Title :
Factoring RSA modulo N with high bits of p known revisited
Author :
Liu Chang ; Yang Chi
Author_Institution :
Sch. of Comput. Sci. & Software Eng., Univ. of Western Australia, WA, Australia
Abstract :
The factorization problem with knowledge of some bits of prime factor p of RSA modulo N is one of the earliest partial key exposure attacks on RSA. The result proposed by Coppersmith is still the best, i.e., when some of p´s higher bits is known as ptilde, assume the unknown part of p and q is p0 and q0, respectively (say, p = ptilde + p0, q = + qtilde + q0), if the upper bounds of them, say X and Y separately, satisfy XY les N0.5, then N can be factored in polynomial time. Our method shows improved bounds that when RSA private key d < N0.483, knowing a smaller fraction of p is sufficient in yielding the factorization of N in polynomial time.
Keywords :
computational complexity; matrix decomposition; public key cryptography; RSA modulo N; earliest partial key exposure attacks; factorization problem; p known revisited; polynomial time; public key cryptosystem; Computer science; Electric breakdown; Equations; Lattices; Polynomials; Public key cryptography; Software engineering; Testing; Upper bound; Vectors; LLL; Lattice basis reduction; Partial key exposure attack; RSA cryptanalysis;
Conference_Titel :
IT in Medicine & Education, 2009. ITIME '09. IEEE International Symposium on
Conference_Location :
Jinan
Print_ISBN :
978-1-4244-3928-7
Electronic_ISBN :
978-1-4244-3930-0
DOI :
10.1109/ITIME.2009.5236369
