	US 12,192,319 B2
	Apparatus and method for modular multiplication resistant to side-channel attack
Hyosun Hwang, Bucheon-si (KR); Gisoo Seo, Suwon-si (KR); Jonghoon Shin, Hwaseong-si (KR); Hyojoon Jin, Hwaseong-si (KR); Ingoo Heo, Yongin-si (KR); and Jinsu Hyun, Seoul (KR)
Assigned to SAMSUNG ELECTRONICS CO., LTD., Suwon-si (KR)
Filed by Samsung Electronics Co., Ltd., Suwon-si (KR)
Filed on Sep. 7, 2021, as Appl. No. 17/467,546.
Claims priority of application No. 10-2021-0008263 (KR), filed on Jan. 20, 2021.
Prior Publication US 2022/0231832 A1, Jul. 21, 2022
Int. Cl. G06F 21/72 (2013.01); G06F 7/58 (2006.01); G06F 17/11 (2006.01); G06F 21/55 (2013.01); G06F 21/75 (2013.01); G06F 21/78 (2013.01); H04L 9/00 (2022.01); H04L 9/08 (2006.01); G06F 7/72 (2006.01)

CPC H04L 9/004 (2013.01) [G06F 7/588 (2013.01); G06F 17/11 (2013.01); G06F 21/556 (2013.01); G06F 21/72 (2013.01); G06F 21/755 (2017.08); G06F 21/78 (2013.01); H04L 9/0869 (2013.01); G06F 7/722 (2013.01); G06F 21/55 (2013.01)]

17 Claims

1. A device comprising:

a random number generator configured to generate a random number;

a memory configured to store at least one lookup table; and

a processing circuit configured to generate a generator based on the random number, create the at least one lookup table based on the generator, and write the at least one lookup table to the memory,

wherein the processing circuit is configured to access the memory based on a first input and a second input, and generate a result of a modular multiplication of the first input by the second input based on the at least one lookup table, and

wherein the processing circuit is configured to obtain a plurality of candidate generators smaller than a modulus of the modular multiplication based on the modulus of the modular multiplication, and select one of the plurality of candidate generators based on the random number.