Matthieu Rivain

Scientific Activities

On-going collaborative projects:
  – RESQUE: BPI funded project on post-quantum cryptography
  – PQ-TLS: French academic consortium on post-quantum cryptography
  – SWAP: ANR funded project on symmetric cryptography primitives
  – SWITECH: ANR funded project on white-box cryptography

Standardization submissions:
  – SDitH | RYDE | MIRA | MQOM: Post-quantum signature schemes submitted to NIST
  – Pyjamask: A masking-friendly cipher submitted to NIST call for lightweight cryptography

Open-source tools:
  – OBSCURE: A framework for strong software obfuscation relying on a simple stateless secure element
  – CRY.ME: A flawed messaging application for educational purposes (cryptographic challenge)
  – circkit: A small framework for defining, constructing and manipulating computational circuits
  – IronMask | VRAPS | tightPROVE: Formal verification tools for the security of masked implementations
  – Tornado: A compiler of masked bitsliced implementations

PhD advisor of
  – Nicolas Bon (2022-present) Development of Optimized Operations for Homomorphic Cryptography
     co-supervised with Sonia Belaïd and David Pointcheval
  – Abdul Rahman Taleb (2020-2023) Secure and Verified Cryptographic Implementations in the Random Probing Model
     co-supervised with Sonia Belaïd and Damien Vergnaud
  – Thibauld Feneuil (2020-2023) Post-Quantum Signatures from Secure Multiparty Computation
     co-supervised with Jean-Claude Bajard and Antoine Joux
  – Junwei Wang (2017-2020) On the Practical Security of White-Box Cryptography
     co-supervised with Jean-Sébastien Coron, Sihem Mesnager and Pascal Paillier
  – Dahmun Goudarzi (2015-2018) Secure Implementation of Block Ciphers against Physical Attacks
     co-supervised with Damien Vergnaud

PhD jury member of   Agathe Houzelot (Oct. 2024)   Pierre Galissant (Dec. 2023)   Samuel Tap (Dec. 2023)   Léonard Assouline (Dec. 2023)   Chloé Gravouil (Jun. 2023)   Valence Cristiani (Dec. 2022)   Melissa Azouaoui (Oct. 2021)   Aleksei Udovenko (Apr. 2019)   Romain Poussier (Jan. 2018)

Area chair for EUROCRYPT 2025  
Program co-chair of CASCADE 2025 with Pascal Sasdrich  
Program co-chair of CHES 2018 with Dan Page (co-editors-in-chief of IACR TCHES Vol. 2018)  

Program committee member of   EUROCRYPT 2025   SAC 2024   CRYPTO 2024   EUROCRYPT 2024   SAC 2023   CRYPTO 2023   CHES 2022   Latin Crypt 2021   EUROCRYPT 2021   JC2 2020   CHES 2019   ASIACRYPT 2017   CHES 2017   COSADE 2017   TIs 2016   SPACE 2016   CHES 2016   EUROCRYPT 2016   COSADE 2016   GREHACK 2015   CHES 2015   COSADE 2015   CHES 2014   FDTC 2014   COSADE 2014   CARDIS 2013   CHES 2013   FDTC 2013   COSADE 2013   CARDIS 2012   CHES 2012   FDTC 2012   HOST 2012   CARDIS 2011   HOST 2011   HOST 2010  

General co-chair of CHES 2015 with Emmanuel Prouff and Guénaël Renault – French press on the event: Les rois du cryptage à Saint-Malo
Co-organiser of ECRYPT-CSA workshops WISE 2015, AWACS 2016, WhibOx 2016, wr0ng 2017
Co-organiser of the WhibOx contest edition 1 (2017), edition 2 (2019), edition 3 (2021) and edition 4 (2024)

