Supervision : Damien VERGNAUD
Co-supervision : Alexandre BERZATI

Implementations of Post-Quantum Cryptography Algorithms Secured Against Physical Attacks

This thesis investigates the challenges of implementing a secure and optimized version of the Dilithium signature scheme on embedded devices, focusing on side-channel attacks and fault attacks.

The thesis contributes to the broader field of post-quantum cryptography by exploring practical vulnerabilities and countermeasures in real-world deployments.

The first contribution concerns the optimization of the Dilithium signature algorithm. The study compares polynomial-based and vector-based (of polynomials) implementations, demonstrating that a judicious choice of data structures and computations can lead to significant memory savings without substantial performance overhead. This optimization is crucial for embedded devices, where memory is often limited.

The thesis also focuses on side-channel and fault attacks against Dilithium. With regards to side-channel attacks, the work identified an intermediate value leakage exploitable by profiled attacks, enabling robust recovery of the secret key with a minimum of 200 000 signatures. Regarding fault attacks, the thesis has identified several places relevant both in the signature algorithm, allowing recovery of the secret key, and in the verification algorithm, allowing acceptance of incorrect signatures.

The thesis finally contributes to understanding how to balance security and efficiency in post-quantum cryptographic implementations.

Phd defence : 04/11/2025

Jury members :

Jean-Sébastien CORON, Université du Luxembourg [Rapporteur]
Francois-Xavier STANDAERT, UC Louvain [Rapporteur]
Damien VERGNAUD, Sorbonne Université
Alexandre BERZATI, Thales
Guénaël RENAULT, Polytechnique
Sonia BELAÏD, CryptoExperts
Melissa ROSSI, CryptoExperts

2023-2025 Publications

• 2025
  • A. Calle Viera : “Implementations of Post-Quantum Cryptography Algorithms Secured Against Physical Attacks”, thesis, phd defence 04/11/2025, supervision Vergnaud, Damien, co-supervision : Alexandre, BERZATI (2025)
  • P. Azevedo‑Oliveira, A. Calle Viera, B. Cogliati, L. Goubin : “Finding a Polytope: A Practical Fault Attack Against Dilithium”, Public-Key Cryptography -- PKC 2025, vol. 15674, Lecture Notes in Computer Science, Røros, Norway, pp. 259-283, (Springer Nature Switzerland), (ISBN: 978-3-031-91820-9) (2025)
• 2024
  • A. Calle Viera, A. Berzati, K. Heydemann : “Fault Attacks Sensitivity of Public Parameters in the Dilithium Verification”, Smart Card Research and Advanced Applications, vol. 14530, Lecture Notes in Computer Science, Amsterdam, Netherlands, pp. 62-83, (Springer Nature Switzerland), (ISBN: 978-3-031-54409-5) (2024)
• 2023
  • A. Berzati, A. Calle Viera, M. Chartouny, S. Madec, D. Vergnaud, D. Vigilant : “Exploiting Intermediate Value Leakage in Dilithium: A Template-Based Approach”, IACR Transactions on Cryptographic Hardware and Embedded Systems, vol. 2023 (4), pp. 188-210, (IACR) (2023)