Correlation power analysis of LESS and CROSS

Maciej Czuprynko; Anisha Mukherjee; Sujoy Sinha Roy

Correlation power analysis of LESS and CROSS

Maciej Czuprynko, Anisha Mukherjee, Sujoy Sinha Roy

Institute of Information Security (7050)

Research output: Chapter in Book/Report/Conference proceeding › Conference paper › peer-review

Abstract

This paper presents a side-channel attack targeting the LESS and CROSS post-quantum digital signature schemes, resulting in full key recovery for both. These schemes have advanced to the second round of NIST’s call for additional signatures. By leveraging correlation power analysis and horizontal attacks, we are able to recover the secret key by observing the power consumption during the multiplication of an ephemeral secret vector with a public matrix. The attack path is enabled by the presence of a direct link between the secret key elements and the ephemeral secret, given correct responses. This attack targets version 1.2 of both schemes. In both settings we can recover the secret key in a single trace for the NIST’s security level I parameter set. Additionally, we propose improvements to the existing horizontal attack on CROSS, reducing the required rounds that need to be observed by an order of magnitude for the same parameter sets.

Original language	English
Title of host publication	Africacrypt 2025
Subtitle of host publication	Progress in Cryptology
Publication status	Accepted/In press - 2025
Event	16th International Conference on Cryptology, Progress in Cryptology - AFRICACRYPT 2025 - Rabat, Morocco Duration: 21 Jul 2025 → 23 Jul 2025

Conference

Conference	16th International Conference on Cryptology, Progress in Cryptology - AFRICACRYPT 2025
Abbreviated title	AFRICACRYPT 2025
Country/Territory	Morocco
City	Rabat
Period	21/07/25 → 23/07/25

Keywords

Side-channel attacks
Post-quantum cryptography
CROSS
LESS

Access to Document

https://eprint.iacr.org/2025/839Licence: CC BY 4.0

SINFONIA - Memory architecture
Mangard, S. (Co-Investigator (CoI))
1/01/25 → 31/12/26
Project: Research project
FWF - ISOCrystals - Secure and Efficient Isogeny-based Cryptography in Hardware
Sinha Roy, S. (Co-Investigator (CoI))
3/06/24 → 2/12/27
Project: Research project

Cite this

@inproceedings{8f9c55d52c844286a69310502449bff9,

title = "Correlation power analysis of LESS and CROSS",

abstract = "This paper presents a side-channel attack targeting the LESS and CROSS post-quantum digital signature schemes, resulting in full key recovery for both. These schemes have advanced to the second round of NIST{\textquoteright}s call for additional signatures. By leveraging correlation power analysis and horizontal attacks, we are able to recover the secret key by observing the power consumption during the multiplication of an ephemeral secret vector with a public matrix. The attack path is enabled by the presence of a direct link between the secret key elements and the ephemeral secret, given correct responses. This attack targets version 1.2 of both schemes. In both settings we can recover the secret key in a single trace for the NIST{\textquoteright}s security level I parameter set. Additionally, we propose improvements to the existing horizontal attack on CROSS, reducing the required rounds that need to be observed by an order of magnitude for the same parameter sets.",

keywords = "Side-channel attacks, Post-quantum cryptography, CROSS, LESS",

author = "Maciej Czuprynko and Anisha Mukherjee and {Sinha Roy}, Sujoy",

year = "2025",

language = "English",

booktitle = "Africacrypt 2025",

note = "16th International Conference on Cryptology, Progress in Cryptology - AFRICACRYPT 2025, AFRICACRYPT 2025 ; Conference date: 21-07-2025 Through 23-07-2025",

}

TY - GEN

T1 - Correlation power analysis of LESS and CROSS

AU - Czuprynko, Maciej

AU - Mukherjee, Anisha

AU - Sinha Roy, Sujoy

PY - 2025

Y1 - 2025

N2 - This paper presents a side-channel attack targeting the LESS and CROSS post-quantum digital signature schemes, resulting in full key recovery for both. These schemes have advanced to the second round of NIST’s call for additional signatures. By leveraging correlation power analysis and horizontal attacks, we are able to recover the secret key by observing the power consumption during the multiplication of an ephemeral secret vector with a public matrix. The attack path is enabled by the presence of a direct link between the secret key elements and the ephemeral secret, given correct responses. This attack targets version 1.2 of both schemes. In both settings we can recover the secret key in a single trace for the NIST’s security level I parameter set. Additionally, we propose improvements to the existing horizontal attack on CROSS, reducing the required rounds that need to be observed by an order of magnitude for the same parameter sets.

AB - This paper presents a side-channel attack targeting the LESS and CROSS post-quantum digital signature schemes, resulting in full key recovery for both. These schemes have advanced to the second round of NIST’s call for additional signatures. By leveraging correlation power analysis and horizontal attacks, we are able to recover the secret key by observing the power consumption during the multiplication of an ephemeral secret vector with a public matrix. The attack path is enabled by the presence of a direct link between the secret key elements and the ephemeral secret, given correct responses. This attack targets version 1.2 of both schemes. In both settings we can recover the secret key in a single trace for the NIST’s security level I parameter set. Additionally, we propose improvements to the existing horizontal attack on CROSS, reducing the required rounds that need to be observed by an order of magnitude for the same parameter sets.

KW - Side-channel attacks

KW - Post-quantum cryptography

KW - CROSS

KW - LESS

M3 - Conference paper

BT - Africacrypt 2025

T2 - 16th International Conference on Cryptology, Progress in Cryptology - AFRICACRYPT 2025

Y2 - 21 July 2025 through 23 July 2025

ER -

Correlation power analysis of LESS and CROSS

Abstract

Conference

Keywords

Access to Document

Fingerprint

Projects

SINFONIA - Memory architecture

FWF - ISOCrystals - Secure and Efficient Isogeny-based Cryptography in Hardware

Cite this