You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -1301,13 +1301,13 @@ In practice, observing a t-value greater than a specific threshold (mainly 4.5)
##### KeyGen TVLA
We detected a leakage using TVLA in the HMAC_DRBG algorithm during ECC key generation, based on 150,000 power traces. The leakage originated from a part of the SHA512 function (w_data) that was not fully protected by masking. Same leakage is expected for HMAC operations.
We detected a leakage using TVLA in the HMAC_DRBG algorithm during ECC key generation, based on 150,000 power traces. The leakage originated from a part of the SHA512 function (w_data) that was not fully protected by masking. The same leakage is expected for HMAC operations.
*Figure 40: seed/nonce-dependent leakage detection using TVLA for ECC keygen after 150,000 traces*
The issue is very unlikely to occur in practice, even though it exists in TVLA results. Therefore, we will address it in the next release.
This leakage is very unlikely to occur in practice, even though it exists in TVLA results. Therefore, we will address it in the next release.
