An enhanced two-step CPA Side-channel analysis attack on ML-KEM

Mark Kennaway; Anh-Tuan Hoang; Ayesha Khalid; Ciara Rafferty; Maire O'Neill

doi:10.5220/0013638600003979

An enhanced two-step CPA Side-channel analysis attack on ML-KEM

Mark Kennaway, Anh-Tuan Hoang^*, Ayesha Khalid^*, Ciara Rafferty, Maire O'Neill

^*Corresponding author for this work

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

4 Downloads (Pure)

Abstract

This work presents an enhanced two-step Correlation Power Analysis (CPA) attack targeting the recently standardised ML-KEM on an ARM Cortex M4. Our enhancement exploits the knowledge of intermittent variables to identify sample points of interest and develop bespoke attack functions. Step one targets the odd coefficients of each Secret Key Polynomial Vector ( ˆ s), before step two targets the remaining even coefficients using more elaborate attack functions. After successfully demonstrating key recovery for the first set of ˆ s, we then characterise leakage behaviour, revealing a trend indicating recovery of each coefficient becomes more efficient with subsequent iterations of the internal doublebasemul operation. By applying our enhanced two step attack methodology, we successfully recovered the entire key using only 179 traces, without the need for elaborate preconditions or ciphertext manipulations. We obtain remarkable results in the initial stage of our attack, while the second phase achieves performance comparable to other recent studies.

Original language	English
Title of host publication	Proceedings of the 22nd International Conference on Security and Cryptography
Editors	Sabrina De Capitani Di Vimercati , Pierangela Samarati
Publisher	SciTePress
Pages	263 - 274
ISBN (Electronic)	9789897587603
DOIs	https://doi.org/10.5220/0013638600003979
Publication status	Published - 13 Jun 2025
Event	SECRYPT 2025 - Bilbao Duration: 11 Jun 2025 → 13 Jun 2025 https://secrypt.scitevents.org/

Publication series

Name	Proceedings of the International Conference on Security and Cryptography
ISSN (Electronic)	2184-7711

Conference

Conference	SECRYPT 2025
City	Bilbao
Period	11/06/2025 → 13/06/2025
Internet address	https://secrypt.scitevents.org/

Access to Document

10.5220/0013638600003979Licence: CC BY

An enhanced two-step CPA Side-channel analysis attack on ML-KEM
Copyright 2025 the authors. This is an open access article published under a Creative Commons Attribution-NonCommercial-NoDerivs License (https://creativecommons.org/licenses/by-nc-nd/4.0/), which permits distribution and reproduction for non-commercial purposes, provided the author and source are cited.
Final published version, 1.69 MBLicence: CC BY-NC-ND

Cite this

Kennaway, M., Hoang, A.-T., Khalid, A., Rafferty, C., & O'Neill, M. (2025). An enhanced two-step CPA Side-channel analysis attack on ML-KEM. In S. De Capitani Di Vimercati , & P. Samarati (Eds.), Proceedings of the 22nd International Conference on Security and Cryptography (pp. 263 - 274). (Proceedings of the International Conference on Security and Cryptography). SciTePress. https://doi.org/10.5220/0013638600003979

Kennaway, Mark ; Hoang, Anh-Tuan ; Khalid, Ayesha et al. / An enhanced two-step CPA Side-channel analysis attack on ML-KEM. Proceedings of the 22nd International Conference on Security and Cryptography. editor / Sabrina De Capitani Di Vimercati ; Pierangela Samarati. SciTePress, 2025. pp. 263 - 274 (Proceedings of the International Conference on Security and Cryptography).

@inproceedings{464319f4a34c4d6ea1dac641caf9d76d,

title = "An enhanced two-step CPA Side-channel analysis attack on ML-KEM",

abstract = "This work presents an enhanced two-step Correlation Power Analysis (CPA) attack targeting the recently standardised ML-KEM on an ARM Cortex M4. Our enhancement exploits the knowledge of intermittent variables to identify sample points of interest and develop bespoke attack functions. Step one targets the odd coefficients of each Secret Key Polynomial Vector ( ˆ s), before step two targets the remaining even coefficients using more elaborate attack functions. After successfully demonstrating key recovery for the first set of ˆ s, we then characterise leakage behaviour, revealing a trend indicating recovery of each coefficient becomes more efficient with subsequent iterations of the internal doublebasemul operation. By applying our enhanced two step attack methodology, we successfully recovered the entire key using only 179 traces, without the need for elaborate preconditions or ciphertext manipulations. We obtain remarkable results in the initial stage of our attack, while the second phase achieves performance comparable to other recent studies.",

author = "Mark Kennaway and Anh-Tuan Hoang and Ayesha Khalid and Ciara Rafferty and Maire O'Neill",

