This repository contains auxiliary material for the paper "Patient Zero & Patient Six: Zero-Value and Correlation Attacks on CSIDH and SIKE" which was accepted to SAC 2022.
Authors:
- Fabio Campos
<campos@sopmac.de>
- Michael Meyer
<michael@random-oracles.org>
- Krijn Reijnders
<krijn@cs.ru.nl>
- Marc Stöttinger
<marc.stoettinger@hs-rm.de>
This archive contains the following:
PQCrypto-SIDH
contains the simulation and the modified SIKE implementation from here. Furthermore, it uses an adapted version of the backtracking code from the Faulty Isogenies repository.high-ctidh-20210523
contains the simulation scriptsimulation_CTIDH.py
and a slightly modified CTIDH implementation from here.sqale-csidh-velusqrt-main
contains the simulation scriptsimulation_SQALE.py
and a slightly modified SQALE implementation from here.
cd PQCrypto-SIDH
- build all SIKE versions:
make attack
- start simulation: e.g.
./sike434/attack_SIKE
for attacking SIKEp434
cd high-ctidh-20210523
- build CSIDH-511:
make attackHW511
for collecting HW andmake attackKG511
for KeyGen - start simulation:
python simulation_CTIDH.py
cd sqale-csidh-velusqrt-main
- build SQALE-2048:
make attack BITS=2048 STYLE=df
for collecting HW andmake attack BITS=2048 STYLE=wd2
for KeyGen. - start simulation:
python simulation_SQALE.py
. - build SQALE-2048 with countermeasures: set in file
simulation_SQALE.py
the global valueWITH_CM = True
,make cm BITS=2048 STYLE=df
for collecting HW with countermeasures, and restartpython simulation_SQALE.py
.
Code in this repository that does not indicate otherwise is placed in the public domain.
For the third party code see their licenses: