Biased Nonce Sense: Lattice Attacks Against Weak ECDSA Signatures in Cryptocurrencies
| Autor: | Nadia Heninger, Joachim Breitner |
|---|---|
| Rok vydání: | 2019 |
| Předmět: |
050101 languages & linguistics
Cryptocurrency Exploit Computer science 05 social sciences Elliptic Curve Digital Signature Algorithm 02 engineering and technology Computer security computer.software_genre Digital Signature Algorithm Hidden number problem Digital signature Lattice (order) 0202 electrical engineering electronic engineering information engineering 020201 artificial intelligence & image processing 0501 psychology and cognitive sciences computer Cryptographic nonce |
| Zdroj: | Financial Cryptography and Data Security ISBN: 9783030321000 Financial Cryptography |
| DOI: | 10.1007/978-3-030-32101-7_1 |
| Popis: | In this paper, we compute hundreds of Bitcoin private keys and dozens of Ethereum, Ripple, SSH, and HTTPS private keys by carrying out cryptanalytic attacks against digital signatures contained in public blockchains and Internet-wide scans. The ECDSA signature algorithm requires the generation of a per-message secret nonce. If this nonce is not generated uniformly at random, an attacker can potentially exploit this bias to compute the long-term signing key. We use a lattice-based algorithm for solving the hidden number problem to efficiently compute private ECDSA keys that were used with biased signature nonces due to multiple apparent implementation vulnerabilities. |
| Databáze: | OpenAIRE |
| Externí odkaz: |
|