[Resource Topic] 2012/064: Ron was wrong, Whit is right

Welcome to the resource topic for 2012/064

Title:
Ron was wrong, Whit is right

Authors: Arjen K. Lenstra, James P. Hughes, Maxime Augier, Joppe W. Bos, Thorsten Kleinjung, Christophe Wachter

Abstract:

We performed a sanity check of public keys collected on the web. Our main goal was to test the validity of the assumption that different random choices are made each time keys are generated. We found that the vast majority of public keys work as intended. A more disconcerting finding is that two out of every one thousand RSA moduli that we collected offer no security. Our conclusion is that the validity of the assumption is questionable and that generating keys in the real world for multiple-secrets'' cryptosystems such as RSA is significantly riskier than for single-secret’’ ones such as ElGamal or (EC)DSA which are based on Diffie-Hellman.

ePrint: https://eprint.iacr.org/2012/064

See all topics related to this paper.

Feel free to post resources that are related to this paper below.

Example resources include: implementations, explanation materials, talks, slides, links to previous discussions on other websites.

For more information, see the rules for Resource Topics .