Bibliography
All works cited from the rest of this document. Entries are keyed
with an author-year-topic mnemonic (for example
[AP21]) so that the key itself gives
a reader a hint of the content. The same convention is used by the
quantica side under quantica/doc/sca/biblio.bib.
The underlying BibTeX source is arcana/doc/sca/biblio.bib. In
standalone arcana doc builds (./gendoc.sh arcana), gendoc.sh
appends the cross-cutting entries owned by quantica
(kocher1996timing, reparaz2017dudect …) into the staged
biblio so a single rendering covers the full reference set arcana
cites. In unified workspace builds (./gendoc.sh all) the bib
stays disjoint and the cross-cutting entries are rendered by
quantica/sca/biblio.
Alexandre Adomnicai and others. A High-Performance Curve25519 and Curve448 Unified Implementation. arXiv 2504.04731, 2024. URL: https://arxiv.org/pdf/2504.04731.
Alexandre Adomnicai and Thomas Peyrin. Fixslicing AES-like Ciphers — New bitsliced AES speed records on ARM-Cortex M and RISC-V. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2021(1):402–425, 2021. URL: https://eprint.iacr.org/2020/1123.
Martin R. Albrecht and Nadia Heninger. On Bounded Distance Decoding with Predicate: Breaking the “Lattice Barrier” for the Hidden Number Problem. In EUROCRYPT 2021. 2021.
Diego F. Aranha, Felipe Rodrigues Novaes, Akira Takahashi, Mehdi Yasuda, and Mehdi Tibouchi. LadderLeak: Breaking ECDSA With Less Than One Bit Of Nonce Leakage. In ACM CCS 2020. 2020. URL: https://eprint.iacr.org/2020/615.
Christian Aumüller, Peter Bier, Wieland Fischer, Peter Hofreiter, and Jean-Pierre Seifert. Fault Attacks on RSA with CRT: Concrete Results and Practical Countermeasures. In CHES 2002, 260–275. Springer, 2002.
Alberto Battistello and Christophe Giraud. Fault Analysis of Infective AES Computations. In FDTC 2015. 2015.
Aurélie Bauer, Eliane Jaulmes, Emmanuel Prouff, and Justine Wild. A Synthesis of Side-Channel Attacks on Elliptic Curve Cryptography in Smart-Cards. In Journal of Cryptographic Engineering. 2014.
Sonia Belaïd, Luk Bettale, Emmanuelle Dottax, Laurent Genelle, and Franck Rondepierre. Differential Power Analysis of HMAC SHA-2 in the Hamming Weight Model. In SECRYPT 2013. 2013.
Yaacov Belenky, Ira Dushar, Valery Teper, Valeriya Bugaenko, Oleg Karavaev, Leonid Azriel, and Yury Kreimer. Carry-based Differential Power Analysis (CDPA) and its Application to Attacking HMAC-SHA-2. IACR Transactions on Cryptographic Hardware and Embedded Systems, 2023(3):1–29, 2023. URL: https://tches.iacr.org/index.php/TCHES/article/view/10955.
Daniel J. Bernstein. Cache-Timing Attacks on AES. In Technical report (cr.yp.to). 2005. URL: https://cr.yp.to/antiforgery/cachetiming-20050414.pdf.
Daniel J. Bernstein. Curve25519: New Diffie-Hellman Speed Records. In PKC 2006. Springer, 2006.
Guido Bertoni, Joan Daemen, Sebastian Hoffert, Michaël Peeters, Gilles Van Assche, and Ronny Van Keer. Farfalle: parallel permutation-based cryptography. In IACR Transactions on Symmetric Cryptology (ToSC), volume 2017, 1–38. 2017. [TO CONFIRM] bibkey says "keccak_masking" but title and content are about Farfalle (a different Bertoni/Keccak-team construction). If the SCA documentation intended a Keccak-masking reference, this entry should be replaced (candidate: keccak.team "Note on side-channel attacks"). URL: https://eprint.iacr.org/2016/1188.
Begül Bilgin, Benedikt Gierlichs, Svetla Nikova, Ventzislav Nikov, and Vincent Rijmen. A More Efficient AES Threshold Implementation. In AFRICACRYPT 2014, 267–284. Springer, 2014.
Daniel Bleichenbacher. Chosen Ciphertext Attacks Against Protocols Based on the RSA Encryption Standard PKCS #1. In CRYPTO 1998. 1998.
