Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange

Yue Qin; Ruoyu Ding; Chi Cheng; Nina Bindel; Yanbin Pan; Jintai Ding

doi:10.1007/978-3-031-17140-6_33

Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange

Yue Qin, Ruoyu Ding, Chi Cheng^*, Nina Bindel, Yanbin Pan, Jintai Ding

^*Corresponding author for this work

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

2 Citations (Scopus)

Abstract

Key exchange protocols from the learning with errors (LWE) problem share many similarities with the Diffie-Hellman-Merkle (DHM) protocol, which plays a central role in securing our Internet. Therefore, there has been a long time effort in designing authenticated key exchange directly from LWE to mirror the advantages of DHM-based protocols. In this paper, we revisit signal leakage attacks and show that the severity of these attacks against LWE-based (authenticated) key exchange is still underestimated. In particular, by converting the problem of launching a signal leakage attack into a coding problem, we can significantly reduce the needed number of queries to reveal the secret key. Specifically, for DXL-KE we reduce the queries from 1,266 to only 29, while for DBS-KE, we need only 748 queries, a great improvement over the previous 1,074,434 queries. Moreover, our new view of signals as binary codes enables recognizing vulnerable schemes more easily. As such we completely recover the secret key of a password-based authenticated key exchange scheme by Dabra et al. with only 757 queries and partially reveal the secret used in a two-factor authentication by Wang et al. with only one query. The experimental evaluation supports our theoretical analysis and demonstrates the efficiency and effectiveness of our attacks. Our results caution against underestimating the power of signal leakage attacks as they are applicable even in settings with a very restricted number of interactions between adversary and victim.

Original language	English
Title of host publication	Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings
Editors	Vijayalakshmi Atluri, Roberto Di Pietro, Christian D. Jensen, Weizhi Meng
Publisher	Springer Science and Business Media Deutschland GmbH
Pages	677-697
Number of pages	21
ISBN (Print)	9783031171390
DOIs	https://doi.org/10.1007/978-3-031-17140-6_33
Publication status	Published - 2022
Externally published	Yes
Event	27th European Symposium on Research in Computer Security, ESORICS 2022 - Virtual, Online Duration: 26 Sept 2022 → 30 Sept 2022

Publication series

Name	Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)
Volume	13554 LNCS
ISSN (Print)	0302-9743
ISSN (Electronic)	1611-3349

Conference

Conference	27th European Symposium on Research in Computer Security, ESORICS 2022
City	Virtual, Online
Period	26/09/22 → 30/09/22

Keywords

Key exchange
Learning with errors
Post-quantum cryptography
Signal leakage attack

Access to Document

10.1007/978-3-031-17140-6_33

Cite this

Qin, Y., Ding, R., Cheng, C., Bindel, N., Pan, Y., & Ding, J. (2022). Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange. In V. Atluri, R. Di Pietro, C. D. Jensen, & W. Meng (Eds.), Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings (pp. 677-697). (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13554 LNCS). Springer Science and Business Media Deutschland GmbH. https://doi.org/10.1007/978-3-031-17140-6_33

Qin, Yue ; Ding, Ruoyu ; Cheng, Chi et al. / Light the Signal : Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange. Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings. editor / Vijayalakshmi Atluri ; Roberto Di Pietro ; Christian D. Jensen ; Weizhi Meng. Springer Science and Business Media Deutschland GmbH, 2022. pp. 677-697 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)).

@inproceedings{aa8cd88bd33b4e25af8897dee9324e6b,

title = "Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange",

abstract = "Key exchange protocols from the learning with errors (LWE) problem share many similarities with the Diffie-Hellman-Merkle (DHM) protocol, which plays a central role in securing our Internet. Therefore, there has been a long time effort in designing authenticated key exchange directly from LWE to mirror the advantages of DHM-based protocols. In this paper, we revisit signal leakage attacks and show that the severity of these attacks against LWE-based (authenticated) key exchange is still underestimated. In particular, by converting the problem of launching a signal leakage attack into a coding problem, we can significantly reduce the needed number of queries to reveal the secret key. Specifically, for DXL-KE we reduce the queries from 1,266 to only 29, while for DBS-KE, we need only 748 queries, a great improvement over the previous 1,074,434 queries. Moreover, our new view of signals as binary codes enables recognizing vulnerable schemes more easily. As such we completely recover the secret key of a password-based authenticated key exchange scheme by Dabra et al. with only 757 queries and partially reveal the secret used in a two-factor authentication by Wang et al. with only one query. The experimental evaluation supports our theoretical analysis and demonstrates the efficiency and effectiveness of our attacks. Our results caution against underestimating the power of signal leakage attacks as they are applicable even in settings with a very restricted number of interactions between adversary and victim.",

keywords = "Key exchange, Learning with errors, Post-quantum cryptography, Signal leakage attack",

author = "Yue Qin and Ruoyu Ding and Chi Cheng and Nina Bindel and Yanbin Pan and Jintai Ding",

note = "Publisher Copyright: {\textcopyright} 2022, The Author(s), under exclusive license to Springer Nature Switzerland AG.; 27th European Symposium on Research in Computer Security, ESORICS 2022 ; Conference date: 26-09-2022 Through 30-09-2022",

year = "2022",

doi = "10.1007/978-3-031-17140-6_33",

language = "English",

isbn = "9783031171390",

series = "Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)",

publisher = "Springer Science and Business Media Deutschland GmbH",

pages = "677--697",

editor = "Vijayalakshmi Atluri and {Di Pietro}, Roberto and Jensen, {Christian D.} and Weizhi Meng",

booktitle = "Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings",

}

Qin, Y, Ding, R, Cheng, C, Bindel, N, Pan, Y & Ding, J 2022, Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange. in V Atluri, R Di Pietro, CD Jensen & W Meng (eds), Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings. Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics), vol. 13554 LNCS, Springer Science and Business Media Deutschland GmbH, pp. 677-697, 27th European Symposium on Research in Computer Security, ESORICS 2022, Virtual, Online, 26/09/22. https://doi.org/10.1007/978-3-031-17140-6_33

Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange. / Qin, Yue; Ding, Ruoyu; Cheng, Chi et al.
Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings. ed. / Vijayalakshmi Atluri; Roberto Di Pietro; Christian D. Jensen; Weizhi Meng. Springer Science and Business Media Deutschland GmbH, 2022. p. 677-697 (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics); Vol. 13554 LNCS).

Research output: Chapter in Book or Report/Conference proceeding › Conference Proceeding › peer-review

TY - GEN

T1 - Light the Signal

T2 - 27th European Symposium on Research in Computer Security, ESORICS 2022

AU - Qin, Yue

AU - Ding, Ruoyu

AU - Cheng, Chi

AU - Bindel, Nina

AU - Pan, Yanbin

AU - Ding, Jintai

PY - 2022

Y1 - 2022

N2 - Key exchange protocols from the learning with errors (LWE) problem share many similarities with the Diffie-Hellman-Merkle (DHM) protocol, which plays a central role in securing our Internet. Therefore, there has been a long time effort in designing authenticated key exchange directly from LWE to mirror the advantages of DHM-based protocols. In this paper, we revisit signal leakage attacks and show that the severity of these attacks against LWE-based (authenticated) key exchange is still underestimated. In particular, by converting the problem of launching a signal leakage attack into a coding problem, we can significantly reduce the needed number of queries to reveal the secret key. Specifically, for DXL-KE we reduce the queries from 1,266 to only 29, while for DBS-KE, we need only 748 queries, a great improvement over the previous 1,074,434 queries. Moreover, our new view of signals as binary codes enables recognizing vulnerable schemes more easily. As such we completely recover the secret key of a password-based authenticated key exchange scheme by Dabra et al. with only 757 queries and partially reveal the secret used in a two-factor authentication by Wang et al. with only one query. The experimental evaluation supports our theoretical analysis and demonstrates the efficiency and effectiveness of our attacks. Our results caution against underestimating the power of signal leakage attacks as they are applicable even in settings with a very restricted number of interactions between adversary and victim.

AB - Key exchange protocols from the learning with errors (LWE) problem share many similarities with the Diffie-Hellman-Merkle (DHM) protocol, which plays a central role in securing our Internet. Therefore, there has been a long time effort in designing authenticated key exchange directly from LWE to mirror the advantages of DHM-based protocols. In this paper, we revisit signal leakage attacks and show that the severity of these attacks against LWE-based (authenticated) key exchange is still underestimated. In particular, by converting the problem of launching a signal leakage attack into a coding problem, we can significantly reduce the needed number of queries to reveal the secret key. Specifically, for DXL-KE we reduce the queries from 1,266 to only 29, while for DBS-KE, we need only 748 queries, a great improvement over the previous 1,074,434 queries. Moreover, our new view of signals as binary codes enables recognizing vulnerable schemes more easily. As such we completely recover the secret key of a password-based authenticated key exchange scheme by Dabra et al. with only 757 queries and partially reveal the secret used in a two-factor authentication by Wang et al. with only one query. The experimental evaluation supports our theoretical analysis and demonstrates the efficiency and effectiveness of our attacks. Our results caution against underestimating the power of signal leakage attacks as they are applicable even in settings with a very restricted number of interactions between adversary and victim.

KW - Key exchange

KW - Learning with errors

KW - Post-quantum cryptography

KW - Signal leakage attack

UR - http://www.scopus.com/inward/record.url?scp=85140458503&partnerID=8YFLogxK

U2 - 10.1007/978-3-031-17140-6_33

DO - 10.1007/978-3-031-17140-6_33

M3 - Conference Proceeding

AN - SCOPUS:85140458503

SN - 9783031171390

T3 - Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)

SP - 677

EP - 697

BT - Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings

A2 - Atluri, Vijayalakshmi

A2 - Di Pietro, Roberto

A2 - Jensen, Christian D.

A2 - Meng, Weizhi

PB - Springer Science and Business Media Deutschland GmbH

Y2 - 26 September 2022 through 30 September 2022

ER -

Qin Y, Ding R, Cheng C, Bindel N, Pan Y, Ding J. Light the Signal: Optimization of Signal Leakage Attacks Against LWE-Based Key Exchange. In Atluri V, Di Pietro R, Jensen CD, Meng W, editors, Computer Security – ESORICS 2022 - 27th European Symposium on Research in Computer Security, Proceedings. Springer Science and Business Media Deutschland GmbH. 2022. p. 677-697. (Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics)). doi: 10.1007/978-3-031-17140-6_33