Side-Channel Vulnerabilities, a Closer Look at NIST Standardization (C31a)
The algorithms CRYSTAL-Cyber, CRYSTAL-Dilithium, SPHINCS+, and FALCON form the basis of FIPS202, FIPS203, and FIPS204. Selected by NIST after rigorous testing for various resources, these algorithms emerged as optimal choices. However, absent from the selection criteria were considerations for vulnerability to side-channel attacks and potential overheads of implementing side-channel countermeasures. Recent research has unveiled potential attack paths on these algorithms. This presentation provides an overview of this research and proposes that future metric considerations encompass side-channel resistance in the selection process.