Researchers have found a security flaw in the U.S. government's quantum-resistant algorithm.
The flaw leaves the algorithm susceptible to electromagnetic physical attacks.
- The
specific algorithm is named CRYSTALS-Kyber and is one of the four main
algorithms the U.S. government chose to protect its digital
infrastructure against cyberattacks powered by quantum computing.
- If the flaw is successfully breached, hackers could steal information such as ciphertext and encryption keys.
- The
side-channel attack enables hackers to steal information in a plethora
of ways, including extracting secrets from a cryptosystem through
measurement and analysis of physical parameters. This method could be
deployed through:
- supply current,
- execution time,
- and electromagnetic emission.
- The
researchers have also developed a new message recovery method called
cyclic rotation that manipulates ciphertexts to increase the leakage of
message bits, thereby increasing the success rate of message recovery.
