Matthieu Rivain

I'm a researcher and entrepreneur, CEO at CryptoExperts, a service and technology company in cryptography. My current work involves several aspects of cryptography and its applications. This webpage is dedicated to my research activity.

 

News

• May 2025: Our paper Transistor: a TFHE-friendly Stream Cipher (joint work with Jules Baudrin, Sonia Belaïd, Nicolas Bon, Christina Boura, Anne Canteaut, Gaëtan Leurent, Pascal Paillier, Léo Perrin, Yann Rotella and Samuel Tap) has been accepted at CRYPTO.
• April 2025: First edition of CASCADE — the merged conference of CARDIS and COSADE — where I served as program co-chair.
• April 2025: Our paper SoK: A Methodology to Achieve Provable Side-Channel Security in Real-World Implementations (joint work with Sonia Belaïd, Gaëtan Cassiers, Camille Mutschler, Thomas Roche, François-Xavier Standaert and Abdul Rahman Taleb) has been accepted in IACR CiC.
• March 2025: Our paper Threshold Computation in the Head: Improved Framework for Post-Quantum Signatures and Zero-Knowledge Arguments (joint work with Thibauld Feneuil) has been accepted in Journal of Cryptology.
• February 2025: The 3-volume Embedded Cryptography book, which I co-edited, is now available from ISTE and Wiley.
• January 2025: Our paper New Techniques for Random Probing Security and Application to Raccoon Signature Scheme (joint work with Sonia Belaïd and Mélissa Rossi) has been accepted at EUROCRYPT.
• October 2024: The four post-quantum signature candidates that I co-submitted to NIST — MQOM, SDitH, RYDE, and Mirath — have been selected for Round 2. I'm also joining the PERK consortium as a Round 2 submitter.

Publications

Preprints

• SmallWood: Hash-Based Polynomial Commitments and Zero-Knowledge Arguments for Relatively Small Instances
  Joint work with Thibauld Feneuil.
• Blinding Post-Quantum Hash-and-Sign Signatures
  Joint work with Charles Bouillaguet, Thibauld Feneuil, Jules Maire, Julia Sauvage, and Damien Vergnaud.
• Masking-Friendly Post-Quantum Signatures in the Threshold-Computation-in-the-Head Framework
  Joint work with Thibauld Feneuil and Auguste Warmé-Janville.
• CAPSS: A Framework for SNARK-Friendly Post-Quantum Signatures
  Joint work with Thibauld Feneuil.

2025

• Threshold Computation in the Head: Improved Framework for Post-Quantum Signatures and Zero-Knowledge Arguments - Journal of Cryptology
  Joint work with Thibauld Feneuil.
• Transistor: a TFHE-friendly Stream Cipher - CRYPTO
  Joint work with Jules Baudrin, Sonia Belaïd, Nicolas Bon, Christina Boura, Anne Canteaut, Gaëtan Leurent, Pascal Paillier, Léo Perrin, Yann Rotella and Samuel Tap.
• New Techniques for Random Probing Security and Application to Raccoon Signature Scheme - EUROCRYPT
  Joint work with Sonia Belaïd and Mélissa Rossi.
• RYDE: A Digital Signature Scheme based on Rank-Syndrome-Decoding Problem with MPCitH Paradigm - Designs, Codes and Cryptography
  Joint work with Loïc Bidoux, Jesús-Javier Chi-Domínguez, Thibauld Feneuil, Philippe Gaborit, Antoine Joux and Adrien Vinçotte.
• SoK: A Methodology to Achieve Provable Side-Channel Security in Real-World Implementations - IACR CiC
  Joint work with Sonia Belaïd, Gaëtan Cassiers, Camille Mutschler, Thomas Roche, François-Xavier Standaert and Abdul Rahman Taleb.

2024

• Dual Support Decomposition in the Head: Shorter Signatures from Rank SD and MinRank - ASIACRYPT
  Joint work with Loïc Bidoux, Thibauld Feneuil, Philippe Gaborit and Romaric Neveu.
• Formal Definition and Verification for Combined Random Fault and Random Probing Security - ASIACRYPT
  Joint work with Sonia Belaïd, Jakob Feldtkeller, Tim Güneysu, Anna Guinet, Jan Richter-Brockmann, Pascal Sasdrich and Abdul Rahman Taleb.
• Optimized Homomorphic Evaluation of Boolean Functions - IACR TCHES
  Joint work with Nicolas Bon and David Pointcheval.
• OBSCURE: Versatile Software Obfuscation from a Lightweight Secure Element - IACR TCHES
  Joint work with Darius Mercadier, Viet Sang Nguyen and Aleksei Udovenko.
• MQ on my Mind: Post-Quantum Signatures from the Non-Structured Multivariate Quadratic Problem - EuroS&P
  Joint work with Ryad Benadjila and Thibauld Feneuil.

