[cryptography] Duplicate primes in lots of RSA moduli

Jeffrey I. Schiller jis at qyv.net
Sat Feb 18 12:44:06 EST 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 02/16/2012 03:47 PM, Nico Williams wrote:
> I'd thought that you were going to say that so many devices sharing
> the same key instead of one prime would be better on account of the
> problem being more noticeable.  Otherwise I don't see the difference
> between one low-entropy case and another -- both are catastrophic
> failures.

Yes, both are catastrophic, but to different degrees. If they share the
same key, then you have a large set of folks who share a common private
key. However the rest of the world doesn't know that key.

In the case where only one prime is shared, the whole world (or at least
everyone who has a copy of both public keys) has the private key.

			-Jeff

- -- 
_______________________________________________________________________
Jeffrey I. Schiller
MIT Technologist, Consultant, and Cavy Breeder
Cambridge, MA 02139-4307
617.910.0259 - Voice
jis at qyv.net
http://jis.qyv.name
_______________________________________________________________________
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iD8DBQFPP+Ne8CBzV/QUlSsRAtL7AKCo6GAa1eN9Kmv6e8A5/7cHnN+FHQCg3yAj
N0eJHbHGYgyeVt/RXpoY7C4=
=dhm6
-----END PGP SIGNATURE-----



More information about the cryptography mailing list