International Association
for Cryptologic Research

Pierre-Augustin Berthet , Institut Polytechnique de Paris, Hensoldt France SAS

Justine Paillet , Université Jean-Monnet Saint-Étienne, Hensoldt France SAS

Cédric Tavernier , Hensoldt France SAS

Lilian Bossuet , Université Jean-Monnet Saint-Étienne

Brice Colombier , Université Jean-Monnet Saint-Étienne

DOI: 10.62056/ay73zl7s

URL: https://cic.iacr.org/p/1/4/9

Search ePrint

Search Google

FALCON is a signature selected for standardisation of the new Post-Quantum Cryptography (PQC) primitives by the National Institute of Standards and Technology (NIST). However, it remains a challenge to define efficient countermeasures against side-channel attacks (SCA) for this algorithm. FALCON is a lattice-based signature that relies on rational numbers, which is unusual in the cryptography field. Although recent work proposed a solution to mask the addition and the multiplication, some roadblocks remain, most noticeably, how to protect the floor function. In this work, we propose to complete the first existing tests of hardening FALCON against SCA. We perform the mathematical proofs of our methods as well as formal security proofs in the probing model by ensuring Multiple Input Multiple Output Strong Non-Interference (MIMO-SNI) security. We provide performances on a laptop computer of our gadgets as well as of a complete masked FALCON. We notice significant overhead in doing so and discuss the deployability of our method in a real-world context.