Cryptology ePrint Archive: Report 2021/718

Generic Side-Channel Assisted Chosen-Ciphertext Attacks on Streamlined NTRU Prime

Prasanna Ravi and Martianus Frederic Ezerman and Shivam Bhasin and Anupam Chattopadhyay and Sujoy Sinha Roy

Abstract: In this work, we propose novel side-channel assisted chosen-ciphertext attacks applicable to IND-CCA secure NTRU-based PKE/KEMs. In particular, we propose two types of chosen-ciphertext attacks on Streamlined NTRU Prime which instantiate respectively, a plaintext-checking oracle and decryption-failure oracle to perform full key recovery. We propose efficient strategies to construct chosen ciphertexts to instantiate the aforementioned oracles to perform full key recovery. We perform experimental validation of our attacks on the optimized implementation of Streamlined NTRU Prime KEM obtained from the pqm4 public library, a testing and benchmarking framework for post quantum cryptographic schemes on the ARM Cortex-M4 microcontroller. We positively confirm that both the PC and DF oracle- based attacks result in full key recovery in a few thousand traces with 100% success rate. Masking serves as a concrete countermeasure against our proposed attacks and thus our work stresses on the need for concrete masking countermeasures for the NTRU-based PKE/KEMs to protect against similar chosen-ciphertext based side-channel attacks.

Category / Keywords: public-key cryptography / Lattice Based Cryptography, Streamlined NTRU Prime, Chosen-Ciphertext Attacks, Side-Channel Attacks, Plaintext Checking Oracle, Decryption Failure Oracle, NIST PQC Standardization process

Date: received 29 May 2021, last revised 31 May 2021

Contact author: PRASANNA RAVI at ntu edu sg

Available format(s): PDF | BibTeX Citation

Version: 20210531:070131 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]