Paper 2016/1022

Randomized Mixed-Radix Scalar Multiplication

Eleonora Guerrini, Laurent Imbert, and Théo Winterhalter

Abstract

A covering system of congruences can be defined as a set of congruence relations of the form: $\{r_1 \pmod{m_1}, r_2 \pmod{m_2}, \dots, r_t \pmod{m_t}\}$ for $m_1, \dots, m_t \in \mathbb{N}$ satisfying the property that for every integer $k$ in $\mathbb{Z}$, there exists at least an index $i \in \{1, \dots, t\}$ such that $k \equiv r_i \pmod{m_i}$. First, we show that most existing scalar multiplication algorithms can be formulated in terms of covering systems of congruences. Then, using a special form of covering systems called exact \mbox{$n$-covers}, we present a novel uniformly randomized scalar multiplication algorithm with built-in protections against various types of side-channel attacks. This algorithm can be an alternative to Coron's scalar blinding technique for elliptic curves, in particular when the choice of a particular finite field tailored for speed compels to use a large random factor.

Metadata
Available format(s)
PDF
Publication info
Preprint.
Keywords
Elliptic curve arithmeticSide-channel attacks
Contact author(s)
Laurent Imbert @ lirmm fr
History
2017-10-06: last of 3 revisions
2016-11-01: received
See all versions
Short URL
https://ia.cr/2016/1022
License
Creative Commons Attribution
CC BY

BibTeX 

@misc{cryptoeprint:2016/1022,
      author = {Eleonora Guerrini and Laurent Imbert and Théo Winterhalter},
      title = {Randomized Mixed-Radix Scalar Multiplication},
      howpublished = {Cryptology {ePrint} Archive, Paper 2016/1022},
      year = {2016},
      url = {https://eprint.iacr.org/2016/1022}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.