An Efficient Variant of Pollard’s p − 1 for the Case That All Prime Factors of the p − 1 in B-Smooth

Somsuk, Kritsanapong

doi:10.3390/sym14020312

Cited by 4 publications

(3 citation statements)

References 23 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Before RSA was introduced, prior results had shown that p − 1 and q − 1 that have small factors cause p • q to be vulnerable when factored in polynomial time using the Pollard p − 1 algorithm [5]. Pollard's p − 1 algorithm is exceptionally efficient whenever all prime factors of p − 1 and q − 1 are small [6]. In addition, a technique known as an estimated prime factor (EPF) was improved by Tahir et.…”

Section: Introductionmentioning

confidence: 99%

See 1 more Smart Citation

On (Unknowingly) Using Near-Square RSA Primes

et al. 2022

View full text Add to dashboard Cite

The invention in 1978 of the first practical asymmetric cryptosystem known as RSA was a breakthrough within the long history of secret communications. Since its inception, the RSA cryptosystem has become embedded in millions of digital applications with the objectives of ensuring confidentiality, integrity, authenticity, and disallowing repudiation. However, the generation of the RSA modulus, N=pq which requires p and q to be random primes, may accidentally entail the choice of a special type of prime called a near-square prime. This structure of N may be used unknowingly en masse in real-world applications since no current cryptographic implementation prevents its generation. In this study, we show that use of this type of prime will potentially lead to total destruction of RSA. We present three cases of near-square primes used as RSA primes, set in the form of (i) N=pq=(am−ra)(bm−rb); (ii) N=pq=(am+ra)(bm−rb); and (iii) N=pq=(am−ra)(bm+rb). Although (ii) and (iii) are quite similar, p and q must be within the same size range of n-bits, which results in different conditions for both cases. We formulate attacks using three different algorithms to better understand their feasibility. We also provide an efficient countermeasure that it is recommended is adopted by current cryptographic libraries with RSA implementation.

show abstract

Section: Introductionmentioning

confidence: 99%

“…From [24], we know that the classical modular reduction of modulo σ works at O(2 log 2 σ). Since σ is the potential value of (ab) m/2 , the maximum integers to find it are less than N γ 2 m/2 +1 2 , as shown in Equation (6). Based on this computation, we have the complexity of Attack I presented in Algorithm 2 to be…”

mentioning

confidence: 99%

On (Unknowingly) Using Near-Square RSA Primes

et al. 2022

View full text Add to dashboard Cite

show abstract

“…Many problems in number theory and computer arithmetic play important roles in cryptography. Examples of such problems are the generation of prime numbers [1][2][3], primality testing [4,5], modular exponentiation [6], addition chains and sequences [7,8] and integer factorization [9][10][11][12]. Developing fast algorithms that address these problems is one of the main challenges of algorithm complexity and leads to significant improvements in various applications.…”

Section: Introductionmentioning

confidence: 99%

Efficient Sequential and Parallel Prime Sieve Algorithms

et al. 2022

View full text Add to dashboard Cite

Generating prime numbers less than or equal to an integer number m plays an important role in many asymmetric key cryptosystems. Recently, a new sequential prime sieve algorithm was proposed based on set theory. The main drawback of this algorithm is that the running time and storage are high when the size of m is large. This paper introduces three new algorithms for a prime sieve based on two approaches. The first approach develops a fast sequential prime sieve algorithm based on set theory and some structural improvements to the recent prime sieve algorithm. The second approach introduces two new parallel algorithms in the shared memory parallel model based on static and dynamic strategies. The analysis of the experimental studies shows the following results. (1) The proposed sequential algorithm outperforms the recent prime sieve algorithm in terms of running time by 98% and memory consumption by 80%, on average. (2) The two proposed parallel algorithms outperform the proposed sequential algorithm by 72% and 67%, respectively, on average. (3) The maximum speedups achieved by the dynamic and static parallel algorithms using 16 threads are 7 and 4.5, respectively. As a result, the proposed algorithms are more effective than the recent algorithm in terms of running time, storage and scalability in generating primes.

show abstract

The development of signing and verification methods for high speed digital signatures on electronic official documents by using RSA cryptography

Somsuk

2024

Cogent Engineering

View full text Add to dashboard Cite

An Efficient Variant of Pollard’s p − 1 for the Case That All Prime Factors of the p − 1 in B-Smooth

Cited by 4 publications

References 23 publications

On (Unknowingly) Using Near-Square RSA Primes

On (Unknowingly) Using Near-Square RSA Primes

Efficient Sequential and Parallel Prime Sieve Algorithms

The development of signing and verification methods for high speed digital signatures on electronic official documents by using RSA cryptography

Contact Info

Product

Resources

About