{"id":"https://openalex.org/W7114911909","doi":"https://doi.org/10.1109/tifs.2025.3643784","title":"Release the Power of Rejected Signatures: An Efficient Side-Channel Attack on the ML-DSA Cryptosystem","display_name":"Release the Power of Rejected Signatures: An Efficient Side-Channel Attack on the ML-DSA Cryptosystem","publication_year":2025,"publication_date":"2025-01-01","ids":{"openalex":"https://openalex.org/W7114911909","doi":"https://doi.org/10.1109/tifs.2025.3643784"},"language":null,"primary_location":{"id":"doi:10.1109/tifs.2025.3643784","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3643784","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":null,"display_name":"Zheng Liu","orcid":"https://orcid.org/0009-0000-4786-7283"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Zheng Liu","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0009-0000-4786-7283","affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":null,"display_name":"An Wang","orcid":"https://orcid.org/0000-0002-9873-1308"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"An Wang","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0002-9873-1308","affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Congming Wei","orcid":"https://orcid.org/0000-0003-4029-0746"},"institutions":[{"id":"https://openalex.org/I75689368","display_name":"Communication University of China","ror":"https://ror.org/04facbs33","country_code":"CN","type":"education","lineage":["https://openalex.org/I75689368"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Congming Wei","raw_affiliation_strings":["School of Computer and Cyber Sciences, Communication University of China, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0003-4029-0746","affiliations":[{"raw_affiliation_string":"School of Computer and Cyber Sciences, Communication University of China, Beijing, China","institution_ids":["https://openalex.org/I75689368"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Yaoling Ding","orcid":"https://orcid.org/0000-0001-6416-7203"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Yaoling Ding","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0001-6416-7203","affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Jingqi Zhang","orcid":"https://orcid.org/0000-0003-4140-7029"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Jingqi Zhang","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0000-0003-4140-7029","affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"middle","author":{"id":null,"display_name":"Annyu Liu","orcid":"https://orcid.org/0009-0003-7129-4536"},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Annyu Liu","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":"https://orcid.org/0009-0003-7129-4536","affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]},{"author_position":"last","author":{"id":null,"display_name":"Liehuang Zhu","orcid":null},"institutions":[{"id":"https://openalex.org/I125839683","display_name":"Beijing Institute of Technology","ror":"https://ror.org/01skt4w74","country_code":"CN","type":"education","lineage":["https://openalex.org/I125839683","https://openalex.org/I890469752"]}],"countries":["CN"],"is_corresponding":false,"raw_author_name":"Liehuang Zhu","raw_affiliation_strings":["School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China"],"raw_orcid":null,"affiliations":[{"raw_affiliation_string":"School of Cyberspace Science and Technology, Beijing Institute of Technology, Beijing, China","institution_ids":["https://openalex.org/I125839683"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":7,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":1.7588,"has_fulltext":false,"cited_by_count":1,"citation_normalized_percentile":{"value":0.91238153,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":95,"max":98},"biblio":{"volume":"20","issue":null,"first_page":"13356","last_page":"13369"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.5257999897003174,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.5257999897003174,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11693","display_name":"Cryptography and Residue Arithmetic","score":0.17599999904632568,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":0.16750000417232513,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/exploit","display_name":"Exploit","score":0.7059000134468079},{"id":"https://openalex.org/keywords/cryptosystem","display_name":"Cryptosystem","score":0.6743000149726868},{"id":"https://openalex.org/keywords/key","display_name":"Key (lock)","score":0.6574000120162964},{"id":"https://openalex.org/keywords/digital-signature","display_name":"Digital