https://github.com/crocs-muni/minerva
Artifacts for the "Minerva: The curse of ECDSA nonces" paper at CHES 2020
https://github.com/crocs-muni/minerva
ches-2020 elliptic-curve-cryptography elliptic-curves side-channel-attacks timing-attacks
Last synced: 5 months ago
JSON representation
Artifacts for the "Minerva: The curse of ECDSA nonces" paper at CHES 2020
- Host: GitHub
- URL: https://github.com/crocs-muni/minerva
- Owner: crocs-muni
- License: mit
- Created: 2019-12-11T18:47:24.000Z (over 6 years ago)
- Default Branch: master
- Last Pushed: 2022-06-06T19:27:51.000Z (about 4 years ago)
- Last Synced: 2025-09-10T06:17:21.658Z (10 months ago)
- Topics: ches-2020, elliptic-curve-cryptography, elliptic-curves, side-channel-attacks, timing-attacks
- Language: Python
- Homepage: https://minerva.crocs.fi.muni.cz
- Size: 79.3 MB
- Stars: 29
- Watchers: 5
- Forks: 5
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# [](https://minerva.crocs.fi.muni.cz/ "Minerva")
This package contains the tools for testing the presence of the Minerva vulnerability as well
as proof-of-concept code exploiting it. It also contains datasets and code for experiments
performed in the paper.
See [our website](https://minerva.crocs.fi.muni.cz/) for more info.
## CPLC checker
The CPLC checker tests smartcard's CPLC data(identification data of a particular smart card model
from the GlobalPlatform standard) against a list of known or assumed vulnerable cards.
## PoC
The proof-of-concept performs the attack on a JavaCard with a custom target applet or on
target apps using the vulnerable libraries.
## Tester
The tester uses ECDH to test presence of bit-length timing leakage using a custom JavaCard applet.
## Data & Experiments
The `data` directory contains the datasets collected for the paper. The experiments directory
contains experiments run on the [Metacentrum](https://metacentrum.cz/en/) grid computing network.