Re: RSA key length and more
Available news archives: comp.lang.tcl - comp.lang.python - comp.security.firewalls - sci.crypt - comp.lang.php - comp.lang.javascript
Google
 
Web news.hping.org


sci.crypt archive

Re: RSA key length and more

From: Pubkeybreaker <Robert_silverman@raytheon.com>
Date: Mon Jan 16 2006 - 22:47:17 CET




Paul Leyland wrote:


> "Pesso" <pesso@no.where> writes:


>


> > Why is a private key longer than a public key?


>


> It isn't, assuming you mean "exponent" where you used the word "key".


> Or, to be precise, it need not be shorter.  There is absolutely


> nothing to stop you having a shorter private exponent than an public


> exponent.


>



Almost.  While it is true that there is nothing in theory that prevents


it,


there is a viable attack, using Lattice Basis Reduction that will break


RSA if the private exponent is less than  N^alpha   where N is the


modulus and


alpha is approximately .29


Received on Tue Jan 17 16:50:54 2006