signature","score":0.6466000080108643},{"id":"https://openalex.org/keywords/signature","display_name":"Signature (topology)","score":0.6269999742507935},{"id":"https://openalex.org/keywords/cryptography","display_name":"Cryptography","score":0.597100019454956},{"id":"https://openalex.org/keywords/information-leakage","display_name":"Information leakage","score":0.5503000020980835},{"id":"https://openalex.org/keywords/timing-attack","display_name":"Timing attack","score":0.5040000081062317}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.850600004196167},{"id":"https://openalex.org/C165696696","wikidata":"https://www.wikidata.org/wiki/Q11287","display_name":"Exploit","level":2,"score":0.7059000134468079},{"id":"https://openalex.org/C6295992","wikidata":"https://www.wikidata.org/wiki/Q976521","display_name":"Cryptosystem","level":3,"score":0.6743000149726868},{"id":"https://openalex.org/C26517878","wikidata":"https://www.wikidata.org/wiki/Q228039","display_name":"Key (lock)","level":2,"score":0.6574000120162964},{"id":"https://openalex.org/C118463975","wikidata":"https://www.wikidata.org/wiki/Q220849","display_name":"Digital signature","level":3,"score":0.6466000080108643},{"id":"https://openalex.org/C2779696439","wikidata":"https://www.wikidata.org/wiki/Q7512811","display_name":"Signature (topology)","level":2,"score":0.6269999742507935},{"id":"https://openalex.org/C178489894","wikidata":"https://www.wikidata.org/wiki/Q8789","display_name":"Cryptography","level":2,"score":0.597100019454956},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.5641999840736389},{"id":"https://openalex.org/C2779201187","wikidata":"https://www.wikidata.org/wiki/Q2775060","display_name":"Information leakage","level":2,"score":0.5503000020980835},{"id":"https://openalex.org/C28420585","wikidata":"https://www.wikidata.org/wiki/Q2665075","display_name":"Timing attack","level":4,"score":0.5040000081062317},{"id":"https://openalex.org/C26713055","wikidata":"https://www.wikidata.org/wiki/Q245962","display_name":"Implementation","level":2,"score":0.44850000739097595},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.4122999906539917},{"id":"https://openalex.org/C98045186","wikidata":"https://www.wikidata.org/wiki/Q205663","display_name":"Process (computing)","level":2,"score":0.3919999897480011},{"id":"https://openalex.org/C71743495","wikidata":"https://www.wikidata.org/wiki/Q2845210","display_name":"Power analysis","level":3,"score":0.3871999979019165},{"id":"https://openalex.org/C80444323","wikidata":"https://www.wikidata.org/wiki/Q2878974","display_name":"Theoretical computer science","level":1,"score":0.3598000109195709},{"id":"https://openalex.org/C49289754","wikidata":"https://www.wikidata.org/wiki/Q2267081","display_name":"Side channel attack","level":3,"score":0.3564000129699707},{"id":"https://openalex.org/C202424057","wikidata":"https://www.wikidata.org/wiki/Q1224829","display_name":"Digital Signature Algorithm","level":4,"score":0.32420000433921814},{"id":"https://openalex.org/C110406131","wikidata":"https://www.wikidata.org/wiki/Q41349","display_name":"Smart card","level":2,"score":0.31690001487731934},{"id":"https://openalex.org/C163258240","wikidata":"https://www.wikidata.org/wiki/Q25342","display_name":"Power (physics)","level":2,"score":0.2980000078678131},{"id":"https://openalex.org/C113775141","wikidata":"https://www.wikidata.org/wiki/Q428691","display_name":"Computer engineering","level":1,"score":0.29739999771118164},{"id":"https://openalex.org/C2781039887","wikidata":"https://www.wikidata.org/wiki/Q1391724","display_name":"Factor (programming language)","level":2,"score":0.2799000144004822},{"id":"https://openalex.org/C120314980","wikidata":"https://www.wikidata.org/wiki/Q180634","display_name":"Distributed computing","level":1,"score":0.2678999900817871},{"id":"https://openalex.org/C2777042071","wikidata":"https://www.wikidata.org/wiki/Q6509304","display_name":"Leakage (economics)","level":2,"score":0.2583000063896179},{"id":"https://openalex.org/C527648132","wikidata":"https://www.wikidata.org/wiki/Q189900","display_name":"Information security","level":2,"score":0.25450000166893005}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1109/tifs.2025.3643784","is_oa":false,"landing_page_url":"https://doi.org/10.1109/tifs.2025.3643784","pdf_url":null,"source":{"id":"https://openalex.org/S61310614","display_name":"IEEE Transactions on Information Forensics and Security","issn_l":"1556-6013","issn":["1556-6013","1556-6021"],"is_oa":false,"is_in_doaj":false,"is_core":true,"host_organization":"https://openalex.org/P4310319808","host_organization_name":"Institute of Electrical and Electronics