Cryptology ePrint Archive: Report 2021/772

Falcon Down: Breaking Falcon Post-Quantum Signature Scheme through Side-Channel Attacks

Emre Karabulut and Aydin Aysu

Abstract: Abstract—This paper proposes the first side-channel attack on FALCON—a NIST Round-3 finalist for the post-quantum digital signature standard. We demonstrate a known-plaintext attack that uses the electromagnetic measurements of the device to extract the secret signing keys, which then can be used to forge signatures on arbitrary messages. The proposed attack targets the unique floating-point multiplications within FALCON’s Fast Fourier Transform through a novel extend-and-prune strategy that extracts the sign, mantissa, and exponent variables without false positives. The extracted floating-point values are then mapped back to the secret key’s coefficients. Our attack, notably, does not require pre-characterizing the power profile of the target device or crafting special inputs. Instead, the statistical differences on obtained traces are sufficient to successfully execute our proposed differential electromagnetic analysis. The results on an ARM-Cortex-M4 running the FALCON NIST’s reference software show that approximately 10k measurements are sufficient to extract the entire key.

Category / Keywords: side-channel attacks

Original Publication (in the same form): The Design Automation Conference (DAC) 2021

Date: received 8 Jun 2021

Contact author: ekarabu at ncsu edu

Available format(s): PDF | BibTeX Citation

Note: This paper will be published in The Design Automation Conference (DAC) 2021.

Version: 20210609:062818 (All versions of this report)

Short URL:

[ Cryptology ePrint archive ]