cryptography joining the rsa cryptosystem
play

Cryptography: Joining the RSA Cryptosystem Greg Plaxton Theory in - PowerPoint PPT Presentation

Nov 29, 2023 •170 likes •263 views

Cryptography: Joining the RSA Cryptosystem Greg Plaxton Theory in Programming Practice, Spring 2004 Department of Computer Science University of Texas at Austin Joining the RSA Cryptosystem: Overview First, Bob randomly chooses two large

  1. Cryptography: Joining the RSA Cryptosystem Greg Plaxton Theory in Programming Practice, Spring 2004 Department of Computer Science University of Texas at Austin

  2. Joining the RSA Cryptosystem: Overview • First, Bob randomly chooses two large (e.g., 512-bit) primes p and q • Then, Bob computes n = pq , φ ( n ) = ( p − 1)( q − 1) , and a positive integer d < n such that d and φ ( n ) are relatively prime – In particular, any prime exceeding max( p, q ) (and less than n ) is a valid choice for d • Then, Bob computes e such that de is congruent to 1 modulo φ ( n ) • Bob’s public key is ( e, n ) and Bob’s private key is ( d, n ) • We will discuss each of these steps in greater detail in the slides that follow Theory in Programming Practice, Plaxton, Spring 2004

  3. Primality Testing • Surprisingly, there exist efficient (and polynomial time) algorithms for “primality testing”, that is, for determining whether a given integer n is prime or composite • These algorithms do not work by factoring, since no efficient algorithms are known for factoring • Miller gave the first polynomial-time primality testing algorithm in 1976 – His work yields gives an efficient randomized algorithm – In fact, it yields a deterministic algorithm suvject to the extended Riemann hypothesis • In a theoretical breakthrough, the first deterministic polynomial-time algorithm for primality testing was discovered in 2002 by Agrawal, Kayal, and Saxena – Still, the primality testing algorithms used in practice are randomized, since they are faster (on average) Theory in Programming Practice, Plaxton, Spring 2004

  4. Prime Number Theorem • Prime number theorem: As n tends to infinity, the fraction of the first 1 n positive integers that are prime tends to ln n • For example, about a . 002818 fraction of the numbers less than 2 512 are prime, and about a . 002823 fraction of the numbers less than 2 511 are prime – Thus, about a . 002813 fraction of 512-bit numbers (i.e., with leading 1 bit in bit position 511, indexing from 0), or about one in 355.5, is prime – So if we pick a set S of a few thousand 512-bit numbers independently and uniformly at random, we are overwhlemingly likely to pick at least one prime – We can use an efficient primality test to find a prime in S – We can make this approach more efficient by, e.g., picking only odd 512-bit numbers Theory in Programming Practice, Plaxton, Spring 2004

  5. Joining the RSA Cryptosystem: Implementation • Given that we’ve seen how to generate random large primes, we now know how to compute p , q , and d – Of course, p and q also give us n = pq and φ ( n ) = ( p − 1)( q − 1) • All that is left is to compute e such that de is congruent to 1 modulo φ ( n ) – We will compute e using the extended Euclid algorithm, as discussed on the next slide Theory in Programming Practice, Plaxton, Spring 2004

  6. Joining the RSA Cryptosystem: Computation of e • Recall that given nonnegative integers x and y (at least one of which is nonzero), the extended Euclid algorithm calculates a and b such that ax + by = gcd( x, y ) • Set x to d and y to φ ( n ) • Since d and φ ( n ) are relatively prime, gcd( d, φ ( n )) = 1 • Thus, the extended Euclid algorithm gives us a and b such that ad + bφ ( n ) = 1 • Hence ad is congruent to 1 modulo φ ( n ) • So we can just set e to the unique integer in { 0 , . . . , φ ( n ) − 1 } that is congruent to a modulo φ ( n ) Theory in Programming Practice, Plaxton, Spring 2004

  7. Joining the RSA Cryptosystem: Example • Suppose we choose primes p = 47 and q = 59 (in practice, we would much larger primes) • Then n = 47 · 59 = 2773 and φ ( n ) = 46 · 58 = 2668 • Now suppose we choose d = 157 – Note that 157 is a prime greater than p and q and hence is relatively prime to φ ( n ) • Running the extended Euclid algorithm with x = 157 and y = 2668 yields e = 17 • Bob’s public key is (17 , 2773) and his private key is (157 , 2668) Theory in Programming Practice, Plaxton, Spring 2004

  8. RSA Encryption and Decryption • Next time we’ll see how to use Bob’s public key to encrypt messages sent to Bob • We’ll also see how Bob uses his private key to decrypt these messages Theory in Programming Practice, Plaxton, Spring 2004

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M,

Karlstad University Basic Cryptography Ge Zhang What is Cryptography Cryptography Cryptosystem: 5-tuple (M, C, E, D, K) M: the set of plaintexts C: the set of ciphertexts E: M x K -&gt; C enciphering functions D: C x K

446 views • 40 slides
P UBLIC - KEY CRYPTOGRAPHY (PKC) E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC

P UBLIC - KEY CRYPTOGRAPHY (PKC) E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM P UBLIC

E RROR - CORRECTING PAIRS FOR A PUBLIC - KEY CRYPTOSYSTEM E RROR - CORRECTING PAIRS P UBLIC - KEY CRYPTOGRAPHY FOR A PUBLIC - KEY CRYPTOSYSTEM C ODE BASED CRYPTOGRAPHY P REREQUISITES E RROR - CORRECTING CODES I. M RQUEZ -C ORBELLA 1 R. P

1.2k views • 97 slides
Lecture 9 Public Key Cryptography: Encryption + Signatures 1 El Gamal PK cryptosystem (83) -

Lecture 9 Public Key Cryptography: Encryption + Signatures 1 El Gamal PK cryptosystem (83) -

Lecture 9 Public Key Cryptography: Encryption + Signatures 1 El Gamal PK cryptosystem (83) - p large prime - b base, primitive element, generator - x private exponent - x y public residue y b p ; mod = P Z * p =

272 views • 25 slides
Cryptography: RSA Encryption and Decryption Greg Plaxton Theory in Programming Practice, Spring

Cryptography: RSA Encryption and Decryption Greg Plaxton Theory in Programming Practice, Spring

Cryptography: RSA Encryption and Decryption Greg Plaxton Theory in Programming Practice, Spring 2005 Department of Computer Science University of Texas at Austin Joining the RSA Cryptosystem: Quick Review First, Bob randomly chooses two

293 views • 14 slides
Symmetric Cryptography CS461/ECE422 Fall 2010 1 Outline Overview of Cryptosystem design

Symmetric Cryptography CS461/ECE422 Fall 2010 1 Outline Overview of Cryptosystem design

Symmetric Cryptography CS461/ECE422 Fall 2010 1 Outline Overview of Cryptosystem design Commercial Symmetric systems DES AES Modes of block and stream ciphers 2 Reading Chapter 9 from Computer Science: Art and

882 views • 62 slides
Symmetric Cryptography CS461/ECE422 Fall 2009 1 Outline Overview of Cryptosystem design

Symmetric Cryptography CS461/ECE422 Fall 2009 1 Outline Overview of Cryptosystem design

Symmetric Cryptography CS461/ECE422 Fall 2009 1 Outline Overview of Cryptosystem design Commercial Symmetric systems DES AES Modes of block and stream ciphers 2 Reading Chapter 9 from Computer Science: Art and

794 views • 62 slides
Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key

Outline CPSC 418/MATH 318 Introduction to Cryptography Public Key Cryptography, RSA Public-Key Cryptography 1 Renate Scheidler The RSA Cryptosystem 2 Department of Mathematics &amp; Statistics Department of Computer Science University of