Dan Boneh, Richard A. DeMillo, and Richard J. Lipton. On the Importance of Eliminating Errors in Cryptographic Computations. Journal of Cryptology, 14(2):101–119, 2001.
Eric Brier and Marc Joye. Weierstraß Elliptic Curves and Side-Channel Attacks. In PKC 2002. 2002.
David Brumley and Dan Boneh. Remote Timing Attacks Are Practical. In USENIX Security 2003. 2003.
Weiqiong Cao, Xuejia Lai, Jie Liu, and An Wang. Lattice-Based Fault Attacks on Deterministic Signature Schemes of ECDSA and EdDSA. ePrint 2020/803 / SAC 2020, 2020. URL: https://eprint.iacr.org/2020/803.
Jean-Sébastien Coron. Resistance Against Differential Power Analysis For Elliptic Curve Cryptosystems. In CHES 1999, 292–302. Springer, 1999. Scalar blinding, randomized projective coordinates, point blinding for ECC.
Jean-Sébastien Coron. Resistance Against Differential Power Analysis For Elliptic Curve Cryptosystems. In CHES 1999, 292–302. Springer, 1999. Includes message-blinding for RSA.
Michael Düll, Björn Haase, Gesine Hinterwälder, Michael Hutter, Christof Paar, Ana Helena Sánchez, and Peter Schwabe. High-speed Curve25519 on 8-bit, 16-bit, and 32-bit microcontrollers. Designs, Codes and Cryptography, 77:493–514, 2015.
Antoine Geimer, Mathieu Vergnolle, Frédéric Recoules, Lesly-Ann Daniel, Sébastien Bardin, and Clémentine Maurice. A Usability Evaluation of Constant-Time Analysis Tools. ePrint 2024/2060, 2024. URL: https://eprint.iacr.org/2024/2060.
Christophe Giraud. An RSA Implementation Resistant to Fault Attacks and to Simple Power Analysis. In IEEE Transactions on Computers, Vol. 55 No. 9. 2006.
Louis Goubin. A Sound Method for Switching between Boolean and Arithmetic Masking. CHES 2001, 2001.
Dahmun Goudarzi and Marc Joye. Faster Montgomery and double-add ladders for short Weierstrass curves. ePrint 2020/437, 2020. URL: https://eprint.iacr.org/2020/437.
Ján Jančár, Vladimir Sedlacek, Petr Svenda, and Marek Sys. Minerva: The curse of ECDSA nonces. ePrint 2020/728 / TCHES 2020 Issue 4, 2020. URL: https://eprint.iacr.org/2020/728.
S. Josefsson and I. Liusvaara. Edwards-Curve Digital Signature Algorithm (EdDSA). RFC 8032, IETF, 2017. URL: https://www.rfc-editor.org/rfc/rfc8032.
Marc Joye. Highly Regular Right-to-Left Algorithms for Scalar Multiplication. In CHES 2007, 135–147. Springer, 2007. The Joye double-add ladder.
Marc Joye and Michael Tunstall. Securing CRT-RSA against Bellcore Attacks. In CHES 2007 / book chapter. 2007. Infective computation against fault attacks on RSA-CRT.
H. Krawczyk, M. Bellare, and R. Canetti. HMAC: Keyed-Hashing for Message Authentication. RFC 2104, IETF, 1997. URL: https://www.rfc-editor.org/rfc/rfc2104.
Emilia Käsper and Peter Schwabe. Faster and Timing-Attack Resistant AES-GCM. In CHES 2009, 1–17. Springer, 2009.
A. Langley, M. Hamburg, and S. Turner. Elliptic Curves for Security. RFC 7748, IETF, 2016. URL: https://www.rfc-editor.org/rfc/rfc7748.
Loïc Masure and Rémi Strullu. Side-channel analysis against ANSSI's protected AES implementation on ARM: end-to-end attacks with multi-task learning. Journal of Cryptographic Engineering, 13(2):129–147, 2023. ePrint 2021/592 — preprint of the Springer JCEN 2023 paper. Earlier bib had a confused author list (likely mixed with the related ePrint 2023/006 by Cristiani et al.). URL: https://eprint.iacr.org/2021/592.
J. P. Mattsson, E. Thormarker, and S. Ruohomaa. Hedged ECDSA and EdDSA Signatures. Internet-Draft draft-irtf-cfrg-det-sigs-with-noise, IETF CFRG, 2024. URL: https://datatracker.ietf.org/doc/draft-irtf-cfrg-det-sigs-with-noise/.
