Determining the Optimal Random-Padding Size for Rabin Cryptosystems

Determining the Optimal Random-Padding Size for Rabin Cryptosystems

Rabin encryption and a secure ownership transfer protocol based on the difficulty of factorization of a public key use a small public exponent. Such encryption requires random number padding. The Coppersmith's shortpad attack works effectively on short padding, thereby allowing an adversary to...

Ausführliche Beschreibung

Gespeichert in:
Bibliographische Detailangaben
Veröffentlicht in:IEEE transactions on information forensics and security 2019-08, Vol.14 (8), p.2232-2242
Hauptverfasser: Kaminaga, Masahiro, Suzuki, Toshinori, Fukase, Masaharu
Format: Artikel
Sprache:eng
Schlagworte:
birthday paradox
Complexity theory
Computer systems
Cryptography
Elliptic curve cryptography
Encryption
lattice reduction
Lattices
Rabin cryptosystem
Random numbers
random padding
RFID tags
secure ownership transfer
Online-Zugang:Volltext bestellen
Tags: Tag hinzufügen
Keine Tags, Fügen Sie den ersten Tag hinzu!
Beschreibung
Zusammenfassung:Rabin encryption and a secure ownership transfer protocol based on the difficulty of factorization of a public key use a small public exponent. Such encryption requires random number padding. The Coppersmith's shortpad attack works effectively on short padding, thereby allowing an adversary to extract the secret message. However, the criteria for determining the appropriate padding size remains unclear. In this paper, we derived the processing-time formula for the shortpad attack and determined the optimal random-padding size in order to achieve the desired security.
ISSN:1556-6013
1556-6021
DOI:10.1109/TIFS.2019.2895545