2023

• Threshold Linear Secret Sharing to the Rescue of MPC-in-the-Head - ASIACRYPT
  Joint work with Thibauld Feneuil.
• Unifying Freedom and Separation for Tight Probing-Secure Composition - CRYPTO
  Joint work with Sonia Belaïd, Gaëtan Cassiers and Abdul Rahman Taleb.
• High Order Side-Channel Security for Elliptic-Curve Implementations - IACR TCHES
  Joint work with Sonia Belaïd.
• Shared Permutation for Syndrome Decoding: New Zero-Knowledge Protocol and Code-Based Signature - Designs, Codes and Cryptography
  Joint work with Thibauld Feneuil and Antoine Joux.
• White-Box Cryptography - Chapter in Encyclopedia of Cryptography, Security and Privacy

2022

• Zero-Knowledge Protocols for the Subset Sum Problem from MPC-in-the-Head with Rejection - ASIACRYPT
  Joint work with Thibauld Feneuil, Jules Maire and Damien Vergnaud.
• Syndrome Decoding in the Head: Shorter Signatures from Zero-Knowledge Proofs - CRYPTO
  Joint work with Thibauld Feneuil and Antoine Joux.
• IronMask: Versatile Verification of Masking Security - IEEE S&P
  Joint work with Sonia Belaïd, Darius Mercadier and Abdul Rahman Taleb.

2021

• Dynamic Random Probing Expansion with Quasi Linear Asymptotic Complexity - ASIACRYPT
  Joint work with Sonia Belaïd, Abdul Rahman Taleb and Damien Vergaud .
• On the Power of Expansion: More Efficient Constructions in the Random Probing Model - EUROCRYPT
  Joint work with Sonia Belaïd and Abdul Rahman Taleb.
• Probing Security through Input-Output Separation and Revisited Quasilinear Masking - IACR TCHES
  Joint work with Dahmun Goudarzi, Thomas Prest and Damien Vergnaud.

2020

• Random Probing Security: Verification, Composition, Expansion and New Constructions - CRYPTO
  Joint work with Sonia Belaïd, Jean-Sébastien Coron, Emmanuel Prouff and Abdul Rahman Taleb.
• Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks - IACR TCHES
  Joint work with Louis Goubin and Junwei Wang .
• Pyjamask: Block Cipher and Authenticated Encryption with Highly Efficient Masked Implementation - IACR ToSC
  Joint work with Dahmun Goudarzi, Jérémy Jean, Stefan Kölbl, Thomas Peyrin, Yu Sasaki and Siang Meng Sim.
• Tornado: Automatic Generation of Probing-Secure Masked Bitsliced Implementations - EUROCRYPT
  Joint work with Sonia Belaïd, Pierre-Evariste Dagand, Darius Mercadier and Raphaël Wintersdorff.
• How to Reveal the Secrets of an Obscure White-Box Implementation - J. of Cryptographic Engineering
  Joint work with Louis Goubin, Pascal Paillier and Junwei Wang.

2019

• Analysis and Improvement of Differential Computation Attacks against Internally-Encoded White-Box Implementations - IACR TCHES
  Joint work with Junwei Wang.
• Higher-Order DCA against Standard Side-Channel Countermeasures - COSADE
  Joint work with Andrey Bogdanov, Philip S. Vejre and Junwei Wang.

2018

• How to Securely Compute with Noisy Leakage in Quasilinear Complexity - ASIACRYPT
  Joint work with Dahmun Goudarzi and Antoine Joux.
• Tight Private Circuits: Achieving Probing Security with the Least Refreshing - ASIACRYPT
  Joint work with Sonia Belaïd and Dahmun Goudarzi.
• Secure Multiplication for Bitslice Higher-Order Masking: Optimisation and Comparison - COSADE
  Joint work with Dahmun Goudarzi, Anthony Journault and François-Xavier Standaert.

2017

• Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures - CHES
  Joint work with Dahmun Goudarzi, Damien Vergnaud, and Srinivas Vivek.
• How Fast Can Higher-Order Masking Be in Software? - EUROCRYPT
  Joint work with Dahmun Goudarzi.

2016

• On the Multiplicative Complexity of Boolean Functions and Bitsliced Higher-Order Masking - CHES
  Joint work with Dahmun Goudarzi.
• Lattice Attacks against Elliptic-Curve Signatures with Blinded Scalar Multiplication - SAC
  Joint work with Dahmun Goudarzi and Damien Vergnaud.