372 views • 7 slides
The Paillier Cryptosystem A Look Into The Cryptosystem And Its Potential Application By Michael

The Paillier Cryptosystem A Look Into The Cryptosystem And Its Potential Application By Michael

The Paillier Cryptosystem A Look Into The Cryptosystem And Its Potential Application By Michael OKeeffe The College of New Jersey Mathematics Department April 18, 2008 A BSTRACT So long as there are secrets, there is a need for encryption

357 views • 16 slides
A Code-Based Cryptosystem using GRS Codes Violetta Weger University of Zurich Master Thesis

A Code-Based Cryptosystem using GRS Codes Violetta Weger University of Zurich Master Thesis

A Code-Based Cryptosystem using GRS Codes Violetta Weger University of Zurich Master Thesis Presentation Seminar Coding Theory and Cryptography 07 December 2016 Violetta Weger Code-based Cryptosystem using GRS Codes Outline 1 Motivation 2

1.31k views • 61 slides
Symmetric and Asymmetric Key Cryptography(Part 2) By Radhika B S Contents Asymmetric Key

Symmetric and Asymmetric Key Cryptography(Part 2) By Radhika B S Contents Asymmetric Key

Symmetric and Asymmetric Key Cryptography(Part 2) By Radhika B S Contents Asymmetric Key Cryptography Security Requirements Advantages Modes of Use Diffie-Hellman Key Exchange RSA Cryptosystem ElGamal

584 views • 32 slides
RSA Public Key CryptoSystem One way Trapdoor Functions Diffie and Hellman (76) New Directions

RSA Public Key CryptoSystem One way Trapdoor Functions Diffie and Hellman (76) New Directions

RSA Public Key CryptoSystem One way Trapdoor Functions Diffie and Hellman (76) New Directions in Cryptography Split the Bobs secret key K to two parts: K E , to be used for encrypting messages to Bob. K D , to be used for

482 views • 32 slides
The RSA Cryptosystem February 27, 2008 Introducing PS4: RSA encryption Problem set 4 is about

The RSA Cryptosystem February 27, 2008 Introducing PS4: RSA encryption Problem set 4 is about

The RSA Cryptosystem February 27, 2008 Introducing PS4: RSA encryption Problem set 4 is about implementing a famous public key cryptosystem, RSA. Administrative Details: Posted by tomorrow. Due Friday March 7, at Noon. My office hours will be

610 views • 23 slides
Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based

Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based

Contents Background Key Escrow free Identity-based Identity-based Cryptosystem Cryptosystem Identity-based Signature Conclusion Manik Lal Das DA-IICT, Gandhinagar, India About DA-IICT and Our Group DA-IICT is a private university,

563 views • 35 slides
Introduction to Elliptic Curve Cryptography Rana Barua Indian Statistical Institute Kolkata May

Introduction to Elliptic Curve Cryptography Rana Barua Indian Statistical Institute Kolkata May

Introduction to Elliptic Curve Cryptography Rana Barua Indian Statistical Institute Kolkata May 19, 2017 university-logo-isi Rana Barua Introduction to Elliptic Curve Cryptography ElGamal Public Key Cryptosystem, 1984 Key Generation: Choose

417 views • 16 slides
Code-based Cryptography Christiane Peters Technical University of Denmark ECC 2011 September

Code-based Cryptography Christiane Peters Technical University of Denmark ECC 2011 September

Code-based Cryptography Christiane Peters Technical University of Denmark ECC 2011 September 20, 2011 Code-based cryptography 1. Background 2. The McEliece cryptosystem 3. Information-set-decoding attacks 4. Designs: Wild McEliece 5.

721 views • 55 slides
Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago;

Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago;

1 Lattice-based cryptography, day 1: simplicity D. J. Bernstein University of Illinois at Chicago; Ruhr University Bochum 2 2000 Cohen cryptosystem Public key: vector of integers K = ( K 1 ; : : : ; K N ) { X; : : : ; X } N .

