Paper 2016/002

Remote Cache-Timing Attack without Learning Phase

Ali Can Atici, Cemal Yilmaz, and Erkay Savas


Theoretically secure cryptographic algorithms can be vulnerable to attacks due to their implementation flaws, which disclose side-channel information about the secret key. Bernstein's attack is a well known cache-timing attack which uses execution time as the side-channel. The major drawback of this attack is that it needs an identical target machine to perform its learning phase where the attacker models the cache timing-behavior of the target machine. This assumption makes the attack unrealistic in many circumstances. In this work, we present an effective method to eliminate the learning phase. We propose a methodology to model the cache timing-behavior of the target machine by hypothetical modeling. To test the validity of the proposed method, we performed the Bernstein attack and showed that, in majority of the cases, the new attack is actually superior to the original attack which uses a learning phase.

Available format(s)
Publication info
Preprint. MINOR revision.
cache-timing attackside-channelAES
Contact author(s)
alicana @ sabanciuniv edu
2016-01-04: received
Short URL
Creative Commons Attribution


      author = {Ali Can Atici and Cemal Yilmaz and Erkay Savas},
      title = {Remote Cache-Timing Attack without Learning Phase},
      howpublished = {Cryptology ePrint Archive, Paper 2016/002},
      year = {2016},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.