A Side Journey To Titan - Archive ouverte HAL Access content directly
Conference Papers Year :

A Side Journey To Titan

(1) , (1) , (1, 2) , (2)
1
2

Abstract

The Google Titan Security Key is a FIDO U2F hardware device proposed by Google (available since July 2018) as a two-factor authentication token to sign in to applications such as your Google account. In this paper, we present a sidechannel attack that targets the Google Titan Security Key 's secure element (the NXP A700x chip) by the observation of its local electromagnetic radiations during ECDSA signatures. This work shows that an attacker can clone a legitimate Google Titan Security Key. As a side observation, we identified a novel correlation between the elliptic curve group order and the lattice-based attack success rate.
Fichier principal
Vignette du fichier
titan_paper.pdf (5.23 Mo) Télécharger le fichier
Origin : Files produced by the author(s)

Dates and versions

lirmm-03322561 , version 1 (19-08-2021)

Identifiers

  • HAL Id : lirmm-03322561 , version 1

Cite

Thomas Roche, Victor Lomné, Camille Mutschler, Laurent Imbert. A Side Journey To Titan: Revealing and Breaking NXP's P5x ECDSA Implementation on the Way. USENIX Security 2021 - 30th USENIX Security Symposium, Aug 2021, Virtual, Canada. pp.231-248. ⟨lirmm-03322561⟩
80 View
268 Download

Share

Gmail Facebook Twitter LinkedIn More