1.84k views • 164 slides
Provable Security RSA-PKCS Encryption - Signature Lawrence Berkeley National Lab August 2003

Provable Security RSA-PKCS Encryption - Signature Lawrence Berkeley National Lab August 2003

Provable Security RSA-PKCS Encryption - Signature Lawrence Berkeley National Lab August 2003 David Pointcheval LIENS-CNRS Ecole normale suprieure Summary Summary Encryption PKCS #1 v1.5 PKCS #1 v2.0 : OAEP Signature

286 views • 17 slides
Digital Signatures Dennis Hofheinz (slides based on slides by Bjrn Kaidel and Gunnar Hartung)

Digital Signatures Dennis Hofheinz (slides based on slides by Bjrn Kaidel and Gunnar Hartung)

Digital Signatures Dennis Hofheinz (slides based on slides by Bjrn Kaidel and Gunnar Hartung) Digital Signatures 2020-03-31 1 Outline Gennaro-Halevi-Rabin signatures Chameleon hash functions Digital Signatures 2020-03-31 2 RSA

785 views • 29 slides
RSA 2019 Andrii Arman and Nina Kam cev September 2, 2019 Conference picture Andrii Arman and

RSA 2019 Andrii Arman and Nina Kam cev September 2, 2019 Conference picture Andrii Arman and

RSA 2019 Andrii Arman and Nina Kam cev September 2, 2019 Conference picture Andrii Arman and Nina Kam cev RSA 2019 September 2, 2019 1 / 14 M. ileikis &amp; L. Warnke, Upper tail of the subgraph counts in G n , p Question Given a

592 views • 17 slides
RSA and Fermat. RSA: Key Generation: (Alice) Primes: p , q . N = pq . Encryption Key: e , where

RSA and Fermat. RSA: Key Generation: (Alice) Primes: p , q . N = pq . Encryption Key: e , where

RSA and Fermat. RSA: Key Generation: (Alice) Primes: p , q . N = pq . Encryption Key: e , where gcd ( e , ( p 1 )( q 1 ))) = 1 Decryption Key: d = e 1 ( mod ( p 1 )( q 1 )) Message: m Encryption (Bob): y = E ( m ) = m e ( mod

1.12k views • 75 slides
RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology

RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology

Cryptography RSA RSA Algorithm Analysis of RSA Implementations of RSA RSA RSA in OpenSSL RSA in Python Cryptography School of Engineering and Technology CQUniversity Australia Prepared by Steven Gordon on 20 Feb 2020, rsa.tex, r1799

869 views • 29 slides
How Secure and Quick is QUIC? Provable Security and Performance Analyses Robert Lychev * , Samuel

How Secure and Quick is QUIC? Provable Security and Performance Analyses Robert Lychev * , Samuel

How Secure and Quick is QUIC? Provable Security and Performance Analyses Robert Lychev * , Samuel Jero + , Alexandra Boldyreva * , and Cristina Nita-Rotaru ++ * Georgia Institute ++ Northeastern + Purdue of T echnology University University 1

536 views • 31 slides
Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt

Exercise: Encrypting and Decrypting with RSA In this exercise, you will encrypt and decrypt numbers using a simple version of the RSA algorithm. Each team should have two members. Each team-member should complete the exercise as Bob, then pass

228 views • 4 slides
RSA lect 2.oo3 CS 70, March 10, 2005 review from Tuesday RSA algorithm proof observation:

RSA lect 2.oo3 CS 70, March 10, 2005 review from Tuesday RSA algorithm proof observation:

RSA lect 2.oo3 CS 70, March 10, 2005 review from Tuesday RSA algorithm proof observation: there are enough primes to make it relatively easy to find two of them; there are approximately x/(ln x) primes between 1 and x 1 in 20 SIDs are prime

57 views • 3 slides

More recommend