Cryptanalysis of RSA with private key d less than N^0.292

Author

Boneh, Dan ; Durfee, Glenn

Author_Institution

Dept. of Comput. Sci., Stanford Univ., CA, USA

Volume

Issue

fYear

2000

fDate

7/1/2000 12:00:00 AM

Firstpage

1339

Lastpage

1349

Abstract

We show that if the private exponent d used in the RSA (Rivest-Shamir-Adleman (1978)) public-key cryptosystem is less than N ^0.292 then the system is insecure. This is the first improvement over an old result of Wiener (1990) showing that when d is less than N^0.25 the RSA system is insecure. We hope our approach can be used to eventually improve the bound to d less than N ^0.5

Keywords

public key cryptography; telecommunication security; RSA public-key cryptosystem; RSA system; Wiener attack; cryptanalysis; insecure system; private exponent; private key; Computer science; Inverse problems; Lattices; Public key; Public key cryptography; Writing;

fLanguage

English

Journal_Title

Information Theory, IEEE Transactions on

Publisher

ieee

ISSN

0018-9448

Type

jour

DOI

10.1109/18.850673

Filename

850673

Link To Document

https://search.isc.ac/dl/search/defaultta.aspx?DTC=49&DC=1355772

Cryptanalysis of RSA with private key d less than N0.292

Boneh, Dan ; Durfee, Glenn

jour

Cryptanalysis of RSA with private key d less than N^0.292