In the basic fault analysis scenario in cryptography, the adversary obtains a pair of ciphertexts from the same plaintext: one is encrypted correctly and the other is a faulty computation. Among the well-studied side-channel analysis techniques, fault analysis might be the most powerful for recovering the secret value in the computation of a cryptographic algorithm.

In this book, the authors first provide a historical view of fault analysis by presenting examples of two prominent block ciphers: data encryption standard (DES) and advanced encryption standard (AES). Next, the fault analysis in public key cryptography is reviewed, which includes classic RSA implementations and elliptic curve computations. Finally, the authors show how to implement fault analysis in practice, with solid experimental results.

This book contains sufficient information for people who have not studied fault analysis before. It will be a handy book for self-study for both security engineers and academic researchers.