2015

• Algebraic Decomposition for Probing Security - CRYPTO
  Joint work with Claude Carlet, Emmanuel Prouff, and Thomas Roche.

2014

• How to Estimate the Success Rate of Higher-Order Side-Channel Attacks - CHES
  Joint work with Victor Lomné, Emmanuel Prouff, Thomas Roche, and Adrian Thillard.
• On Double Exponentiation for Securing RSA against Fault Analysis - CT-RSA
  Joint work with Duc-Phong Le and Chik How Tan.
• On the Practical Security of a Leakage Resilient Masking Scheme - CT-RSA
  Joint work with Emmanuel Prouff and Thomas Roche.

2013

• Masking against Side Channel Attacks: a Formal Security Proof - EUROCRYPT
  Joint work with Emmanuel Prouff.
• SCARE of Secret Ciphers with SPN Structures - ASIACRYPT
  Joint work with Thomas Roche.
• White-Box Security Notions for Symmetric Encryption Schemes - SAC
  jont work with Cécile Delerablée, Tancrède Lepoint, and Pascal Paillier.
• Two Attacks on a White-Box AES Implementation - SAC
  Joint work with Tancrède Lepoint, Yoni De Mulder, Peter Roelse, and Bart Preneel.
  extended abstract of this paper merged with another paper
• Higher-Order Side Channel Security and Mask Refreshing - FSE
  Joint work with Jean-Sébastien Coron, Emmanuel Prouff, and Thomas Roche.

2012

• Higher-Order Masking Schemes for S-boxes - FSE
  Joint work with Claude Carlet, Louis Goubin, Emmanuel Prouff, and Michael Quisquater.
• Conversion of Security Proofs from One Leakage Model to Another: a New Issue - COSADE
  Joint work with Jean-Sébastien Coron, Christophe Giraud, Emmanuel Prouff, Soline Renner, and Praveen Kumar Vadnala.
• Differential Fault Analysis of DES
  book chapter in Fault Analysis in Cryptography

2011

• Mutual Information Analysis: a Comprehensive Study - J. of Cryptology
  Joint work with Lejla Batina, Benedikt Gierlichs, Emmanuel Prouff, François-Xavier Standaert, and Nicolas Veyrat-Charvillon.
• Scalar Multiplication on Weierstraß Elliptic Curves from Co-Z Arithmetic - J. of Cryptographic Engineering
  Joint work with Raveen R. Goundar, Marc Joye, Atsuko Miyaji, and Alexandre Venelli.
• Univariate Side-Channel Attacks and Leakage Modeling - J. of Cryptographic Engineering
  Joint work with Julien Doget, Emmanuel Prouff, and François-Xavier Standaert.
  Short version presented at COSADE 2011.

2010

• Provably Secure Higher-Order Masking of AES - CHES
  Joint work with Emmanuel Prouff.
• Affine Masking against Higher-Order Side Channel Analysis - SAC
  Joint work with Guillaume Fumaroli, Ange Martinelli, and Emmanuel Prouff.
• Theoretical and Practical Aspects of Mutual Information Based Side Channel Analysis (Extended Version) - Int. J. of Applied Cryptography
  Joint work with Emmanuel Prouff.

2009

• Statistical Analysis of Second Order Differential Power Analysis - IEEE Transactions on Computers
  Joint work with Emmanuel Prouff and Régis Bévan.
• Higher-Order Masking and Shuffling for Software Implementations of Block Ciphers - CHES
  Joint work with Emmanuel Prouff and Julien Doget.
• Differential Fault Analysis on DES Middle Rounds - CHES
  
• Securing RSA against Fault Analysis by Double Addition Chain Exponentiation - CT-RSA
  
• Theoretical and Practical Aspects of Mutual Information Based Side Channel Analysis - ACNS
  Joint work with Emmanuel Prouff.
• On Second-Order Fault Analysis Resistance for CRT-RSA Implementations - WISTP
  Joint work with Emmanuelle Dottax, Christophe Giraud, and Yannick Sierra.
  Best paper award.

2008

• Attack and Improvement of a Secure S-Box Calculation Based on the Fourier Transform - CHES
  Joint work with Jean-Sébastien Coron, Christophe Giraud, and Emmanuel Prouff.
  Best paper award.
• Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis - FSE
  Joint work with Emmanuelle Dottax and Emmanuel Prouff.
• On the Exact Success Rate of Side Channel Analysis in the Gaussian Model - SAC
  

2007

• Side Channel Cryptanalysis of a Higher Order Masking Scheme - CHES
  Joint work with Jean-Sébastien Coron and Emmanuel Prouff.
  Best paper award.
• A Generic Method for Secure SBox Implementation - WISA
  Joint work with Emmanuel Prouff.

