对环Z/nZ上圆锥曲线RSA型公钥密码体系的小私钥d攻击

Short Private Exponent Attacks on RSA type Cryptosystem Based on Conic Curves

作者：刘铎(清华大学计算机科学与技术系，北京 100084)；戴一奇(清华大学计算机科学与技术系，北京 100084)

Author：(Dept. of Computer Sci. and Technol., Tsinghua Univ., Beijing 100084,China)；(Dept. of Computer Sci. and Technol., Tsinghua Univ., Beijing 100084,China)

收稿日期：2006-11-09 年卷（期）页码：2008,40(2):86-90

期刊名称：工程科学与技术

Journal Name：Advanced Engineering Sciences

关键字：密码学；圆锥曲线；小私钥攻击；连分数

Key words：cryptology; conic curve; short private exponent attacks; continue fraction

基金项目：国家自然科学基金资助项目（90304014；60673065）

中文摘要

为讨论环Z/nZ上圆锥曲线RSA型公钥密码体制的安全性，研究了对其的小私钥d攻击方法。给出了基于连分数方法分解n的算法，并通过两个简单的例子对该攻击方法进行了说明。由此指出Z/nZ上圆锥曲线RSA型公钥密码体制不能抵抗小私钥攻击,即在私钥d过小时，环Z/nZ上圆锥曲线RSA型公钥密码体制是不安全的。

英文摘要

To discuss the security of RSA type cryptosystem over conic curves on the ring Z/nZ, two algorithms of short private exponent attack on such cryptosystems were presented. Two simple examples illuminating the algorithms were also given. The results showed that the RSA type cryptosystem over conic curves on the ring Z/nZ can not resist short private exponent attack. In other word, the parameter n can be factored in polynomial time of lnn if the private exponent is too small.

【关闭】

论文摘要

对环Z/nZ上圆锥曲线RSA型公钥密码体系的小私钥d攻击

Short Private Exponent Attacks on RSA type Cryptosystem Based on Conic Curves