Member of CHES Steering Committee since 2018
Member of IACR since 2007

Publications

Preprints

• Threshold Computation in the Head: Improved Framework for Post-Quantum Signatures and Zero-Knowledge Arguments
  joint work with Thibauld Feneuil
• A Methodology to Achieve Provable Side-Channel Security in Real-World Implementations
  joint work with Sonia Belaïd, Gaëtan Cassiers, Camille Mutschler, Thomas Roche, François-Xavier Standaert and Abdul Rahman Taleb
• MIRA: a Digital Signature Scheme based on the MinRank problem and the MPC-in-the-Head paradigm
  joint work with Nicolas Aragon, Loïc Bidoux, Jesús-Javier Chi-Domínguez, Thibauld Feneuil, Philippe Gaborit and Romaric Neveu
• RYDE: A Digital Signature Scheme based on Rank-Syndrome-Decoding Problem with MPCitH Paradigm
  joint work with Loïc Bidoux, Jesús-Javier Chi-Domínguez, Thibauld Feneuil, Philippe Gaborit, Antoine Joux and Adrien Vinçotte

2024

• Dual Support Decomposition in the Head: Shorter Signatures from Rank SD and MinRank - ASIACRYPT
  joint work with Loïc Bidoux, Thibauld Feneuil, Philippe Gaborit and Romaric Neveu
• Formal Definition and Verification for Combined Random Fault and Random Probing Security - ASIACRYPT
  joint work with Sonia Belaïd, Jakob Feldtkeller, Tim Güneysu, Anna Guinet, Jan Richter-Brockmann, Pascal Sasdrich and Abdul Rahman Taleb
• Optimized Homomorphic Evaluation of Boolean Functions - IACR TCHES
  joint work with Nicolas Bon and David Pointcheval
• OBSCURE: Versatile Software Obfuscation from a Lightweight Secure Element - IACR TCHES
  joint work with Darius Mercadier, Viet Sang Nguyen and Aleksei Udovenko
• MQ on my Mind: Post-Quantum Signatures from the Non-Structured Multivariate Quadratic Problem - EuroS&P
  joint work with Ryad Benadjila and Thibauld Feneuil

2023

• Threshold Linear Secret Sharing to the Rescue of MPC-in-the-Head - ASIACRYPT
  joint work with Thibauld Feneuil
• Unifying Freedom and Separation for Tight Probing-Secure Composition - CRYPTO
  joint work with Sonia Belaïd, Gaëtan Cassiers and Abdul Rahman Taleb
• High Order Side-Channel Security for Elliptic-Curve Implementations - IACR TCHES
  joint work with Sonia Belaïd
• Shared Permutation for Syndrome Decoding: New Zero-Knowledge Protocol and Code-Based Signature - Designs, Codes and Cryptography
  joint work with Thibauld Feneuil and Antoine Joux
• White-Box Cryptography
  chapter in Encyclopedia of Cryptography, Security and Privacy

2022

• Zero-Knowledge Protocols for the Subset Sum Problem from MPC-in-the-Head with Rejection - ASIACRYPT
  joint work with Thibauld Feneuil, Jules Maire and Damien Vergnaud
• Syndrome Decoding in the Head: Shorter Signatures from Zero-Knowledge Proofs - CRYPTO
  joint work with Thibauld Feneuil and Antoine Joux
• IronMask: Versatile Verification of Masking Security - IEEE S&P
  joint work with Sonia Belaïd, Darius Mercadier and Abdul Rahman Taleb

2021

• Dynamic Random Probing Expansion with Quasi Linear Asymptotic Complexity - ASIACRYPT
  joint work with Sonia Belaïd, Abdul Rahman Taleb and Damien Vergaud
• On the Power of Expansion: More Efficient Constructions in the Random Probing Model - EUROCRYPT
  joint work with Sonia Belaïd and Abdul Rahman Taleb
• Probing Security through Input-Output Separation and Revisited Quasilinear Masking - IACR TCHES
  joint work with Dahmun Goudarzi, Thomas Prest and Damien Vergnaud

