Paper 2019/010

Survey for Performance & Security Problems of Passive Side-channel Attacks Countermeasures in ECC

Rodrigo Abarzúa, Claudio Valencia, and Julio López


The main objective of the Internet of Things is to interconnect everything around us to obtain information which was unavailable to us before, thus enabling us to make better decisions. This interconnection of things involves security issues for any Internet of Things key technology. Here we focus on elliptic curve cryptography (ECC) for embedded devices, which offers a high degree of security, compared to other encryption mechanisms. However, ECC also has security issues, such as Side-Channel Attacks (SCA), which are a growing threat in the implementation of cryptographic devices. This paper analyze the state-of-the-art of several proposals of algorithmic countermeasures to prevent passive SCA on ECC defined over prime fields. This work evaluates the trade-offs between security and the performance of side-channel attack countermeasures for scalar multiplication algorithms without pre-computation, i.e. for variable base point. Although a number of results are required to study the state-of-the-art of side-channel attack in elliptic curve cryptosystems, the interest of this work is to present explicit solutions that may be used for the future implementation of security mechanisms suitable for embedded devices applied to Internet of Things. In addition security problems for the countermeasures are also analyzed.

Available format(s)
Publication info
Internet of ThingsElliptic curve cryptosystemsSide-channel attackCountermeasures
Contact author(s)
rodrigo abarzua @ usach cl
2019-01-09: received
Short URL
Creative Commons Attribution


      author = {Rodrigo Abarzúa and Claudio Valencia and Julio López},
      title = {Survey for Performance & Security Problems of Passive Side-channel Attacks Countermeasures in ECC},
      howpublished = {Cryptology ePrint Archive, Paper 2019/010},
      year = {2019},
      note = {\url{}},
      url = {}
Note: In order to protect the privacy of readers, does not use cookies or embedded third party content.