×

On the broadcast and validity-checking security of pkcs#1 v1.5 encryption. (English) Zbl 1315.94054

Zhou, Jianying (ed.) et al., Applied cryptography and network security. 8th international conference, ACNS 2010, Beijing, China, June 22–25, 2010. Proceedings. Berlin: Springer (ISBN 978-3-642-13707-5/pbk). Lecture Notes in Computer Science 6123, 1-18 (2010).
Summary: This paper describes new attacks on pkcs#1 v1.5, a deprecated but still widely used RSA encryption standard.
The first cryptanalysis is a broadcast attack, allowing the opponent to reveal an identical plaintext sent to different recipients. This is nontrivial because different randomizers are used for different encryptions (in other words, plaintexts coincide only partially).
The second attack predicts, using a single query to a validity checking oracle, which of two chosen plaintexts corresponds to a challenge ciphertext. The attack’s success odds are very high.
The two new attacks rely on different mathematical tools and underline the need to accelerate the phase out of pkcs#1 v1.5.
For the entire collection see [Zbl 1190.94005].

MSC:

94A60 Cryptography
PDFBibTeX XMLCite
Full Text: DOI