Engineers","host_organization_lineage":["https://openalex.org/P4310319808"],"host_organization_lineage_names":["Institute of Electrical and Electronics Engineers"],"type":"journal"},"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"IEEE Transactions on Information Forensics and Security","raw_type":"journal-article"}],"best_oa_location":null,"sustainable_development_goals":[{"score":0.4368096590042114,"id":"https://metadata.un.org/sdg/17","display_name":"Partnerships for the goals"}],"awards":[{"id":"https://openalex.org/G1105385574","display_name":null,"funder_award_id":"62402039","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G2701771370","display_name":null,"funder_award_id":"62272047","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"},{"id":"https://openalex.org/G5089588666","display_name":null,"funder_award_id":"62502035","funder_id":"https://openalex.org/F4320321001","funder_display_name":"National Natural Science Foundation of China"}],"funders":[{"id":"https://openalex.org/F4320321001","display_name":"National Natural Science Foundation of China","ror":"https://ror.org/01h0zpd94"}],"has_content":{"pdf":false,"grobid_xml":false},"content_urls":null,"referenced_works_count":19,"referenced_works":["https://openalex.org/W1736874106","https://openalex.org/W2154909745","https://openalex.org/W2740580365","https://openalex.org/W2914572864","https://openalex.org/W2972972326","https://openalex.org/W3097833434","https://openalex.org/W3115739041","https://openalex.org/W4200446781","https://openalex.org/W4206724325","https://openalex.org/W4311167566","https://openalex.org/W4385711937","https://openalex.org/W4386328296","https://openalex.org/W4391326551","https://openalex.org/W4392753810","https://openalex.org/W4399296324","https://openalex.org/W4400033991","https://openalex.org/W4404179081","https://openalex.org/W4414017045","https://openalex.org/W7084760472"],"related_works":[],"abstract_inverted_index":{"The":[0],"module-lattice-based":[1],"digital":[2],"signature":[3,35],"standard,":[4],"formerly":[5],"known":[6],"as":[7,200],"CRYSTALS-DILITHIUM,":[8],"is":[9,198],"a":[10,41,87,105,117,134,144],"lattice-based":[11],"post-quantum":[12],"cryptographic":[13],"scheme.":[14],"In":[15],"August":[16],"2024,":[17],"the":[18,54,60,113,123,149,157,181,216],"National":[19],"Institute":[20],"of":[21,86,125,160],"Standards":[22],"and":[23,36,82,101,121,140],"Technology":[24],"officially":[25],"standardized":[26],"ML-DSA":[27,31,49,92],"under":[28,188],"FIPS":[29],"204.":[30],"generates":[32],"one":[33],"valid":[34,55,100],"multiple":[37],"rejected":[38,64,102,154,176,196,213],"signatures":[39,103,155,177,197,214],"during":[40,215],"single":[42,118],"signing":[43,119,217],"process.":[44],"Most":[45],"side-channel":[46,96,205],"attacks":[47],"targeting":[48],"have":[50],"focused":[51],"solely":[52],"on":[53,67,91,143],"signature,":[56],"while":[57],"largely":[58],"neglecting":[59],"hints":[61],"contained":[62],"in":[63,75],"signatures.":[65],"Building":[66],"prior":[68],"SASCA":[69],"frameworks":[70],"originally":[71],"proposed":[72],"for":[73,128,166,212],"ML-DSA,":[74],"this":[76],"paper":[77],"we":[78,171],"present":[79],"an":[80],"efficient":[81],"fully":[83],"practical":[84],"instantiation":[85,111],"private-key":[88],"recovery":[89],"attack":[90],"that":[93,152,173,194],"jointly":[94],"exploits":[95],"leakages":[97],"from":[98,116],"both":[99,138],"within":[104],"unified":[106],"factor":[107],"graph.":[108],"This":[109],"concrete":[110],"maximizes":[112],"information":[114],"extracted":[115],"attempt":[120],"minimizes":[122],"number":[124,159],"required":[126,158],"traces":[127,161,187],"full":[129,167],"key":[130,168,182],"recovery.":[131,169],"We":[132,207],"conducted":[133],"proof-of-concept":[135],"experiment":[136],"with":[137,183],"reference":[139],"ASM-optimized":[141],"implementations":[142],"Cortex-M4":[145],"core":[146],"chip,":[147],"where":[148],"results":[150],"demonstrate":[151],"incorporating":[153],"reduces":[156],"by":[162],"at":[163],"least":[164],"50.0%":[165],"Moreover,":[170],"show":[172],"using":[174],"only":[175],"suffices":[178],"to":[179,219],"recover":[180],"fewer":[184],"than":[185],"30":[186],"our":[189],"setup.":[190],"Our":[191],"findings":[192],"highlight":[193],"protecting":[195],"crucial,":[199],"their":[201],"leakage":[202],"provides":[203],"valuable":[204],"information.":[206],"strongly":[208],"recommend":[209],"implementing":[210],"countermeasures":[211],"process":[218],"mitigate":[220],"potential":[221],"threats.":[222]},"counts_by_year":[{"year":2026,"cited_by_count":1}],"updated_date":"2026-06-11T09:08:48.828518","created_date":"2025-12-12T00:00:00"}