year = "2025",

month = jun,

day = "13",

doi = "10.5220/0013638600003979",

language = "English",

series = "Proceedings of the International Conference on Security and Cryptography",

publisher = "SciTePress",

pages = "263 -- 274",

editor = "{De Capitani Di Vimercati }, {Sabrina } and Samarati, {Pierangela }",

booktitle = "Proceedings of the 22nd International Conference on Security and Cryptography",

note = "SECRYPT 2025 ; Conference date: 11-06-2025 Through 13-06-2025",

url = "https://secrypt.scitevents.org/",

}

Kennaway, M , Hoang, A-T , Khalid, A , Rafferty, C & O'Neill, M 2025, An enhanced two-step CPA Side-channel analysis attack on ML-KEM. in S De Capitani Di Vimercati & P Samarati (eds), Proceedings of the 22nd International Conference on Security and Cryptography. Proceedings of the International Conference on Security and Cryptography, SciTePress, pp. 263 - 274, SECRYPT 2025, Bilbao, 11/06/2025. https://doi.org/10.5220/0013638600003979

An enhanced two-step CPA Side-channel analysis attack on ML-KEM. / Kennaway, Mark ; Hoang, Anh-Tuan ; Khalid, Ayesha et al.
Proceedings of the 22nd International Conference on Security and Cryptography. ed. / Sabrina De Capitani Di Vimercati ; Pierangela Samarati. SciTePress, 2025. p. 263 - 274 (Proceedings of the International Conference on Security and Cryptography).

Research output: Chapter in Book/Report/Conference proceeding › Conference contribution

TY - GEN

T1 - An enhanced two-step CPA Side-channel analysis attack on ML-KEM

AU - Kennaway, Mark

AU - Hoang, Anh-Tuan

AU - Khalid, Ayesha

AU - Rafferty, Ciara

AU - O'Neill, Maire

PY - 2025/6/13

Y1 - 2025/6/13

N2 - This work presents an enhanced two-step Correlation Power Analysis (CPA) attack targeting the recently standardised ML-KEM on an ARM Cortex M4. Our enhancement exploits the knowledge of intermittent variables to identify sample points of interest and develop bespoke attack functions. Step one targets the odd coefficients of each Secret Key Polynomial Vector ( ˆ s), before step two targets the remaining even coefficients using more elaborate attack functions. After successfully demonstrating key recovery for the first set of ˆ s, we then characterise leakage behaviour, revealing a trend indicating recovery of each coefficient becomes more efficient with subsequent iterations of the internal doublebasemul operation. By applying our enhanced two step attack methodology, we successfully recovered the entire key using only 179 traces, without the need for elaborate preconditions or ciphertext manipulations. We obtain remarkable results in the initial stage of our attack, while the second phase achieves performance comparable to other recent studies.

AB - This work presents an enhanced two-step Correlation Power Analysis (CPA) attack targeting the recently standardised ML-KEM on an ARM Cortex M4. Our enhancement exploits the knowledge of intermittent variables to identify sample points of interest and develop bespoke attack functions. Step one targets the odd coefficients of each Secret Key Polynomial Vector ( ˆ s), before step two targets the remaining even coefficients using more elaborate attack functions. After successfully demonstrating key recovery for the first set of ˆ s, we then characterise leakage behaviour, revealing a trend indicating recovery of each coefficient becomes more efficient with subsequent iterations of the internal doublebasemul operation. By applying our enhanced two step attack methodology, we successfully recovered the entire key using only 179 traces, without the need for elaborate preconditions or ciphertext manipulations. We obtain remarkable results in the initial stage of our attack, while the second phase achieves performance comparable to other recent studies.

U2 - 10.5220/0013638600003979

DO - 10.5220/0013638600003979

M3 - Conference contribution

T3 - Proceedings of the International Conference on Security and Cryptography

SP - 263

EP - 274

BT - Proceedings of the 22nd International Conference on Security and Cryptography

A2 - De Capitani Di Vimercati , Sabrina

A2 - Samarati, Pierangela

PB - SciTePress

T2 - SECRYPT 2025

Y2 - 11 June 2025 through 13 June 2025

ER -

Kennaway M , Hoang AT , Khalid A , Rafferty C , O'Neill M. An enhanced two-step CPA Side-channel analysis attack on ML-KEM. In De Capitani Di Vimercati S, Samarati P, editors, Proceedings of the 22nd International Conference on Security and Cryptography. SciTePress. 2025. p. 263 - 274. (Proceedings of the International Conference on Security and Cryptography). doi: 10.5220/0013638600003979

An enhanced two-step CPA Side-channel analysis attack on ML-KEM

Abstract

Publication series

Conference

Access to Document

Fingerprint

Cite this