All

What are you looking for?

All
Projects
Results
Organizations

Quick search

  • Projects supported by TA ČR
  • Excellent projects
  • Projects with the highest public support
  • Current projects

Smart search

  • That is how I find a specific +word
  • That is how I leave the -word out of the results
  • “That is how I can find the whole phrase”
EN
ČeštinaEnglish

The Million-Key Question – Investigating the Origins of RSA Public Keys

The result's identifiers

  • Result code in IS VaVaI

    <a href="https://www.isvavai.cz/riv?ss=detail&h=RIV%2F00216224%3A14330%2F16%3A00088076" target="_blank" >RIV/00216224:14330/16:00088076 - isvavai.cz</a>

  • Result on the web

    <a href="https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/svenda" target="_blank" >https://www.usenix.org/conference/usenixsecurity16/technical-sessions/presentation/svenda</a>

  • DOI - Digital Object Identifier

Alternative languages

  • Result language

    angličtina

  • Original language name

    The Million-Key Question – Investigating the Origins of RSA Public Keys

  • Original language description

    Can bits of an RSA public key leak information about design and implementation choices such as the prime generation algorithm? We analysed over 60 million freshly generated key pairs from 22 open- and closedsource libraries and from 16 different smartcards, revealing significant leakage. The bias introduced by different choices is sufficiently large to classify a probable library or smartcard with high accuracy based only on the values of public keys. Such a classification can be used to decrease the anonymity set of users of anonymous mailers or operators of linked Tor hidden services, to quickly detect keys from the same vulnerable library or to verify a claim of use of secure hardware by a remote party. The classification of the key origins of more than 10 million RSA-based IPv4 TLS keys and 1.4 million PGP keys also provides an independent estimation of the libraries that are most commonly used to generate the keys found on the Internet.

  • Czech name

  • Czech description

Classification

  • Type

    D - Article in proceedings

  • CEP classification

    IN - Informatics

  • OECD FORD branch

Result continuities

  • Project

    <a href="/en/project/GA16-08565S" target="_blank" >GA16-08565S: Advancing cryptanalytic methods through evolutionary computing</a><br>

  • Continuities

    P - Projekt vyzkumu a vyvoje financovany z verejnych zdroju (s odkazem do CEP)

Others

  • Publication year

    2016

  • Confidentiality

    S - Úplné a pravdivé údaje o projektu nepodléhají ochraně podle zvláštních právních předpisů

Data specific for result type

  • Article name in the collection

    Proceedings of 25th USENIX Security Symposium

  • ISBN

    9781931971324

  • ISSN

  • e-ISSN

  • Number of pages

    18

  • Pages from-to

    893-910

  • Publisher name

    USENIX Association

  • Place of publication

    Austin, Texas

  • Event location

    Austin, Texas

  • Event date

    Jan 1, 2016

  • Type of event by nationality

    WRD - Celosvětová akce

  • UT code for WoS article

Similar results(10)

Biased RSA private keys: Origin attribution of GCD-factorable keysI want to break square-free: The 4p - 1 factorization method and its RSA backdoor viabilityOptical Cryptanalysis: Recovering Cryptographic Keys from Power LED Light Fluctuations