{"id":"https://openalex.org/W2799470819","doi":"https://doi.org/10.1109/tc.2018.2833119","title":"Loop-Abort Faults on Lattice-Based Signatures and Key Exchange Protocols","display_name":"Loop-Abort Faults on Lattice-Based Signatures and Key Exchange Protocols","publication_year":2018,"publication_date":"2018-01-01","ids":{"openalex":"https://openalex.org/W2799470819","doi":"https://doi.org/10.1109/tc.2018.2833119","mag":"2799470819"},"language":"en","primary_location":{"id":"doi:10.1109/tc.2018.2833119","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tc.2018.2833119","pdf_url":null,"source":{"id":"https://openalex.org/S157670870","display_name":"IEEE Transactions on Computers","issn_l":"0018-9340","issn":["0018-9340","1557-9956","2326-3814"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computers","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"green","oa_url":"https://zenodo.org/record/3500464","any_repository_has_fulltext":true},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5057608582","display_name":"Thomas Espitau","orcid":"https://orcid.org/0000-0002-7655-9594"},"institutions":[{"id":"https://openalex.org/I39804081","display_name":"Sorbonne Universit\u00e9","ror":"https://ror.org/02en5vm52","country_code":"FR","type":"education","lineage":["https://openalex.org/I39804081"]},{"id":"https://openalex.org/I4210137744","display_name":"LabEx PERSYVAL-Lab","ror":"https://ror.org/03eqm6y13","country_code":"FR","type":"facility","lineage":["https://openalex.org/I106785703","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I2738703131","https://openalex.org/I4210137744","https://openalex.org/I4210139971","https://openalex.org/I4210150872","https://openalex.org/I899635006","https://openalex.org/I899635006"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Thomas Espitau","raw_affiliation_strings":["Sorbonne Universit\u00e9s, UPMC, Paris, France","ALMASTY - ALgorithms for coMmunicAtion SecuriTY (France)"],"affiliations":[{"raw_affiliation_string":"Sorbonne Universit\u00e9s, UPMC, Paris, France","institution_ids":["https://openalex.org/I39804081"]},{"raw_affiliation_string":"ALMASTY - ALgorithms for coMmunicAtion SecuriTY (France)","institution_ids":["https://openalex.org/I4210137744"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5016755346","display_name":"Pierre-Alain Fouque","orcid":"https://orcid.org/0000-0003-4997-2276"},"institutions":[{"id":"https://openalex.org/I185839726","display_name":"Institut Universitaire de France","ror":"https://ror.org/055khg266","country_code":"FR","type":"education","lineage":["https://openalex.org/I185839726"]},{"id":"https://openalex.org/I56067802","display_name":"Universit\u00e9 de Rennes","ror":"https://ror.org/015m7wh34","country_code":"FR","type":"education","lineage":["https://openalex.org/I56067802"]},{"id":"https://openalex.org/I2802519937","display_name":"Institut de Recherche en Informatique et Syst\u00e8mes Al\u00e9atoires","ror":"https://ror.org/00myn0z94","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I205703379","https://openalex.org/I2802204017","https://openalex.org/I2802519937","https://openalex.org/I28221208","https://openalex.org/I4210127572","https://openalex.org/I4210159245","https://openalex.org/I56067802"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Pierre-Alain Fouque","raw_affiliation_strings":["Institut Universitaire de France & IRISA, University of Rennes, Rennes, France","EMSEC - EMbedded SEcurity and Cryptography (France)"],"affiliations":[{"raw_affiliation_string":"Institut Universitaire de France & IRISA, University of Rennes, Rennes, France","institution_ids":["https://openalex.org/I185839726","https://openalex.org/I2802519937","https://openalex.org/I56067802"]},{"raw_affiliation_string":"EMSEC - EMbedded SEcurity and Cryptography (France)","institution_ids":[]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5090046769","display_name":"Beno\u00eet G\u00e9rard","orcid":null},"institutions":[{"id":"https://openalex.org/I95583923","display_name":"Direction G\u00e9n\u00e9rale de l'Armement","ror":"https://ror.org/04wsqd844","country_code":"FR","type":"funder","lineage":["https://openalex.org/I2799681489","https://openalex.org/I2802818602","https://openalex.org/I95583923"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Benoit