/13/2018
Published: 10/24/2019
Est. Priority Date: 04/19/2018
Status: Active Grant

First Claim

Patent Images

1. An apparatus for performing an operation, comprising:

a first extractor configured to extract one or more first parameter candidate values corresponding to a seed value from a first parameter candidate value set;

a first outputter configured to output a first output values using the extracted first parameter candidate values;

a second extractor configured to extract one or more second parameter candidate values corresponding to the seed value from a second parameter candidate value set; and

a second outputter configured to output a second output value using the extracted second parameter candidate values, wherein the second output value is capable of being generated using the first output value.

View all claims

1 Assignment

Timeline View

Assignment View

0 Petitions

Accused Products

Abstract

An apparatus and method for performing an operation which are secure against side-channel attack are provided. According to one embodiment of the present disclosure, the apparatus includes a first extractor configured to extract one or more first parameter candidate values corresponding to a seed value from a first parameter candidate value set, a first outputter configured to output a first output values using the extracted first parameter candidate values, a second extractor configured to extract one or more second parameter candidate values corresponding to the seed value from a second parameter candidate value set, and a second outputter configured to output a second output value using the extracted second parameter candidate values wherein the second output value is capable of being generated using the first output value.

Citations

14 Claims

1. An apparatus for performing an operation, comprising:
- a first extractor configured to extract one or more first parameter candidate values corresponding to a seed value from a first parameter candidate value set;
  
  a first outputter configured to output a first output values using the extracted first parameter candidate values;
  
  a second extractor configured to extract one or more second parameter candidate values corresponding to the seed value from a second parameter candidate value set; and
  
  a second outputter configured to output a second output value using the extracted second parameter candidate values, wherein the second output value is capable of being generated using the first output value.
- View Dependent Claims (2, 3, 4, 5, 6, 7)
- - 2. The apparatus of claim 1, wherein the second output value has a value equal to a value is obtained through an operation using the first output value as an exponent or a multiplier.
  - 3. The apparatus of claim 1, wherein the second parameter candidate value set includes a plurality of second parameter candidate values equal to values obtained through an operation using each of the first parameter candidate values included in the first parameter candidate value set as an exponent or a multiplier.
  - 4. The apparatus of claim 1, wherein the extracted second parameter candidate values have values equal to values obtained through an operation using each of the extracted first parameter candidate values as an exponent or a multiplier.
  - 5. The apparatus of claim 1, wherein the seed value is formed by an arbitrary bit string, the first extractor extracts one or more first parameter candidate values corresponding to the bit string, and the second extractor extracts one or more second parameter candidate values corresponding to the bit string.
  - 6. The apparatus of claim 5, wherein the first extractor extracts the one or more first parameter candidate values on the basis of a bit value of each bit included in the bit string and a position of each bit in the bit string and the second extractor extracts the one or more second parameter candidate values on the basis of a bit value of each bit included in the bit string and the position of each bit in the bit string.
  - 7. The apparatus of claim 1, further comprising an encryptor configured to perform at least one of digital signature generation, encryption, and encryption key generation using the first output value and the second output value.

8. A method of performing an operation, comprising:
- extracting one or more first parameter candidate values corresponding to a seed value from a first parameter candidate value set;
  
  outputting a first output values using the extracted first parameter candidate values;
  
  extracting one or more second parameter candidate values corresponding to the seed value from a second parameter candidate value set; and
  
  outputting a second output value using the extracted second parameter candidate values, wherein the second output value is capable of being generated using the first output value.
- View Dependent Claims (9, 10, 11, 12, 13, 14)
- - 9. The method of claim 8, wherein the second output value has a value equal to a value obtained through an operation using the first output value as an exponent or a multiplier.
  - 10. The method of claim 8, wherein the second parameter candidate value set includes a plurality of second parameter candidate values equal to values obtained through an operation using each of the first parameter candidate values included in the first parameter candidate value set as an exponent or a multiplier.
  - 11. The method of claim 8, wherein the extracted second parameter candidate values have values equal to values obtained through an operation using each of the extracted first parameter candidate values as an exponent or a multiplier.
  - 12. The method of claim 8, wherein the seed value is formed by an arbitrary bit string, the extracting of the first parameter candidate values comprises extracting one or more first parameter candidate values corresponding to the bit string, and the extracting of the second parameter candidate values comprises extracting one or more second parameter candidate values corresponding to the bit string.
  - 13. The method of claim 12, wherein the extracting of the first parameter candidate values comprises extracting the one or more first parameter candidate values on the basis of a bit value of each bit included in the bit string and a position of each bit in the bit string and the extracting of the second parameter candidate values comprises extracting the one or more second parameter candidate values on the basis of a bit value of each bit included in the bit string and the position of each bit in the bit string.
  - 14. The method of claim 8, further comprising performing at least one of digital signature generation, encryption, and encryption key generation using the first output value and the second output value.

Specification

Resources

Litigation Campaign Assessment

Current Assignee
Samsung SDS (China) Co., Ltd. (Samsung Group)
Original Assignee
Samsung SDS (China) Co., Ltd. (Samsung Group)
Inventors
CHOI, Kyu-Young, MOON, Duk-Jae, YOON, Hyo-Jin, CHO, Ji-Hoon

Granted Patent

US 10,903,975 B2
Time in Patent Office

Days
Field of Search
US Class Current
CPC Class Codes

H04L 9/002   Countermeasures against att...

H04L 9/0819   Key transport or distributi...

H04L 9/0869   involving random numbers or...

H04L 9/3013   involving the discrete loga...

H04L 9/3066   involving algebraic varieti...

H04L 9/3252   using DSA or related signat...

APPARATUS AND METHOD FOR PERFORMING OPERATION BEING SECURE AGAINST SIDE CHANNEL ATTACK

First Claim

1 Assignment

0 Petitions

Accused Products

Abstract

Citations

14 Claims

Specification

Solutions

Use Cases

Quick Links

APPARATUS AND METHOD FOR PERFORMING OPERATION BEING SECURE AGAINST SIDE CHANNEL ATTACK

First Claim

1 Assignment

Subscription Required

Subscription Required

0 Petitions

Subscription Required

Accused Products

Subscription Required

Abstract

Citations

14 Claims

Specification

Subscription Required

Solutions

Use Cases

Quick Links