2020

• Random Probing Security: Verification, Composition, Expansion and New Constructions - CRYPTO
  joint work with Sonia Belaïd, Jean-Sébastien Coron, Emmanuel Prouff and Abdul Rahman Taleb
• Defeating State-of-the-Art White-Box Countermeasures with Advanced Gray-Box Attacks - IACR TCHES
  joint work with Louis Goubin and Junwei Wang
• Pyjamask: Block Cipher and Authenticated Encryption with Highly Efficient Masked Implementation - IACR ToSC
  joint work with Dahmun Goudarzi, Jérémy Jean, Stefan Kölbl, Thomas Peyrin, Yu Sasaki and Siang Meng Sim
• Tornado: Automatic Generation of Probing-Secure Masked Bitsliced Implementations - EUROCRYPT
  joint work with Sonia Belaïd, Pierre-Evariste Dagand, Darius Mercadier and Raphaël Wintersdorff
• How to Reveal the Secrets of an Obscure White-Box Implementation - J. of Cryptographic Engineering
  joint work with Louis Goubin, Pascal Paillier and Junwei Wang

2019

• Analysis and Improvement of Differential Computation Attacks against Internally-Encoded White-Box Implementations - IACR TCHES
  joint work with Junwei Wang
• Higher-Order DCA against Standard Side-Channel Countermeasures - COSADE
  joint work with Andrey Bogdanov, Philip S. Vejre and Junwei Wang

2018

• How to Securely Compute with Noisy Leakage in Quasilinear Complexity - ASIACRYPT
  joint work with Dahmun Goudarzi and Antoine Joux
• Tight Private Circuits: Achieving Probing Security with the Least Refreshing - ASIACRYPT
  joint work with Sonia Belaïd and Dahmun Goudarzi
• Secure Multiplication for Bitslice Higher-Order Masking: Optimisation and Comparison - COSADE
  joint work with Dahmun Goudarzi, Anthony Journault and François-Xavier Standaert

2017

• Generalized Polynomial Decomposition for S-boxes with Application to Side-Channel Countermeasures - CHES
  joint work with Dahmun Goudarzi, Damien Vergnaud, and Srinivas Vivek
• How Fast Can Higher-Order Masking Be in Software? - EUROCRYPT
  joint work with Dahmun Goudarzi

2016

• On the Multiplicative Complexity of Boolean Functions and Bitsliced Higher-Order Masking - CHES
  joint work with Dahmun Goudarzi
• Lattice Attacks against Elliptic-Curve Signatures with Blinded Scalar Multiplication - SAC
  joint work with Dahmun Goudarzi and Damien Vergnaud

2015

• Algebraic Decomposition for Probing Security - CRYPTO
  joint work with Claude Carlet, Emmanuel Prouff, and Thomas Roche

2014

• How to Estimate the Success Rate of Higher-Order Side-Channel Attacks - CHES
  joint work with Victor Lomné, Emmanuel Prouff, Thomas Roche, and Adrian Thillard
• On Double Exponentiation for Securing RSA against Fault Analysis - CT-RSA
  joint work with Duc-Phong Le and Chik How Tan
• On the Practical Security of a Leakage Resilient Masking Scheme - CT-RSA
  joint work with Emmanuel Prouff and Thomas Roche

2013

• Masking against Side Channel Attacks: a Formal Security Proof - EUROCRYPT
  joint work with Emmanuel Prouff
• SCARE of Secret Ciphers with SPN Structures - ASIACRYPT
  joint work with Thomas Roche
• White-Box Security Notions for Symmetric Encryption Schemes - SAC
  jont work with Cécile Delerablée, Tancrède Lepoint, and Pascal Paillier
• Two Attacks on a White-Box AES Implementation - SAC
  joint work with Tancrède Lepoint, Yoni De Mulder, Peter Roelse, and Bart Preneel
  extended abstract of this paper merged with another paper
• Higher-Order Side Channel Security and Mask Refreshing - FSE
  joint work with Jean-Sébastien Coron, Emmanuel Prouff, and Thomas Roche

2012

• Higher-Order Masking Schemes for S-boxes - FSE
  joint work with Claude Carlet, Louis Goubin, Emmanuel Prouff, and Michael Quisquater
• Conversion of Security Proofs from One Leakage Model to Another: a New Issue - COSADE
  joint work with Jean-Sébastien Coron, Christophe Giraud, Emmanuel Prouff, Soline Renner, and Praveen Kumar Vadnala
• Differential Fault Analysis of DES
  book chapter in Fault Analysis in Cryptography

