A new partial key exposure attack on multi-power RSA

Muhammed F. Esgin, Mehmet S. Kiraz, Osmanbey Uzunkol

Research output: Chapter in Book/Report/Conference proceedingConference PaperResearchpeer-review

4 Citations (Scopus)

Abstract

An important attack on multi-power RSA (N = prq) was introduced by Sarkar in 2014, by extending the small private exponent attack of Boneh and Durfee on classical RSA. In particular, he showed that N can be factored efficiently for r = 2 with private exponent d satisfying d < N0.395. In this paper, we generalize this work by introducing a new partial key exposure attack for finding small roots of polynomials using Coppersmith’s algorithm and Gröbner basis computation. Our attack works for all multi-power RSA exponents e (resp. d) when the exponent d (resp. e) has full size bit length. The attack requires prior knowledge of least significant bits (LSBs), and has the property that the required known part of LSB becomes smaller in the size of e. For practical validation of our attack, we demonstrate several computer algebra experiments.

Original languageEnglish
Title of host publicationAlgebraic Informatics
Subtitle of host publication6th International Conference, CAI 2015 Stuttgart, Germany, September 1–4, 2015 Proceedings
EditorsAndreas Maletti
Place of PublicationCham Switzerland
PublisherSpringer
Pages103-114
Number of pages12
ISBN (Print)9783319230207
DOIs
Publication statusPublished - 2015
Externally publishedYes
EventInternational Conference on Algebraic Informatics 2015 - Stuttgart, Germany
Duration: 1 Sept 20154 Sept 2015
Conference number: 6th
https://www.springer.com/gp/book/9783319230207 (Proceedings)
https://easychair.org/conferences/?conf=cai2015 (Conference website)

Publication series

NameLecture Notes in Computer Science
PublisherSpringer
Volume9270
ISSN (Print)0302-9743
ISSN (Electronic)1611-3349

Conference

ConferenceInternational Conference on Algebraic Informatics 2015
Abbreviated titleCAI 2015
Country/TerritoryGermany
CityStuttgart
Period1/09/154/09/15
Internet address

Keywords

  • Coppersmith’s method
  • Integer factorization
  • Multi-power RSA
  • Partial key exposure
  • Small roots of polynomials

Cite this