Skip to content

Commit

Permalink
Update docs/audit_report/src/side_channels/01_02_ml_dsa.rst
Browse files Browse the repository at this point in the history
  • Loading branch information
aewag authored Dec 17, 2024
1 parent 9cd4c8a commit 9099136
Showing 1 changed file with 3 additions and 0 deletions.
3 changes: 3 additions & 0 deletions docs/audit_report/src/side_channels/01_02_ml_dsa.rst
Original file line number Diff line number Diff line change
Expand Up @@ -51,6 +51,9 @@ The reasoning for each identified leak is explained below.

In the analysis with DATA, leaks were detected in the functions `make_hint()` (:srcref:`[src/lib/pubkey/dilithium/dilithium_common]/dilithium_algos.cpp:843|make_hint`),
and `hint_pack()` (:srcref:`[src/lib/pubkey/dilithium/dilithium_common]/dilithium_algos.cpp:232|hint_pack`).
The leakage observation is due to a combination of the measurement method of DATA and the rejection method of ML-DSA.
The rejection method leads to a changed pointer base address which is detected by DATA.
Hence, the leaks of the hints are not considered problematic.
The function `make_hint()` generates hints to verify the signature.
The `hint_pack()` function adds these hints to the signature.
In the pseudocode, this corresponds to the function `MakeHint()` in line 23.
Expand Down

0 comments on commit 9099136

Please sign in to comment.