2011

• Mutual Information Analysis: a Comprehensive Study - J. of Cryptology
  joint work with Lejla Batina, Benedikt Gierlichs, Emmanuel Prouff, François-Xavier Standaert, and Nicolas Veyrat-Charvillon
• Scalar Multiplication on Weierstraß Elliptic Curves from Co-Z Arithmetic - J. of Cryptographic Engineering
  joint work with Raveen R. Goundar, Marc Joye, Atsuko Miyaji, and Alexandre Venelli
• Univariate Side-Channel Attacks and Leakage Modeling - J. of Cryptographic Engineering
  joint work with Julien Doget, Emmanuel Prouff, and François-Xavier Standaert
  short version presented at COSADE 2011

2010

• Provably Secure Higher-Order Masking of AES - CHES
  joint work with Emmanuel Prouff
• Affine Masking against Higher-Order Side Channel Analysis - SAC
  joint work with Guillaume Fumaroli, Ange Martinelli, and Emmanuel Prouff
• Theoretical and Practical Aspects of Mutual Information Based Side Channel Analysis (Extended Version) - Int. J. of Applied Cryptography
  joint work with Emmanuel Prouff

2009

• Statistical Analysis of Second Order Differential Power Analysis - IEEE Transactions on Computers
  joint work with Emmanuel Prouff and Régis Bévan
• Higher-Order Masking and Shuffling for Software Implementations of Block Ciphers - CHES
  joint work with Emmanuel Prouff and Julien Doget
• Differential Fault Analysis on DES Middle Rounds - CHES
  
• Securing RSA against Fault Analysis by Double Addition Chain Exponentiation - CT-RSA
  
• Theoretical and Practical Aspects of Mutual Information Based Side Channel Analysis - ACNS
  joint work with Emmanuel Prouff
• On Second-Order Fault Analysis Resistance for CRT-RSA Implementations - WISTP
  joint work with Emmanuelle Dottax, Christophe Giraud, and Yannick Sierra -   best paper award

2008

• Attack and Improvement of a Secure S-Box Calculation Based on the Fourier Transform - CHES
  joint work with Jean-Sébastien Coron, Christophe Giraud, and Emmanuel Prouff -   best paper award
• Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis - FSE
  joint work with Emmanuelle Dottax and Emmanuel Prouff
• On the Exact Success Rate of Side Channel Analysis in the Gaussian Model - SAC
  

2007

• Side Channel Cryptanalysis of a Higher Order Masking Scheme - CHES
  joint work with Jean-Sébastien Coron and Emmanuel Prouff -   best paper award
• A Generic Method for Secure SBox Implementation - WISA
  joint work with Emmanuel Prouff

Unpublished manuscripts

• Trap Me If You Can - Million Dollar Curve - 2015
  joint work with Thomas Baignères, Cécile Delerablée, Matthieu Finiasz, Louis Goubin and Tancrède Lepoint
• Another Nail in the Coffin of White-Box AES Implementations - 2013
  joint work with Tancrède Lepoint
• Fast and Regular Algorithms for Scalar Multiplication over Elliptic Curves - 2011
  

Habilitation Thesis

On the Provable Security of Cryptographic Implementations

Defended on June 21, 2022 at École Normale Supérieure (Paris).

Habilitation jury: Anne Canteaut, Jean-Sebastien Coron, Pierre-Alain Fouque, Yuval Ishai, Elisabeth Oswald, David Pointcheval, Bart Preneel, Emmanuel Prouff, Francois-Xavier Standaert

  manuscript

PhD Thesis

On the Physical Security of Cryptographic Implementations

Defended on September 22, 2009 at University of Luxembourg.