Gerard","raw_affiliation_strings":["DGA.MI, Bruz, France","EMSEC - EMbedded SEcurity and Cryptography (France)"],"affiliations":[{"raw_affiliation_string":"DGA.MI, Bruz, France","institution_ids":["https://openalex.org/I95583923"]},{"raw_affiliation_string":"EMSEC - EMbedded SEcurity and Cryptography (France)","institution_ids":[]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5082427466","display_name":"Mehdi Tibouchi","orcid":"https://orcid.org/0000-0002-2736-2963"},"institutions":[{"id":"https://openalex.org/I2251713219","display_name":"NTT (Japan)","ror":"https://ror.org/00berct97","country_code":"JP","type":"company","lineage":["https://openalex.org/I2251713219"]}],"countries":["JP"],"is_corresponding":false,"raw_author_name":"Mehdi Tibouchi","raw_affiliation_strings":["NTT Secure Platform Laboratories, Musashino-shi, Tokyo, Japan","NTT Secure Platform Laboratories [Tokyo] (Tokyo - Japan)"],"affiliations":[{"raw_affiliation_string":"NTT Secure Platform Laboratories, Musashino-shi, Tokyo, Japan","institution_ids":["https://openalex.org/I2251713219"]},{"raw_affiliation_string":"NTT Secure Platform Laboratories [Tokyo] (Tokyo - Japan)","institution_ids":["https://openalex.org/I2251713219"]}]}],"institutions":[],"countries_distinct_count":2,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5057608582"],"corresponding_institution_ids":["https://openalex.org/I39804081","https://openalex.org/I4210137744"],"apc_list":null,"apc_paid":null,"fwci":1.9546,"has_fulltext":false,"cited_by_count":16,"citation_normalized_percentile":{"value":0.8931522,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":89,"max":98},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"1"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.9958000183105469,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11504","display_name":"Advanced Authentication Protocols Security","score":0.987500011920929,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.8177913427352905},{"id":"https://openalex.org/keywords/hash-function","display_name":"Hash function","score":0.6066015362739563},{"id":"https://openalex.org/keywords/key-exchange","display_name":"Key exchange","score":0.6014584302902222},{"id":"https://openalex.org/keywords/implementation","display_name":"Implementation","score":0.5104511976242065},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.5000178813934326},{"id":"https://openalex.org/keywords/authenticated-key-exchange","display_name":"Authenticated Key Exchange","score":0.4821448028087616},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.4564625322818756},{"id":"https://openalex.org/keywords/random-oracle","display_name":"Random oracle","score":0.4538901150226593},{"id":"https://openalex.org/keywords/block-cipher","display_name":"Block cipher","score":0.4182441234588623},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.35310399532318115},{"id":"https://openalex.org/keywords/public-key-cryptography","display_name":"Public-key cryptography","score":0.3082650899887085},{"id":"https://openalex.org/keywords/encryption","display_name":"Encryption","score":0.2041555941104889},{"id":"https://openalex.org/keywords/programming-language","display_name":"Programming language","score":0.07650673389434814}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.8177913427352905},{"id":"https://openalex.org/C99138194","wikidata":"https://www.wikidata.org/wiki/Q183427","display_name":"Hash function","level":2,"score":0.6066015362739563},{"id":"https://openalex.org/C99674996","wikidata":"https://www.wikidata.org/wiki/Q1414155","display_name":"Key exchange","level":4,"score":0.6014584302902222},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.5104511976242065},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.5000178813934326},{"id":"https://openalex.org/C2777572472","wikidata":"https://www.wikidata.org/wiki/Q4825878","display_name":"Authenticated Key Exchange","level":5,"score":0.4821448028087616},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.4564625322818756},{"id":"https://openalex.org/C94284585","wikidata":"https://www.wikidata.org/wiki/Q228184","display_name":"Random