Backdooring Post-Quantum Cryptography: Kleptographic Attacks on Lattice-based KEMs

Backdooring Post-Quantum Cryptography: Kleptographic Attacks on Lattice-based KEMs

연구 분야: Cryptography

학회: GLSVLSI '24: Proceedings of the Great Lakes Symposium on VLSI 2024

Post-quantum Cryptography (PQC) has reached the verge of standardization competition, with Kyber as a winning candidate. In this work, we demonstrate practical backdoor insertion in Kyber through kleptrography. The backdoor can be inserted using classical techniques like ECDH or post-quantum Classic Mceliece. The inserted backdoor targets the key generation procedure where generated output public keys subliminally leak information about the secret key to the owner of the backdoor. We demonstrate first practical instantiations of such attack at the protocol level by validating it on TLS 1.3.