{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,2,21]],"date-time":"2025-02-21T00:50:40Z","timestamp":1740099040893,"version":"3.37.3"},"publisher-location":"Cham","reference-count":35,"publisher":"Springer International Publishing","isbn-type":[{"type":"print","value":"9783319756493"},{"type":"electronic","value":"9783319756509"}],"license":[{"start":{"date-parts":[[2018,1,1]],"date-time":"2018-01-01T00:00:00Z","timestamp":1514764800000},"content-version":"unspecified","delay-in-days":0,"URL":"http:\/\/www.springer.com\/tdm"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2018]]},"DOI":"10.1007\/978-3-319-75650-9_15","type":"book-chapter","created":{"date-parts":[[2018,2,16]],"date-time":"2018-02-16T10:14:32Z","timestamp":1518776072000},"page":"225-241","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":5,"title":["Bounding the Cache-Side-Channel Leakage of Lattice-Based Signature Schemes Using Program Semantics"],"prefix":"10.1007","author":[{"given":"Nina","family":"Bindel","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Johannes","family":"Buchmann","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Juliane","family":"Kr\u00e4mer","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Heiko","family":"Mantel","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Johannes","family":"Schickel","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"given":"Alexandra","family":"Weber","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2018,2,17]]},"reference":[{"issue":"5","key":"15_CR1","doi-asserted-by":"crossref","first-page":"1484","DOI":"10.1137\/S0097539795293172","volume":"26","author":"PW Shor","year":"1997","unstructured":"Shor, P.W.: Polynomial-time algorithms for prime factorization and discrete logarithms on a quantum computer. SIAM J. Comput. 26(5), 1484\u20131509 (1997)","journal-title":"SIAM J. Comput."},{"key":"15_CR2","unstructured":"National Institute of Standards and Technology (NIST): Post-quantum project (2016). https:\/\/pqcrypto2016.jp\/data\/pqc2016_nist_announcement.pdf . Accessed 23 May 2017"},{"key":"15_CR3","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"346","DOI":"10.1007\/978-3-662-53140-2_17","volume-title":"Cryptographic Hardware and Embedded Systems \u2013 CHES 2016","author":"Y Yarom","year":"2016","unstructured":"Yarom, Y., Genkin, D., Heninger, N.: CacheBleed: a timing attack on OpenSSL constant time RSA. In: Gierlichs, B., Poschmann, A.Y. (eds.) CHES 2016. LNCS, vol. 9813, pp. 346\u2013367. Springer, Heidelberg (2016). https:\/\/doi.org\/10.1007\/978-3-662-53140-2_17"},{"key":"15_CR4","doi-asserted-by":"crossref","unstructured":"Ac\u0131i\u00e7mez, O., Ko\u00e7, \u00c7.K.: Trace-driven cache attacks on AES. Cryptology ePrint Archive, Report 2006\/138","DOI":"10.1007\/11935308_9"},{"key":"15_CR5","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/11605805_1","volume-title":"Topics in Cryptology \u2013 CT-RSA 2006","author":"DA Osvik","year":"2006","unstructured":"Osvik, D.A., Shamir, A., Tromer, E.: Cache attacks and countermeasures: the case of AES. In: Pointcheval, D. (ed.) CT-RSA 2006. LNCS, vol. 3860, pp. 1\u201320. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11605805_1"},{"key":"15_CR6","unstructured":"Bernstein, D.J.: Cache-timing attacks on AES. Technical report, University of Illinois at Chicago (2005)"},{"key":"15_CR7","unstructured":"Oder, T., Schneider, T., P\u00f6ppelmann, T., G\u00fcneysu, T.: Practical CCA2-secure and masked ring-LWE implementation. Cryptology ePrint Archive, Report 2016\/1109 (2016)"},{"key":"15_CR8","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"153","DOI":"10.1007\/978-3-319-49890-4_9","volume-title":"Progress in Cryptology \u2013 INDOCRYPT 2016","author":"P Pessl","year":"2016","unstructured":"Pessl, P.: Analyzing the shuffling side-channel countermeasure for lattice-based signatures. In: Dunkelman, O., Sanadhya, S.K. (eds.) INDOCRYPT 2016. LNCS, vol. 10095, pp. 153\u2013170. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-49890-4_9"},{"key":"15_CR9","unstructured":"Saarinen, M.J.O.: Arithmetic coding and blinding countermeasures for lattice signatures. Cryptology ePrint Archive, Report 2016\/276 (2016)"},{"key":"15_CR10","doi-asserted-by":"crossref","unstructured":"Reparaz, O., Roy, S.S., Vercauteren, F., Verbauwhede, I.: A masked ring-LWE implementation. Cryptology ePrint Archive, Report 2015\/724 (2015)","DOI":"10.1007\/978-3-662-48324-4_34"},{"key":"15_CR11","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"40","DOI":"10.1007\/978-3-642-40041-4_3","volume-title":"Advances in Cryptology \u2013 CRYPTO 2013","author":"L Ducas","year":"2013","unstructured":"Ducas, L., Durmus, A., Lepoint, T., Lyubashevsky, V.: Lattice signatures and bimodal Gaussians. In: Canetti, R., Garay, J.A. (eds.) CRYPTO 2013. LNCS, vol. 8042, pp. 40\u201356. Springer, Heidelberg (2013). https:\/\/doi.org\/10.1007\/978-3-642-40041-4_3"},{"key":"15_CR12","doi-asserted-by":"crossref","unstructured":"Groot Bruinderink, L., H\u00fclsing, A., Lange, T., Yarom, Y.: Flush, gauss, and reload - a cache attack on the BLISS lattice-based signature scheme. In: CHES, pp. 323\u2013345 (2016)","DOI":"10.1007\/978-3-662-53140-2_16"},{"key":"15_CR13","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"44","DOI":"10.1007\/978-3-319-31517-1_3","volume-title":"Progress in Cryptology \u2013 AFRICACRYPT 2016","author":"S Akleylek","year":"2016","unstructured":"Akleylek, S., Bindel, N., Buchmann, J., Kr\u00e4mer, J., Marson, G.A.: An efficient lattice-based signature scheme with provably secure instantiation. In: Pointcheval, D., Nitaj, A., Rachidi, T. (eds.) AFRICACRYPT 2016. LNCS, vol. 9646, pp. 44\u201360. Springer, Cham (2016). https:\/\/doi.org\/10.1007\/978-3-319-31517-1_3"},{"key":"15_CR14","doi-asserted-by":"crossref","unstructured":"Alkim, E., Bindel, N., Buchmann, J., Dagdelen, \u00d6., Eaton, E., Gutoski, G., Kr\u00e4mer, J., Pawlega, F.: Revisiting TESLA in the quantum random oracle model. In: PQCrypto, pp. 143\u2013162 (2017)","DOI":"10.1007\/978-3-319-59879-6_9"},{"key":"15_CR15","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"28","DOI":"10.1007\/978-3-319-04852-9_2","volume-title":"Topics in Cryptology \u2013 CT-RSA 2014","author":"S Bai","year":"2014","unstructured":"Bai, S., Galbraith, S.D.: An improved compression technique for signatures based on learning with errors. In: Benaloh, J. (ed.) CT-RSA 2014. LNCS, vol. 8366, pp. 28\u201347. Springer, Cham (2014). https:\/\/doi.org\/10.1007\/978-3-319-04852-9_2"},{"issue":"1","key":"15_CR16","doi-asserted-by":"crossref","first-page":"4:1","DOI":"10.1145\/2756550","volume":"18","author":"G Doychev","year":"2015","unstructured":"Doychev, G., K\u00f6pf, B., Mauborgne, L., Reineke, J.: CacheAudit: a tool for the static analysis of cache side channels. ACM TISSEC 18(1), 4:1\u20134:32 (2015)","journal-title":"ACM TISSEC"},{"key":"15_CR17","doi-asserted-by":"crossref","unstructured":"Mantel, H., Weber, A., K\u00f6pf, B.: A systematic study of cache side channels across AES implementations. In: ESSoS, pp. 213\u2013230 (2017)","DOI":"10.1007\/978-3-319-62105-0_14"},{"key":"15_CR18","doi-asserted-by":"crossref","unstructured":"Doychev, G., K\u00f6pf, B.: Rigorous analysis of software countermeasures against cache attacks. In: PLDI, pp. 406\u2013421 (2017)","DOI":"10.1145\/3062341.3062388"},{"key":"15_CR19","unstructured":"Barreto, P.S.L.M., Longa, P., Naehrig, M., Ricardini, J.E., Zanon, G.: Sharper ring-LWE signatures. Cryptology ePrint Archive, Report 2016\/1026 (2016)"},{"key":"15_CR20","doi-asserted-by":"crossref","unstructured":"Abel, A., Reineke, J.: Reverse engineering of cache replacement policies in Intel microprocessors and their evaluation. In: ISPASS, pp. 141\u2013142 (2014)","DOI":"10.1109\/ISPASS.2014.6844475"},{"key":"15_CR21","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"288","DOI":"10.1007\/978-3-642-00596-1_21","volume-title":"Foundations of Software Science and Computational Structures","author":"G Smith","year":"2009","unstructured":"Smith, G.: On the foundations of quantitative information flow. In: de Alfaro, L. (ed.) FoSSaCS 2009. LNCS, vol. 5504, pp. 288\u2013302. Springer, Heidelberg (2009). https:\/\/doi.org\/10.1007\/978-3-642-00596-1_21"},{"key":"15_CR22","doi-asserted-by":"crossref","unstructured":"Shannon, C.E.: A mathematical theory of communication. Bell Syst. Tech. J. 27(3), 379\u2013423, 623\u2013656 (1948)","DOI":"10.1002\/j.1538-7305.1948.tb01338.x"},{"key":"15_CR23","doi-asserted-by":"crossref","unstructured":"K\u00f6pf, B., Smith, G.: Vulnerability bounds and leakage resilience of blinded cryptography under timing attacks. In: CSF, pp. 44\u201356 (2010)","DOI":"10.1109\/CSF.2010.11"},{"key":"15_CR24","doi-asserted-by":"crossref","unstructured":"Alvim, M.S., Chatzikokolakis, K., Palamidessi, C., Smith, G.: