Cryptology ePrint Archive: Report 2018/1163

More on sliding right

Joachim Breitner

Abstract: This text can be thought of an “external appendix” to the paper Sliding right into disaster: Left-to-right sliding windows leak by Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon Groot Bruinderink, Nadia Heninger, Tanja Lange, Christine van Vredendaal and Yuval Yarom [1, 2], and goes into the details of an alternative way to find the knowable bits of the secret exponent, which is complete and can (in rare corner cases) find more bits than the rewrite rules in Section 3.1 of [1], an algorithm to calculate the collision entropy H that is used in Theorem 3 of [1], and a proof of Theorem 3.

Category / Keywords: left-to-right sliding windows

Date: received 28 Nov 2018, last revised 28 Nov 2018

Contact author: mail at joachim-breitner de

Available format(s): PDF | BibTeX Citation

Version: 20181203:030303 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]