A Side Journey To Titan - LIRMM - Laboratoire d’Informatique, de Robotique et de Microélectronique de Montpellier
Communication Dans Un Congrès Année : 2021

A Side Journey To Titan

Résumé

The Google Titan Security Key is a FIDO U2F hardware device proposed by Google (available since July 2018) as a two-factor authentication token to sign in to applications such as your Google account. In this paper, we present a sidechannel attack that targets the Google Titan Security Key 's secure element (the NXP A700x chip) by the observation of its local electromagnetic radiations during ECDSA signatures. This work shows that an attacker can clone a legitimate Google Titan Security Key. As a side observation, we identified a novel correlation between the elliptic curve group order and the lattice-based attack success rate.
Fichier principal
Vignette du fichier
titan_paper.pdf (5.23 Mo) Télécharger le fichier
Origine Fichiers produits par l'(les) auteur(s)

Dates et versions

lirmm-03322561 , version 1 (19-08-2021)

Identifiants

  • HAL Id : lirmm-03322561 , version 1

Citer

Thomas Roche, Victor Lomné, Camille Mutschler, Laurent Imbert. A Side Journey To Titan. USENIX Security 2021 - 30th USENIX Security Symposium, Aug 2021, Virtual, Canada. pp.231-248. ⟨lirmm-03322561⟩
162 Consultations
425 Téléchargements

Partager

More