Measuring information leakage using generalized gain functions. In: CSF, pp. 265\u2013279 (2012)","DOI":"10.1109\/CSF.2012.26"},{"key":"15_CR25","unstructured":"Yarom, Y., Falkner, K.: FLUSH+RELOAD: a high resolution, low noise, L3 cache side-channel attack. In: USENIX Security, pp. 719\u2013732 (2014)"},{"key":"15_CR26","doi-asserted-by":"crossref","unstructured":"Cousot, P., Cousot, R.: Abstract interpretation: a unified lattice model for static analysis of programs by construction or approximation of fixpoints. In: POPL, pp. 238\u2013252 (1977)","DOI":"10.1145\/512950.512973"},{"key":"15_CR27","unstructured":"Doychev, G.: Commit f063813faa548da9bfb11dea9ff6fe39c0f11626: adding support for CDQ and NEG instructions. https:\/\/github.com\/cacheaudit\/cacheaudit\/commit\/f063813faa548da9bfb11dea9ff6fe39c0f11626 (2016). Accessed 23 May 2017"},{"key":"15_CR28","unstructured":"Degenbaev, U.: Formal specification of the x86 instruction set architecture. Ph.D. thesis, Universit\u00e4t des Saarlandes (2012)"},{"key":"15_CR29","unstructured":"Intel Corporation: Intel\u00ae 64 and IA-32 Architectures Optimization Reference Manual. Order Number: 248966\u2013032 (2016)"},{"key":"15_CR30","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"433","DOI":"10.1007\/978-3-642-34961-4_27","volume-title":"Advances in Cryptology \u2013 ASIACRYPT 2012","author":"L Ducas","year":"2012","unstructured":"Ducas, L., Nguyen, P.Q.: Learning a zonotope and more: cryptanalysis of NTRUsign countermeasures. In: Wang, X., Sako, K. (eds.) ASIACRYPT 2012. LNCS, vol. 7658, pp. 433\u2013450. Springer, Heidelberg (2012). https:\/\/doi.org\/10.1007\/978-3-642-34961-4_27"},{"key":"15_CR31","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"271","DOI":"10.1007\/11761679_17","volume-title":"Advances in Cryptology - EUROCRYPT 2006","author":"PQ Nguyen","year":"2006","unstructured":"Nguyen, P.Q., Regev, O.: Learning a parallelepiped: cryptanalysis of GGH and NTRU signatures. In: Vaudenay, S. (ed.) EUROCRYPT 2006. LNCS, vol. 4004, pp. 271\u2013288. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11761679_17"},{"key":"15_CR32","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"156","DOI":"10.1007\/11734727_14","volume-title":"Information Security and Cryptology - ICISC 2005","author":"D Molnar","year":"2006","unstructured":"Molnar, D., Piotrowski, M., Schultz, D., Wagner, D.: The program counter security model: automatic detection and removal of control-flow side channel attacks. In: Won, D.H., Kim, S. (eds.) ICISC 2005. LNCS, vol. 3935, pp. 156\u2013168. Springer, Heidelberg (2006). https:\/\/doi.org\/10.1007\/11734727_14"},{"key":"15_CR33","series-title":"Lecture Notes in Computer Science","doi-asserted-by":"publisher","first-page":"447","DOI":"10.1007\/978-3-319-24174-6_23","volume-title":"Computer Security \u2013 ESORICS 2015","author":"H Mantel","year":"2015","unstructured":"Mantel, H., Starostin, A.: Transforming out timing leaks, more or less. In: Pernul, G., Ryan, P.Y.A., Weippl, E. (eds.) ESORICS 2015. LNCS, vol. 9326, pp. 447\u2013467. Springer, Cham (2015). https:\/\/doi.org\/10.1007\/978-3-319-24174-6_23"},{"key":"15_CR34","doi-asserted-by":"crossref","unstructured":"Zhang, J., Zhang, Z., Ding, J., Snook, M., Dagdelen, \u00d6.: Authenticated key exchange from ideal lattices. In: EUROCRYPT, pp. 719\u2013751 (2015)","DOI":"10.1007\/978-3-662-46803-6_24"},{"key":"15_CR35","doi-asserted-by":"crossref","unstructured":"Buchmann, J., G\u00f6pfert, F., G\u00fcneysu, T., Oder, T., P\u00f6ppelmann, T.: High-performance and lightweight lattice-based public-key encryption. In: IoTPTS, pp. 2\u20139 (2016)","DOI":"10.1145\/2899007.2899011"}],"container-title":["Lecture Notes in Computer Science","Foundations and Practice of Security"],"original-title":[],"link":[{"URL":"http:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-319-75650-9_15","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2019,10,10]],"date-time":"2019-10-10T23:11:15Z","timestamp":1570749075000},"score":1,"resource":{"primary":{"URL":"http:\/\/link.springer.com\/10.1007\/978-3-319-75650-9_15"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2018]]},"ISBN":["9783319756493","9783319756509"],"references-count":35,"URL":"https:\/\/doi.org\/10.1007\/978-3-319-75650-9_15","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2018]]}}}