oracle","level":4,"score":0.4538901150226593},{"id":"https://openalex.org/C106544461","wikidata":"https://www.wikidata.org/wiki/Q543151","display_name":"Block cipher","level":3,"score":0.4182441234588623},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.35310399532318115},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.3082650899887085},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.2041555941104889},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.07650673389434814}],"mesh":[],"locations_count":3,"locations":[{"id":"doi:10.1109/tc.2018.2833119","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tc.2018.2833119","pdf_url":null,"source":{"id":"https://openalex.org/S157670870","display_name":"IEEE Transactions on Computers","issn_l":"0018-9340","issn":["0018-9340","1557-9956","2326-3814"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Computers","raw_type":"journal-article"},{"id":"pmh:oai:HAL:hal-02073941v1","is_oa":false,"landing_page_url":"https://hal.science/hal-02073941","pdf_url":null,"source":{"id":"https://openalex.org/S4306402512","display_name":"HAL (Le Centre pour la Communication Scientifique Directe)","issn_l":null,"issn":null,"is_oa":false,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I1294671590","host_organization_name":"Centre National de la Recherche Scientifique","host_organization_lineage":["https://openalex.org/I1294671590"],"host_organization_lineage_names":[],"type":"repository"},"license":null,"license_id":null,"version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"IEEE Transactions on Computers, 2018, 67 (11), pp.1535-1549. ⟨10.1109/TC.2018.2833119⟩","raw_type":"Journal articles"},{"id":"pmh:oai:zenodo.org:3500464","is_oa":true,"landing_page_url":"https://zenodo.org/record/3500464","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/article"}],"best_oa_location":{"id":"pmh:oai:zenodo.org:3500464","is_oa":true,"landing_page_url":"https://zenodo.org/record/3500464","pdf_url":null,"source":{"id":"https://openalex.org/S4306400562","display_name":"Zenodo (CERN European Organization for Nuclear Research)","issn_l":null,"issn":null,"is_oa":true,"is_in_doaj":false,"is_core":false,"host_organization":"https://openalex.org/I67311998","host_organization_name":"European Organization for Nuclear Research","host_organization_lineage":["https://openalex.org/I67311998"],"host_organization_lineage_names":[],"type":"repository"},"license":"other-oa","license_id":"https://openalex.org/licenses/other-oa","version":"submittedVersion","is_accepted":false,"is_published":false,"raw_source_name":"","raw_type":"info:eu-repo/semantics/article"},"sustainable_development_goals":[],"awards":[{"id":"https://openalex.org/G781230177","display_name":null,"funder_award_id":"ERC-669891","funder_id":"https://openalex.org/F4320337669","funder_display_name":"H2020 European Institute of Innovation and Technology"}],"funders":[{"id":"https://openalex.org/F4320337669","display_name":"H2020 European Institute of Innovation and Technology","ror":"https://ror.org/036dxts37"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":82,"referenced_works":["https://openalex.org/W29626722","https://openalex.org/W42080394","https://openalex.org/W57082118","https://openalex.org/W57986108","https://openalex.org/W62933689","https://openalex.org/W72736654","https://openalex.org/W74973629","https://openalex.org/W121367636","https://openalex.org/W147447691","https://openalex.org/W151792660","https://openalex.org/W1506156414","https://openalex.org/W1546501602","https://openalex.org/W1595771334","https://openalex.org/W1629074558","https://openalex.org/W1834056812","https://openalex.org/W1886646278","https://openalex.org/W1893972099","https://openalex.org/W1935672779","https://openalex.org/W1952488544","https://openalex.org/W1956654868","https://openalex.org/W1986968979","https://openalex.org/W1992226551","https://openalex.org/W2029092135","https://openalex.org/W2038761522","https://openalex.org/W2066425771","https://openalex.org/W2080635344","https://openalex.org/W2093721992","https://openalex.org/W2111416661","https://openalex.org/W2125815652","https://openalex.org/W2135124252","https://openalex.org/W2137127771","https://openalex.org/W2155998973","https://openalex.org/W2252429145","https://openalex.org/W2397062561","https://openalex.org/W2398538644","https://openalex.org/W2412886904","https://openalex.org/W2494078997","https://openalex.org/W2514893051","https://openalex.org/W2560054270","https://openalex.org/W2578021477","https://openalex.org/W2602892162","https://openalex.org/W2620617817","https://openalex.org/W2620720392","https://openalex.org/W2741654699","https://openalex.org/W2765255210","https://openalex.org/W2765784230","https://openalex.org/W2866028610","https://openalex.org/W2895182117","https://openalex.org/W2900370870","https://openalex.org/W2951286680","https://openalex.org/W3029450129","https://openalex.org/W3030554837","https://openalex.org/W3105506151","https://openalex.org/W4205765479","https://openalex.org/W4285719527","https://openalex.org/W6601642916","https://openalex.org/W6602312515","https://openalex.org/W6602352034","https://openalex.org/W6602530202","https://openalex.org/W6603033481","https://openalex.org/W6604928420","https://openalex.org/W6631784476","https://openalex.org/W6632665757","https://openalex.org/W6635706327","https://openalex.org/W6639516612","https://openalex.org/W6639740442","https://openalex.org/W6640789560","https://openalex.org/W6640908843","https://openalex.org/W6678774237","https://openalex.org/W6679840366","https://openalex.org/W6697101310","https://openalex.org/W6699358663","https://openalex.org/W6712239427","https://openalex.org/W6712624421","https://openalex.org/W6724049718","https://openalex.org/W6736049462","https://openalex.org/W6741845119","https://openalex.org/W6745514193","https://openalex.org/W6752951635","https://openalex.org/W6778605655","https://openalex.org/W6786278732","https://openalex.org/W7074153859"],"related_works":["https://openalex.org/W2096532495","https://openalex.org/W3175334233","https://openalex.org/W3000282663","https://openalex.org/W3095589423","https://openalex.org/W2161209604","https://openalex.org/W2163413435","https://openalex.org/W2387820617","https://openalex.org/W3114726515","https://openalex.org/W2611228024","https://openalex.org/W1517710990"],"abstract_inverted_index":{"Although":[0],"postquantum":[1,20],"cryptography":[2],"is":[3],"of":[4,34,68,78,89,103],"growing":[5],"practical":[6,91],"concern,":[7],"not":[8],"many":[9],"works":[10],"have":[11],"been":[12],"devoted":[13],"to":[14,19],"implementation":[15],"security":[16],"issues":[17],"related":[18],"schemes.":[21],"In":[22],"this":[23],"paper,":[24],"we":[25,44,74],"look":[26],"in":[27,48,61,105,140,146],"particular":[28],"at":[29],"fault":[30,113],"attacks":[31,114,136],"against":[32,115,152],"implementations":[33,77],"lattice-based":[35,92],"signatures":[36,93],"and":[37,58,60,81,94,98,108,148],"key":[38,71,95,122],"exchange":[39,72,96],"protocols.":[40],"For":[41,70],"signature":[42],"schemes,":[43],"are":[45],"interested":[46],"both":[47,106],"Fiat-Shamir":[49],"type":[50],"constructions":[51],"(particularly":[52,64],"BLISS,":[53],"but":[54],"also":[55],"GLP,":[56],"PASSSign,":[57],"Ring-TESLA)":[59],"hash-and-sign":[62],"schemes":[63,84,117],"the":[65,76,120],"GPV-based":[66],"scheme":[67],"Ducas-Prest-Lyubashevsky).":[69],"protocols,":[73,97],"study":[75],"NewHope,":[79],"Frodo,":[80],"Kyber.":[82],"These":[83],"form":[85],"a":[86,100,126],"representative":[87],"sample":[88],"modern,":[90],"achieve":[99],"high":[101],"level":[102],"efficiency":[104],"software":[107],"hardware.":[109],"We":[110],"present":[111],"several":[112],"those":[116,135],"that":[118,134],"recover":[119],"entire":[121],"recovery":[123],"with":[124],"only":[125,131],"few":[127],"faulty":[128],"executions":[129],"(sometimes":[130],"one),":[132],"show":[133],"can":[137],"be":[138],"mounted":[139],"practice":[141],"based":[142],"on":[143],"concrete":[144],"experiments":[145],"hardware,":[147],"discuss":[149],"possible":[150],"countermeasures":[151],"them.":[153]},"counts_by_year":[{"year":2025,"cited_by_count":2},{"year":2023,"cited_by_count":1},{"year":2022,"cited_by_count":1},{"year":2021,"cited_by_count":1},{"year":2020,"cited_by_count":6},{"year":2019,"cited_by_count":5}],"updated_date":"2025-11-06T03:46:38.306776","created_date":"2025-10-10T00:00:00"}