Thesis

• On the Provable Security of Cryptographic Implementations
  Habilitation thesis.
  Defended on June 21, 2022 at École Normale Supérieure (Paris).
  
• On the Physical Security of Cryptographic Implementations
  PhD thesis.
  Defended on September 22, 2009 at University of Luxembourg.
  

Unpublished manuscripts

• MIRA: a Digital Signature Scheme based on the MinRank problem and the MPC-in-the-Head paradigm - 2023
  Joint work with Nicolas Aragon, Loïc Bidoux, Jesús-Javier Chi-Domínguez, Thibauld Feneuil, Philippe Gaborit and Romaric Neveu.
• Trap Me If You Can - Million Dollar Curve - 2015
  Joint work with Thomas Baignères, Cécile Delerablée, Matthieu Finiasz, Louis Goubin and Tancrède Lepoint.
• Another Nail in the Coffin of White-Box AES Implementations - 2013
  Joint work with Tancrède Lepoint.
• Fast and Regular Algorithms for Scalar Multiplication over Elliptic Curves - 2011
  

Scientific Activities

Advising

I have been — or currently am — the PhD co-supervisor of:

• Victor Normand (2024-present) Generation of Masking Countermeasures Against Side-Channel Attacks
  Co-supervision with Sonia Belaïd and Phong Nguyen.
• Nicolas Bon (2022-present) Development of Optimized Operations for Homomorphic Cryptography
  Co-supervision with Sonia Belaïd and David Pointcheval.
• Abdul Rahman Taleb (2020-2023) Secure and Verified Cryptographic Implementations in the Random Probing Model
  Co-supervision with Sonia Belaïd and Damien Vergnaud.
• Thibauld Feneuil (2020-2023) Post-Quantum Signatures from Secure Multiparty Computation
  Co-supervision with Jean-Claude Bajard and Antoine Joux.
• Junwei Wang (2017-2020) On the Practical Security of White-Box Cryptography
  Co-supervision with Jean-Sébastien Coron, Sihem Mesnager and Pascal Paillier.
• Dahmun Goudarzi (2015-2018) Secure Implementation of Block Ciphers against Physical Attacks
  Co-supervision with Damien Vergnaud.

Chairing

I acted as:

• Program co-chair of CASCADE 2025
• Area chair for EUROCRYPT 2025
• Program co-chair of CHES 2018 (co-editor-in-chief of IACR TCHES Vol. 2018)

Editing

I am co-editor of the three-volume book Embedded Cryptography of the collection SCIENCES co-published by ISTE and Wiley. Links to: Volume 1, Volume 2, Volume 3.

Reviewing

I served — or am currently serving — as a program committee member for:   SAC 2025   EUROCRYPT 2025   SAC 2024   CRYPTO 2024   EUROCRYPT 2024   SAC 2023   CRYPTO 2023   CHES 2022   LATINCRYPT 2021   EUROCRYPT 2021   JC2 2020   CHES 2019   ASIACRYPT 2017   CHES 2017   COSADE 2017   TIs 2016   SPACE 2016   CHES 2016   EUROCRYPT 2016   COSADE 2016   GREHACK 2015   CHES 2015   COSADE 2015   CHES 2014   FDTC 2014   COSADE 2014   CARDIS 2013   CHES 2013   FDTC 2013   COSADE 2013   CARDIS 2012   CHES 2012   FDTC 2012   HOST 2012   CARDIS 2011   HOST 2011   HOST 2010  

Organizing

I have co-organized:

• The WhibOx contest, edition 1 (2017), edition 2 (2019), edition 3 (2021) and edition 4 (2024).
• Several ECRYPT-CSA workshops: WISE 2015, AWACS 2016, WhibOx 2016, wr0ng 2017.
• The conference CHES 2015 – French press about the event: Les rois du cryptage à Saint-Malo.

PhD committees

I served as a PhD committee member for: Agathe Houzelot (Oct. 2024), Pierre Galissant (Dec. 2023), Samuel Tap (Dec. 2023), Léonard Assouline (Dec. 2023), Chloé Gravouil (Jun. 2023), Valence Cristiani (Dec. 2022), Melissa Azouaoui (Oct. 2021), Aleksei Udovenko (Apr. 2019), Romain Poussier (Jan. 2018).

Membership

• Member of CHES Steering Committee since 2018.
• Member of IACR since 2007.