PhD advisor: Jean-Sébastien Coron

PhD committee: Alex Biryukov, Jean-Sébastien Coron, Louis Goubin, Marc Joye, Franck Leprévost, François-Xavier Standaert

  manuscript

Talks

• Constructions for digital signatures - Part III: Threshold Computation in the Head - slides video
  Invited talk at NIST PQC Seminar, 2 July 2024 (remote seminar)
• Zero-Knowledge Proofs & Post-Quantum Signatures from MPC in the Head
    - Day 1: Introduction to Zero-Knowledge Proofs and the MPC-in-the-Head Paradigm - slides
    - Day 2: Post-Quantum Signatures from MPC in the Head - slides
  Invited lecture at PQ-TLS Summer school 2024, 18 & 19 June 2024, Anglet (France)
• Threshold Computation in the Head - slides video
  Invited talk at New Trends in Post-Quantum Cryptography (newtpqc) workshop, 11 June 2024, Oxford
• Post-Quantum Signatures from Threshold Computation in the Head - slides video
  5th NIST PQC Conference, 11 April 2024, Washington DC
• High Order Side-Channel Security for Elliptic-Curve Implementations - slides video
  CHES 2023, 13 September 2023, Prague
• MQOM & SD in the Head Signature Schemes - slides video
  Invited talk at Oxford Post-Quantum Cryptography Summit 2023, 4 September 2023, Oxford
• Zero-Knowledge Proofs from Multiparty Computation: Recent Advances - slides
  Invited talk at WRACH 2023, 14 June 2023, Roscoff
• Tutorial on White-Box Cryptography - slides lab
  Tutorial at CHES 2022, co-hosted with Aleksei Udovenko, 18 September 2022, Leuven
• A Quest for Provable Security against Side-Channel Attacks - slides
  Keynote talk at Africacrypt, 19 July 2022, Fes (Morocco)
• A Quest for Provable Security against Side-Channel Attacks - slides
  Keynote talk at Cyber in Nancy, 7 July 2022, LORIA, Nancy (France)
• On the Provable Security of Cryptographic Implementations - slides
  Habilitation defense, 21 June 2022, ENS Paris
• Probing Security through Input-Output Separation and Revisited Quasilinear Masking - slides video
  CHES 2021 (virtual event), 13 September 2021
• Securing Cryptographic Modules: A Shades of Gray Story - slides
  Keynote talk at ICMC19, 16 May 2019, Vancouver
• Secure Computation in the Presence of Noisy Leakage - slides
  Invited talk at Journées C2, 10 October 2018, Aussois (France)
• White-Box Cryptography - slides
  Invited talk at CARDIS 2017, 14 November 2017, Lugano
• White-Box Cryptography - slides
  Invited talk at Journées Nationales 2017 Pré-GDR Sécurité Informatique, 31 May 2017, Paris
• White-Box Cryptography - slides
  Keynote talk at PHISIC 2016, École des Mines de Saint-Étienne, Provence
• From Obfuscation to White-Box Crypto: Relaxation and Security Notions - slides
  WhibOx 2016, 14 August 2016, Santa Barbara
• Lattice Attacks against Elliptic-Curve Signatures with Blinded Scalar Multiplication - slides
  SAC 2016, 12 August 2016, St John's (Newfoundland, Canada)
• Provable Security against Side-Channel Attacks - slides
  MCrypt Seminar, 11 August 2014, Les Deux Alpes (France)
• SCARE of Secret Ciphers with SPN Structures - slides
  ASIACRYPT 2013, 3 December 2013, Bangalore
• Masking against Side-Channel Attacks: a Formal Security Proof - slides
  EUROCRYPT 2013, 27 May 2013, Athens
• Higher-Order Masking Schemes for S-boxes - slides
  FSE 2012, 21st March 2012, Washington DC
• Provably Secure Higher-Order Masking of AES - slides
  CHES 2010, 20 August 2010, Santa Barbara
• On the Physical Security of Cryptographic Implementations - slides
  PhD defense, 22 September 2009, University of Luxembourg
• Securing RSA against Fault Analysis by Double Addition Chain Exponentiation - slides
  CT-RSA 2009, 24 April 2009, San Francisco
• Attack and Improvement of a Secure S-box Calculation Based on the Fourier Transform - slides
  CHES 2008, 11 August 2008, Washington DC
• Block Ciphers Implementations Provably Secure Against Second Order Side Channel Analysis - slides
  FSE 2008, 11 February, Lausane
• Side Channel Cryptanalysis of a Higher Order Masking Scheme - slides
  CHES 2007, 11 September 2007, Vienna