UT Institute of Computer Science Graduation Theses Registry


Optimization of the ROCA (CVE-2017-15361) Attack
Name Bruno Didier Produit
Abstract In 2017, Czech researchers found the vulnerability CVE-2017-15361 (the ROCA attack) in Infineon's proprietary RSA key generation algorithm. The researchers found that 2048-bit RSA key can be factored in only 140.8 CPU-years in the worst case scenario. The algorithm turned out to be used by 750 000 Estonian ID-cards. In this thesis, we implemented the ROCA attack and, based on the properties observed from the keys generated by the affected smartcards, found further optimizations which allow to improve the original attack from 140.8 CPU-years to 35.2 CPU-years for 90% of the keys and 70.4 CPU-years for the remaining 10% of the keys. As additional contribution, we provide a parallelized version of the attack that can be executed on an HPC.
Graduation Thesis language English
Graduation Thesis type Master - Cyber Security
Supervisor(s) Arnis Paršovs, MSc
Defence year 2019
PDF