Talks

• Constructions for digital signatures - Part III: Threshold Computation in the Head
  Invited talk at NIST PQC Seminar, 2 July 2024 (remote seminar)
• Zero-Knowledge Proofs & Post-Quantum Signatures from MPC in the Head
  Day 1: Introduction to Zero-Knowledge Proofs and the MPC-in-the-Head Paradigm
  Day 2: Post-Quantum Signatures from MPC in the Head
  Invited lecture at PQ-TLS Summer school 2024, 18 & 19 June 2024, Anglet (France)
• Threshold Computation in the Head
  Invited talk at New Trends in Post-Quantum Cryptography (newtpqc) workshop, 11 June 2024, Oxford
• Post-Quantum Signatures from Threshold Computation in the Head
  5th NIST PQC Conference, 11 April 2024, Washington DC
• High Order Side-Channel Security for Elliptic-Curve Implementations
  CHES 2023, 13 September 2023, Prague
• MQOM & SD in the Head Signature Schemes
  Invited talk at Oxford Post-Quantum Cryptography Summit 2023, 4 September 2023, Oxford
• Zero-Knowledge Proofs from Multiparty Computation: Recent Advances
  Invited talk at WRACH 2023, 14 June 2023, Roscoff
• Tutorial on White-Box Cryptography ( lab)
  Tutorial at CHES 2022, co-hosted with Aleksei Udovenko, 18 September 2022, Leuven
• A Quest for Provable Security against Side-Channel Attacks
  Keynote talk at Africacrypt, 19 July 2022, Fes (Morocco)
• A Quest for Provable Security against Side-Channel Attacks
  Keynote talk at Cyber in Nancy, 7 July 2022, LORIA, Nancy (France)
• On the Provable Security of Cryptographic Implementations
  Habilitation defense, 21 June 2022, ENS Paris
• Probing Security through Input-Output Separation and Revisited Quasilinear Masking
  CHES 2021 (virtual event), 13 September 2021
• Securing Cryptographic Modules: A Shades of Gray Story -
  Keynote talk at ICMC19, 16 May 2019, Vancouver
• Secure Computation in the Presence of Noisy Leakage
  Invited talk at Journées C2, 10 October 2018, Aussois (France)
• White-Box Cryptography
  Invited talk at CARDIS 2017, 14 November 2017, Lugano
• White-Box Cryptography
  Invited talk at Journées Nationales 2017 Pré-GDR Sécurité Informatique, 31 May 2017, Paris
• White-Box Cryptography
  Keynote talk at PHISIC 2016, École des Mines de Saint-Étienne, Provence
• From Obfuscation to White-Box Crypto: Relaxation and Security Notions
  WhibOx 2016, 14 August 2016, Santa Barbara
• Lattice Attacks against Elliptic-Curve Signatures with Blinded Scalar Multiplication
  SAC 2016, 12 August 2016, St John's (Newfoundland, Canada)
• Provable Security against Side-Channel Attacks
  MCrypt Seminar, 11 August 2014, Les Deux Alpes (France)
• SCARE of Secret Ciphers with SPN Structures
  ASIACRYPT 2013, 3 December 2013, Bangalore
• Masking against Side-Channel Attacks: a Formal Security Proof
  EUROCRYPT 2013, 27 May 2013, Athens
• Higher-Order Masking Schemes for S-boxes
  FSE 2012, 21st March 2012, Washington DC
• Provably Secure Higher-Order Masking of AES
  CHES 2010, 20 August 2010, Santa Barbara
• On the Physical Security of Cryptographic Implementations
  PhD defense, 22 September 2009, University of Luxembourg
• Securing RSA against Fault Analysis by Double Addition Chain Exponentiation
  CT-RSA 2009, 24 April 2009, San Francisco
• Attack and Improvement of a Secure S-box Calculation Based on the Fourier Transform
  CHES 2008, 11 August 2008, Washington DC
• Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis
  FSE 2008, 11 February, Lausane
• Side Channel Cryptanalysis of a Higher Order Masking Scheme
  CHES 2007, 11 September 2007, Vienna

Standardization

I am a co-submitter of the following post-quantum signature candidates to NIST's Call for Additional Digital Signature Schemes, all based on the MPC-in-the-Head paradigm:

• MQOM ("MQ on my Mind") based on the hardness of the MQ problem
• SDitH ("Syndrome Decoding in the Head") based on the hardness of the Syndrome Decoding problem
• RYDE based on the hardness of the Rank Syndrome Decoding problem
• Mirath based on the hardness of the MinRank problem
• PERK based on the hardness of the Permuted Kernel problem

I was a co-submitter of Pyjamask, a masking-friendly cipher submitted to NIST call for Lightweight Cryptography.