Daniel Moghimi, Berk Sunar, Thomas Eisenbarth, and Nadia Heninger. TPM-FAIL: TPM meets Timing and Lattice Attacks. In USENIX Security 2020. 2020. URL: https://www.usenix.org/conference/usenixsecurity20/presentation/moghimi-tpm.
K. Moriarty, B. Kaliski, J. Jonsson, and A. Rusch. PKCS #1: RSA Cryptography Specifications Version 2.2. RFC 8017, IETF, 2016. URL: https://www.rfc-editor.org/rfc/rfc8017.
Dag Arne Osvik, Adi Shamir, and Eran Tromer. Cache Attacks and Countermeasures: The Case of AES. In CT-RSA 2006, 1–20. Springer, 2006.
Peter Pessl, Daniel Gruss, Clémentine Maurice, Michael Schwarz, and Stefan Mangard. DRAMA: Exploiting DRAM Addressing for Cross-CPU Attacks. In USENIX Security 2017. 2017.
T. Pornin. Deterministic Usage of the Digital Signature Algorithm (DSA) and Elliptic Curve Digital Signature Algorithm (ECDSA). RFC 6979, IETF, 2013. URL: https://www.rfc-editor.org/rfc/rfc6979.
Pablo Rauzy and Sylvain Guilley. A Formal Proof of Countermeasures Against Fault Injection Attacks on CRT-RSA. ePrint 2013/506, 2013. URL: https://eprint.iacr.org/2013/506.
Pablo Rauzy, Sylvain Guilley, and Zakaria Najm. Algorithmic Countermeasures Against Fault Attacks and Power Analysis for RSA-CRT. ePrint 2016/238, 2016. URL: https://eprint.iacr.org/2016/238.
Yolan Romailler and Sylvain Pelissier. Practical Fault Attack against the Ed25519 and EdDSA Signature Schemes. In FDTC 2017. IEEE, 2017.
Niels Samwel, Lejla Batina, Guido Bertoni, Joan Daemen, and Ruggero Susella. Breaking Ed25519 in WolfSSL. In CT-RSA 2018. 2018.
Elena Trichina. Combinational Logic Design for AES SubByte Transformation on Masked Data. In ePrint 2003/236. 2003.
Colin D. Walter. MIST: An Efficient, Randomized Exponentiation Algorithm for Resisting Power Analysis. In CT-RSA 2002. 2002.
Léo Weissbart, Stjepan Picek, and Lejla Batina. Systematic Side-channel Analysis of Curve25519 with Machine Learning. ePrint 2021/944, 2021. URL: https://eprint.iacr.org/2021/944.
Zhiyuan Zhang, Lesly-Ann Daniel, Sébastien Bardin, and Clémentine Maurice. CT-LLVM: Automatic Large-Scale Constant-Time Analysis. ePrint 2025/338, 2025. URL: https://eprint.iacr.org/2025/338.
National Institute of Standards and Technology. FIPS 197 — Advanced Encryption Standard (AES). Technical Report FIPS 197, NIST, 2001. URL: https://csrc.nist.gov/publications/detail/fips/197/final.
National Institute of Standards and Technology. NIST SP 800-38B — Recommendation for Block Cipher Modes of Operation: The CMAC Mode for Authentication. Technical Report SP 800-38B, NIST, 2005.
National Institute of Standards and Technology. FIPS 180-4 — Secure Hash Standard (SHS). Technical Report FIPS 180-4, NIST, 2015. URL: https://csrc.nist.gov/publications/detail/fips/180/4/final.
National Institute of Standards and Technology. FIPS 202 — SHA-3 Standard: Permutation-Based Hash and Extendable-Output Functions. Technical Report FIPS 202, NIST, 2015. URL: https://csrc.nist.gov/publications/detail/fips/202/final.
National Institute of Standards and Technology. NIST SP 800-56A Rev. 3 — Recommendation for Pair-Wise Key Establishment Schemes Using Discrete Logarithm Cryptography. Technical Report SP 800-56A Rev. 3, NIST, 2018.
National Institute of Standards and Technology. FIPS 186-5 — Digital Signature Standard (DSS). Technical Report FIPS 186-5, NIST, 2023. URL: https://csrc.nist.gov/publications/detail/fips/186/5/final.