A Side Journey To Titan - LIRMM - Laboratoire d’Informatique, de Robotique et de Microélectronique de Montpellier Access content directly
Conference Papers Year : 2021

A Side Journey To Titan

Abstract

The Google Titan Security Key is a FIDO U2F hardware device proposed by Google (available since July 2018) as a two-factor authentication token to sign in to applications such as your Google account. In this paper, we present a sidechannel attack that targets the Google Titan Security Key 's secure element (the NXP A700x chip) by the observation of its local electromagnetic radiations during ECDSA signatures. This work shows that an attacker can clone a legitimate Google Titan Security Key. As a side observation, we identified a novel correlation between the elliptic curve group order and the lattice-based attack success rate.
Fichier principal
Vignette du fichier
titan_paper.pdf (5.23 Mo) Télécharger le fichier
Origin Files produced by the author(s)

Dates and versions

lirmm-03322561 , version 1 (19-08-2021)

Identifiers

  • HAL Id : lirmm-03322561 , version 1

Cite

Thomas Roche, Victor Lomné, Camille Mutschler, Laurent Imbert. A Side Journey To Titan: Revealing and Breaking NXP's P5x ECDSA Implementation on the Way. USENIX Security 2021 - 30th USENIX Security Symposium, Aug 2021, Virtual, Canada. pp.231-248. ⟨lirmm-03322561⟩
128 View
372 Download

Share

Gmail Mastodon Facebook X LinkedIn More