Partial spread and vectorial generalized bent functions |
| |
| Authors: | Thor Martinsen Wilfried Meidl Pantelimon Stănică |
| |
| Institution: | 1.State Key State Laboratory of Information Security, Institute of Information Engineering,Chinese Academy of Sciences,Beijing,China;2.Data Assurance and Communication Security Research Center,Chinese Academy of Sciences,Beijing,China;3.Beijing Center for Mathematics and Information Interdisciplinary Sciences,Beijing,China;4.The University of Tokyo,Tokyo,Japan |
| |
| Abstract: | In 2007, Sun et al. (IEEE Trans Inf Theory 53(8):2922–2933, 2007) presented new variants of RSA, called Dual RSA, whose key generation algorithm outputs two distinct RSA moduli having the same public and private exponents, with an advantage of reducing storage requirements for keys. These variants can be used in some applications like blind signatures and authentication/secrecy. In this paper, we give an improved analysis on Dual RSA and obtain that when the private exponent is smaller than \(N^{0.368}\), the Dual RSA can be broken, where N is an integer with the same bitlength as the modulus of Dual RSA. The point of our work is based on the observation that we can split the private exponent into two much smaller unknown variables and solve a related modular equation on the two unknown variables and other auxiliary variables by making use of lattice based methods. Moreover, we extend this method to analyze the common private exponent RSA scheme, a variant of Dual RSA, and obtain a better bound than previous analyses. While our analyses cannot be proven to work in general, since we rely on some unproven assumptions, our experimental results have shown they work in practice. |
| |
| Keywords: | |
| 本文献已被 SpringerLink 等数据库收录! |
|
