Security Analysis of an RSA Key Generation Algorithm with a Large Private Key

Download PDF
Open Webpage

Fanyu Kong, Jia Yu, Lei Wu

Published: 01 Jan 2011, Last Modified: 10 Feb 2025ISC 2011EveryoneRevisionsBibTeXCC BY-SA 4.0
Abstract: In 2003, L. H. Encinas, J. M. Masqué and A. Q. Dios proposed an algorithm for generating the RSA modulus N with a large private key d, which was claimed secure. In this paper, we propose an attack on Encinas-Masqué-Dios algorithm and find its security flaw. Firstly, we prove that Encinas-Masqué-Dios algorithm is totally insecure when the public exponent e is larger than the sum of the two primes p and q. Secondly, we show that when e is larger than \(N^{\frac{1}{4}}\), Encinas-Masqué-Dios algorithm leaks sufficient secret information and then everyone can recover the factorization of the RSA modulus N in polynomial time.

OpenReview is a long-term project to advance science through improved peer review with legal nonprofit status. We gratefully acknowledge the support of the OpenReview Sponsors. © 2025 OpenReview