LadderLeak - Breaking ECDSA with Less than One Bit of Nonce Leakage

Explore the critical vulnerabilities in ECDSA signature schemes through this 34-minute Black Hat conference talk. Delve into the LadderLeak attack, which exploits less than one bit of nonce leakage to compromise ECDSA security. Learn about the implementation pitfalls of ECDSA, focusing on the sensitive nature of the random nonce generated during signing. Follow the presenters, Diego De Freitas Aranha and Akira Takahashi, as they guide you through the attack's background, experimental setup, memory traces, and key takeaways. Gain insights into the Hidden Number Problem, technical overview, methodology, bias function, and tradeoffs involved in the attack. Understand the significant implications of this research for cryptographic implementations and the importance of robust security measures in digital signature schemes.

Introduction
Background
LadderLeak
Experimental Setup
Memory traces
Main takeaways
Part 2 Hidden Number Problem
Technical Overview
Methodology
Bias Function
Tradeoffs
Results
Outro