[cryptography] Modern replacement for ANSI X9.31 as far as RSA key generation goes?

Francois Grieu fgrieu at gmail.com
Thu Dec 2 12:33:24 EST 2010


Hi,

apparently, ANSI X9.31:1998 is no longer for sale.
That's a sign that it is withdrawn (although I find
no statement to that effect, and some recent FIPS
documents that refer to it).

I'm thus in search for a current public standard (not
necessarily free) specifying algorithms for RSA key
generation, as a replacement for ANSI X9.31:1998;
something with the range of the modulus and primes, and
(mostly harmless and pointless) requirements on p-1,
p+1, |p-q| and such, beside selecting random primes.

PKCS#1 v2.1 does not cut it; it defines valid keys, but
not how to select the primes.

ANSI X9.80:2005 does not seem to cut it (it is about
random primes, not RSA keys).
I suspect the same holds for ISO/IEC 18032:2005


Any pointer? TIA

  Francois Grieu



More information about the cryptography mailing list