Abstract
Fault injection attacks pose significant threats to cryptographic systems, including SM9, which is based on bilinear pairings. Despite the widespread use of SM9, research on its vulnerability to such attacks remains limited. This letter introduces an innovative fault injection strategy targeting the SM9 signature process. By introducing a single-bit fault into the X-coordinate of the private key and analyzing the resulting changes, we construct an attack model using differential analysis. Based on this model, we derive a quadratic equation and solve it in a finite field, successfully extracting the private key information. Experimental results validate the feasibility of this approach, revealing a critical vulnerability in SM9's design. Our findings offer valuable insights into enhancing the security of SM9 and provide a foundation for developing effective defense strategies.
Full text
6,352 characters
· extracted from
preprint-html
· click to expand
An Exploration of Fault Injection Attacks on SM9 Digital Signatures Using Quadratic Equation Analysis | Authorea try { document.documentElement.classList.add('js'); } catch (e) { } var _gaq = _gaq || []; _gaq.push(['_setAccount', 'G-8VDV14Y67G']); _gaq.push(['_trackPageview']); (function() { var ga = document.createElement('script'); ga.type = 'text/javascript'; ga.async = true; ga.src = ('https:' == document.location.protocol ? 'https://ssl' : 'http://www') + '.google-analytics.com/ga.js'; var s = document.getElementsByTagName('script')[0]; s.parentNode.insertBefore(ga, s); })(); Skip to main content Preprints Collections Wiley Open Research IET Open Research Ecological Society of Japan All Collections About About Authorea FAQs Contact Us Quick Search anywhere Search for preprint articles, keywords, etc. Search Search ADVANCED SEARCH SCROLL This is a preprint and has not been peer reviewed. Data may be preliminary. 10 April 2025 V1 Latest version Share on An Exploration of Fault Injection Attacks on SM9 Digital Signatures Using Quadratic Equation Analysis Authors : Qifu Zhao , Cuiping Shao 0000-0002-2219-2328 [email protected] , Huiyun Li 0000-0003-0157-1393 , and zhimin Tang Authors Info & Affiliations https://doi.org/10.22541/au.174426717.76161875/v1 269 views 164 downloads Contents Abstract Supplementary Material Information & Authors Metrics & Citations View Options References Figures Tables Media Share Abstract Fault injection attacks pose significant threats to cryptographic systems, including SM9, which is based on bilinear pairings. Despite the widespread use of SM9, research on its vulnerability to such attacks remains limited. This letter introduces an innovative fault injection strategy targeting the SM9 signature process. By introducing a single-bit fault into the X-coordinate of the private key and analyzing the resulting changes, we construct an attack model using differential analysis. Based on this model, we derive a quadratic equation and solve it in a finite field, successfully extracting the private key information. Experimental results validate the feasibility of this approach, revealing a critical vulnerability in SM9's design. Our findings offer valuable insights into enhancing the security of SM9 and provide a foundation for developing effective defense strategies. Supplementary Material File (an exploration of fault injection attacks on sm9 digital signatures using quadratic equation analysis.docx) Download 789.34 KB Information & Authors Information Version history V1 Version 1 10 April 2025 Copyright This work is licensed under a Non Exclusive No Reuse License. Keywords cryptography failure analysis Authors Affiliations Qifu Zhao Shenzhen Institute of Advanced Technology Chinese Academy of Sciences View all articles by this author Cuiping Shao 0000-0002-2219-2328 [email protected] Shenzhen University of Advanced Technology View all articles by this author Huiyun Li 0000-0003-0157-1393 Shenzhen Institutes of Advanced Technology Chinese Academy of Sciences View all articles by this author zhimin Tang Shenzhen University of Advanced Technology View all articles by this author Metrics & Citations Metrics Article Usage 269 views 164 downloads .FvxKWukQNSOunydq8rnd { width: 100px; } Citations Download citation Qifu Zhao, Cuiping Shao, Huiyun Li, et al. An Exploration of Fault Injection Attacks on SM9 Digital Signatures Using Quadratic Equation Analysis. Authorea . 10 April 2025. DOI: https://doi.org/10.22541/au.174426717.76161875/v1 If you have the appropriate software installed, you can download article citation data to the citation manager of your choice. Simply select your manager software from the list below and click Download. For more information or tips please see 'Downloading to a citation manager' in the Help menu . Format Please select one from the list RIS (ProCite, Reference Manager) EndNote BibTex Medlars RefWorks Direct import Tips for downloading citations document.getElementById('citMgrHelpLink').addEventListener('click', function() { popupHelp(this.href); return false; }); $(".js__slcInclude").on("change", function(e){ if ($(this).val() == 'refworks') $('#direct').prop("checked", false); $('#direct').prop("disabled", ($(this).val() == 'refworks')); }); View Options View options PDF View PDF Figures Tables Media Share Share Share article link Copy Link Copied! Copying failed. Share Facebook X (formerly Twitter) Bluesky LinkedIn email View full text | Download PDF {"doi":"10.22541/au.174426717.76161875/v1","type":"Article"} Now Reading: Share Figures Tables Close figure viewer Back to article Figure title goes here Change zoom level Go to figure location within the article Download figure Toggle share panel Toggle share panel Share Toggle information panel Toggle information panel Go to previous graphic Go to next graphic Go to previous table Go to next table All figures All tables View all material View all material xrefBack.goTo xrefBack.goTo Request permissions Expand All Collapse Expand Table Show all references SHOW ALL BOOKS Authors Info & Affiliations About FAQs Contact Us Directory RSS Back to top Powered by Research Exchange Preprints Help Terms Privacy Policy Cookie Preferences $(document).ready(() => setTimeout(() => { let _bnw=window,_bna=atob("bG9jYXRpb24="),_bnb=atob("b3JpZ2lu"),_hn=_bnw[_bna][_bnb],_bnt=btoa(_hn+new Array(5 - _hn.length % 4).join(" ")); $.get("/resource/lodash?t="+_bnt); },4000)); (function(){function c(){var b=a.contentDocument||a.contentWindow.document;if(b){var d=b.createElement('script');d.innerHTML="window.__CF$cv$params={r:'a002d16509920700',t:'MTc3OTUyNjI3Nw=='};var a=document.createElement('script');a.src='/cdn-cgi/challenge-platform/scripts/jsd/main.js';document.getElementsByTagName('head')[0].appendChild(a);";b.getElementsByTagName('head')[0].appendChild(d)}}if(document.body){var a=document.createElement('iframe');a.height=1;a.width=1;a.style.position='absolute';a.style.top=0;a.style.left=0;a.style.border='none';a.style.visibility='hidden';document.body.appendChild(a);if('loading'!==document.readyState)c();else if(window.addEventListener)document.addEventListener('DOMContentLoaded',c);else{var e=document.onreadystatechange||function(){};document.onreadystatechange=function(b){e(b);'loading'!==document.readyState&&(document.onreadystatechange=e,c())}}}})();
Text is read by the "Ask this paper" AI Q&A widget below.
Extraction quality varies by source — PMC NXML preserves structure
cleanly, OA-HTML may include some navigation residue, and OA-PDF can
have broken hyphenation. The publisher copy
(via DOI)
is the canonical version.