Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium

Bingli Liu; Jingqi Zhang; An Wang

doi:10.1109/ICICT64582.2025.00013

Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium

Bingli Liu
, Jingqi Zhang
, An Wang^*

^*Corresponding author for this work

Beijing Institute of Technology

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

Abstract

As advancements in quantum computing continue, post-quantum cryptography has become essential for ensuring the security of sensitive information, and side-channel resistance is one of the significant concerns. In this paper, we investigate the side-channel resistance of CRYSTALS-Dilithium, which has been selected by NIST as a standard post-quantum signature scheme. We propose a novel single-bit leakage attack that leverages signatures transmitted during communication to recover a target bit of large randomness used in the CRYSTALS-Dilithium algorithm. Notably, this recovered bit directly aids in reconstructing of the private key within the algorithm. To validate our methodology, we adopt the officially released source code of the CRYSTALS-Dilithium algorithm provided by NIST and deploy it on a Cortex M4 architecture. The power consumption leakages during the execution of the CRYSTALS-Dilithium algorithm are recorded, and the leakages are leveraged to execute the proposed attack alongside state-of-the-art attacks. Experimental results demonstrate that, when applying our proposed method, the success rate of single-bit recovery can be improved by approximately 20\% compared to existing state-of-the-art attacks, with an attack efficiency gain of approximately three times.

Original language	English
Title of host publication	Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025
Publisher	Institute of Electrical and Electronics Engineers Inc.
Pages	43-48
Number of pages	6
ISBN (Electronic)	9798331505189
DOIs	https://doi.org/10.1109/ICICT64582.2025.00013
Publication status	Published - 2025
Externally published	Yes
Event	8th International Conference on Information and Computer Technologies, ICICT 2025 - Hawaii-Hilo, United States Duration: 14 Mar 2025 → 16 Mar 2025

Publication series

Name	Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025

Conference

Conference	8th International Conference on Information and Computer Technologies, ICICT 2025
Country/Territory	United States
City	Hawaii-Hilo
Period	14/03/25 → 16/03/25

UN SDGs

This output contributes to the following UN Sustainable Development Goals (SDGs)

SDG 3 Good Health and Well-being

Keywords

CRYSTALS-Dilithium
post-quantum cryptography
randomness bit leakage
side-channel attacks

Access to Document

10.1109/ICICT64582.2025.00013

Cite this

Liu, B., Zhang, J., & Wang, A. (2025). Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium. In Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025 (pp. 43-48). (Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025). Institute of Electrical and Electronics Engineers Inc.. https://doi.org/10.1109/ICICT64582.2025.00013

Liu, Bingli ; Zhang, Jingqi ; Wang, An. / Single Bit Randomness Leakage : The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium. Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025. Institute of Electrical and Electronics Engineers Inc., 2025. pp. 43-48 (Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025).

@inproceedings{129573954f884f47976e7910cdb46587,

title = "Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium",

abstract = "As advancements in quantum computing continue, post-quantum cryptography has become essential for ensuring the security of sensitive information, and side-channel resistance is one of the significant concerns. In this paper, we investigate the side-channel resistance of CRYSTALS-Dilithium, which has been selected by NIST as a standard post-quantum signature scheme. We propose a novel single-bit leakage attack that leverages signatures transmitted during communication to recover a target bit of large randomness used in the CRYSTALS-Dilithium algorithm. Notably, this recovered bit directly aids in reconstructing of the private key within the algorithm. To validate our methodology, we adopt the officially released source code of the CRYSTALS-Dilithium algorithm provided by NIST and deploy it on a Cortex M4 architecture. The power consumption leakages during the execution of the CRYSTALS-Dilithium algorithm are recorded, and the leakages are leveraged to execute the proposed attack alongside state-of-the-art attacks. Experimental results demonstrate that, when applying our proposed method, the success rate of single-bit recovery can be improved by approximately 20\textbackslash{}\% compared to existing state-of-the-art attacks, with an attack efficiency gain of approximately three times.",

keywords = "CRYSTALS-Dilithium, post-quantum cryptography, randomness bit leakage, side-channel attacks",

author = "Bingli Liu and Jingqi Zhang and An Wang",

note = "Publisher Copyright: {\textcopyright} 2025 IEEE.; 8th International Conference on Information and Computer Technologies, ICICT 2025 ; Conference date: 14-03-2025 Through 16-03-2025",

year = "2025",

doi = "10.1109/ICICT64582.2025.00013",

language = "English",

series = "Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025",

publisher = "Institute of Electrical and Electronics Engineers Inc.",

pages = "43--48",

booktitle = "Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025",

address = "United States",

}

Liu, B, Zhang, J & Wang, A 2025, Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium. in Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025. Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025, Institute of Electrical and Electronics Engineers Inc., pp. 43-48, 8th International Conference on Information and Computer Technologies, ICICT 2025, Hawaii-Hilo, United States, 14/03/25. https://doi.org/10.1109/ICICT64582.2025.00013

Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium. / Liu, Bingli; Zhang, Jingqi; Wang, An.
Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025. Institute of Electrical and Electronics Engineers Inc., 2025. p. 43-48 (Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution › peer-review

TY - GEN

T1 - Single Bit Randomness Leakage

T2 - 8th International Conference on Information and Computer Technologies, ICICT 2025

AU - Liu, Bingli

AU - Zhang, Jingqi

AU - Wang, An

PY - 2025

Y1 - 2025

N2 - As advancements in quantum computing continue, post-quantum cryptography has become essential for ensuring the security of sensitive information, and side-channel resistance is one of the significant concerns. In this paper, we investigate the side-channel resistance of CRYSTALS-Dilithium, which has been selected by NIST as a standard post-quantum signature scheme. We propose a novel single-bit leakage attack that leverages signatures transmitted during communication to recover a target bit of large randomness used in the CRYSTALS-Dilithium algorithm. Notably, this recovered bit directly aids in reconstructing of the private key within the algorithm. To validate our methodology, we adopt the officially released source code of the CRYSTALS-Dilithium algorithm provided by NIST and deploy it on a Cortex M4 architecture. The power consumption leakages during the execution of the CRYSTALS-Dilithium algorithm are recorded, and the leakages are leveraged to execute the proposed attack alongside state-of-the-art attacks. Experimental results demonstrate that, when applying our proposed method, the success rate of single-bit recovery can be improved by approximately 20\% compared to existing state-of-the-art attacks, with an attack efficiency gain of approximately three times.

AB - As advancements in quantum computing continue, post-quantum cryptography has become essential for ensuring the security of sensitive information, and side-channel resistance is one of the significant concerns. In this paper, we investigate the side-channel resistance of CRYSTALS-Dilithium, which has been selected by NIST as a standard post-quantum signature scheme. We propose a novel single-bit leakage attack that leverages signatures transmitted during communication to recover a target bit of large randomness used in the CRYSTALS-Dilithium algorithm. Notably, this recovered bit directly aids in reconstructing of the private key within the algorithm. To validate our methodology, we adopt the officially released source code of the CRYSTALS-Dilithium algorithm provided by NIST and deploy it on a Cortex M4 architecture. The power consumption leakages during the execution of the CRYSTALS-Dilithium algorithm are recorded, and the leakages are leveraged to execute the proposed attack alongside state-of-the-art attacks. Experimental results demonstrate that, when applying our proposed method, the success rate of single-bit recovery can be improved by approximately 20\% compared to existing state-of-the-art attacks, with an attack efficiency gain of approximately three times.

KW - CRYSTALS-Dilithium

KW - post-quantum cryptography

KW - randomness bit leakage

KW - side-channel attacks

UR - https://www.scopus.com/pages/publications/105010758316

U2 - 10.1109/ICICT64582.2025.00013

DO - 10.1109/ICICT64582.2025.00013

M3 - Conference contribution

AN - SCOPUS:105010758316

T3 - Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025

SP - 43

EP - 48

BT - Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025

PB - Institute of Electrical and Electronics Engineers Inc.

Y2 - 14 March 2025 through 16 March 2025

ER -

Liu B, Zhang J, Wang A. Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium. In Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025. Institute of Electrical and Electronics Engineers Inc. 2025. p. 43-48. (Proceedings - 2025 8th International Conference on Information and Computer Technologies, ICICT 2025). doi: 10.1109/ICICT64582.2025.00013

Single Bit Randomness Leakage: The Vulnerability in Post-Quantum Cryptography Standard CRYSTALS-Dilithium

Abstract

Publication series

Conference

UN SDGs

Keywords

Access to Document

Other files and links

Fingerprint

Cite this