Závěrečná práce: Ján Jančár, učo 445358: Security considerations for elliptic curve domain parameters selection
Bakalářská práce
Security considerations for elliptic curve domain parameters selection
Anotace
Táto bakalárska práca prezentuje prehľad známych podmienok bezpečnosti doménových parametrov kryptografie eliptických kriviek, spolu s diskusiou rôznych metód generovania týchto doménových parametrov, ako náhodné generovanie(exhaustive approach), generovanie pomocou overiteľne náhodných algoritmov(verifiably random algorithms) či pomocou metódy komplexnej multiplikácie. Demonštrujeme návrh a implementáciu …více
Abstract
We present a summary of currently known security requirements of elliptic curve domain parameters together with a discussion of various methods for generating elliptic curve domain parameters, such as the exhaustive approach, verifiably random algorithms or a method using complex multiplication. We demonstrate a tool we built for fast generation of elliptic curve domain parameters using these methods …více
Zadání práce
The thesis will:
1. Survey possible attacks against the ECC-based cryptosystems, considering both the security of domain parameters itself as well as implementation errors.
2. Design and implement a tool for generating these domain parameters using common methods (random approach, ANSI X9.62 verifiably random algorithm, IEEE 1363 CM algorithm, Brainpool algorithm).
3. Implement curve generation using complex-multiplication method (CM).
4. Use generated valid and invalid curves and points on these curves to verify the behavior of ECC implementations of several smartcards and cryptographic libraries.
References:
D. Bernstein, T. Lange: SafeCurves - Choosing safe curves for elliptic-curve cryptography, https://safecurves.cr.yp.to/
T. Jager, J. Schwenk, J. Somorovsky: Practical Invalid Curve Attacks on TLS-ECDH, ESORICS’15
24. 5. 2018 12:44, doc. RNDr. Petr Švenda, Ph.D., učo 4085
Přílohy
Konzultant
Práce na příbuzné téma
Seznam prací, které mají shodná klíčová slova.
-
PYECSCA: Reverse-engineering black-box Elliptic Curve Cryptography implementations via side-channels
RNDr. Ján Jančár, Ph.D., učo 445358 -
Analysis of implementations of ECC libraries
Mgr. David Hofman -
On cryptographic weaknesses related to elliptic curves
RNDr. Vladimír Sedláček, Ph.D., učo 408178 -
Podpora eliptických křivek v kryptografických knihovnách
Mgr. Lenka Bačinská -
Source code security transformations for JavaCard platform
Bc. Ondřej Šebek -
Simulation-based fault-injection evaluation methodology for cryptolibraries.
Mgr. Michal Masrna, učo 514084 -
Measuring the usability of cryptographic libraries
Mgr. Matěj Kolouch Grabovský -
Support for U2F FIDO tokens in mobile applications
Bc. Marek Hrašna




