Profiled Side-Channel Attack on Cryptosystems Based on the Binary Syndrome Decoding Problem

The NIST standardization process for post-quantum cryptography has been drawing the attention of researchers to submitted candidates. One direction research consists in implementing those candidates on embedded systems and that exposes them physical attacks return. Classic McEliece cryptosystem, which is among four finalists round 3 Key Encapsulation Mechanism category, builds its security hardness syndrome decoding problem, a classic hard problem code-based cryptography. This cryptosystem was recently targeted by laser fault injection attack leading message recovery. Regrettably, setting very restrictive it does not tolerate any error faulty syndrome. Moreover, depends strong attacker model injection, apply optimised implementations algorithm make optimal usage machine words capacity. In this article, we propose change angle perform message-recovery relies side-channel information only. We improve previously published work several key aspects. First, show information, obtained with power consumption analysis, sufficient obtain an integer syndrome, as required framework. done leveraging learning techniques recover Hamming weight accurately. Second, put forward computationally-efficient method, based simple dot product information-set algorithms, from the, possibly inaccurate, recovered Finally, present masking countermeasure against proposed attack.