Attacks on Shamir's 'RSA for paranoids'

Henri Gilbert; Dipankar Gupta; Andrew Odlyzko; Jean Jacques Quisquater

doi:10.1016/s0020-0190(98)00160-4

Attacks on Shamir's 'RSA for paranoids'

Henri Gilbert, Dipankar Gupta, Andrew Odlyzko, Jean Jacques Quisquater

Mathematics

Research output: Contribution to journal › Article › peer-review

13 Scopus citations

Abstract

In order to allow for efficient use of extremely large moduli, Adi Shamir has proposed a variant of RSA in which one of the two prime factors is much smaller than the other. This note points out that unless special precautions are taken, simple implementations of Shamir's idea are subject to protocol attacks that recover the secret keys.

Original language	English (US)
Pages (from-to)	197-199
Number of pages	3
Journal	Information Processing Letters
Volume	68
Issue number	4
DOIs	https://doi.org/10.1016/s0020-0190(98)00160-4
State	Published - Nov 30 1998

Keywords

Cryptography
Safety/security in digital systems

Access

10.1016/s0020-0190(98)00160-4

OpenUrl availability

Full text

Cite this

@article{4d52b15b217b41b2a2328731a9c0ba09,

title = "Attacks on Shamir's 'RSA for paranoids'",

abstract = "In order to allow for efficient use of extremely large moduli, Adi Shamir has proposed a variant of RSA in which one of the two prime factors is much smaller than the other. This note points out that unless special precautions are taken, simple implementations of Shamir's idea are subject to protocol attacks that recover the secret keys.",

keywords = "Cryptography, Safety/security in digital systems",

author = "Henri Gilbert and Dipankar Gupta and Andrew Odlyzko and Quisquater, {Jean Jacques}",

year = "1998",

month = nov,

day = "30",

doi = "10.1016/s0020-0190(98)00160-4",

language = "English (US)",

volume = "68",

pages = "197--199",

journal = "Information Processing Letters",

issn = "0020-0190",

publisher = "Elsevier",

number = "4",

}

TY - JOUR

T1 - Attacks on Shamir's 'RSA for paranoids'

AU - Gilbert, Henri

AU - Gupta, Dipankar

AU - Odlyzko, Andrew

AU - Quisquater, Jean Jacques

PY - 1998/11/30

Y1 - 1998/11/30

N2 - In order to allow for efficient use of extremely large moduli, Adi Shamir has proposed a variant of RSA in which one of the two prime factors is much smaller than the other. This note points out that unless special precautions are taken, simple implementations of Shamir's idea are subject to protocol attacks that recover the secret keys.

AB - In order to allow for efficient use of extremely large moduli, Adi Shamir has proposed a variant of RSA in which one of the two prime factors is much smaller than the other. This note points out that unless special precautions are taken, simple implementations of Shamir's idea are subject to protocol attacks that recover the secret keys.

KW - Cryptography

KW - Safety/security in digital systems

UR - http://www.scopus.com/inward/record.url?scp=0032206093&partnerID=8YFLogxK

UR - http://www.scopus.com/inward/citedby.url?scp=0032206093&partnerID=8YFLogxK

U2 - 10.1016/s0020-0190(98)00160-4

DO - 10.1016/s0020-0190(98)00160-4

M3 - Article

AN - SCOPUS:0032206093

SN - 0020-0190

VL - 68

SP - 197

EP - 199

JO - Information Processing Letters

JF - Information Processing Letters

IS - 4

ER -

Attacks on Shamir's 'RSA for paranoids'

Abstract

Keywords

Access

OpenUrl availability

Other files and links

Fingerprint

Cite this