On The Broadcast and Validity-Checking Security of PKCS #1 v1.5 Encryption

This paper describes new attacks on PKCS #1 v1.5, a deprecated but still widely used RSA encryption standard. The first cryptanalysis is a broadcast attack, allowing the opponent to reveal an identical plaintext sent to different recipients. This is nontrivial because different randomizers are used for different encryptions (in other words, plaintexts coincide only partially). The second attack predicts, using a single query to a validity checking oracle, which of two chosen plaintexts corresponds to a challenge ciphertext. The attack's success odds are very high. The two new attacks rely on different mathematical tools and underline the need to accelerate the phase out of PKCS #1 v1.5.

Mots clés

pkcs#1 v1.5 Encryption Broadcast Encryption Cryptanalysis

Domaines

Cryptographie et sécurité [cs.CR]

Fichier principal

PKCS1-1.5.pdf (240.06 Ko)

Origine : Fichiers produits par l'(les) auteur(s)

Damien Vergnaud : Connectez-vous pour contacter le contributeur

https://inria.hal.science/inria-00577142

Soumis le : mercredi 16 mars 2011-14:37:36

Dernière modification le : vendredi 19 avril 2024-16:18:55

Archivage à long terme le : vendredi 17 juin 2011-02:41:41

Dates et versions

inria-00577142 , version 1 (16-03-2011)

Identifiants

HAL Id : inria-00577142 , version 1
DOI : 10.1007/978-3-642-13708-2_1

Citer

Aurélie Bauer, Jean-Sébastien Coron, David Naccache, Mehdi Tibouchi, Damien Vergnaud. On The Broadcast and Validity-Checking Security of PKCS #1 v1.5 Encryption. Applied Cryptography and Network Security, 8th International Conference, ACNS 2010, Jun 2010, Beijing, China. pp.1-18, ⟨10.1007/978-3-642-13708-2_1⟩. ⟨inria-00577142⟩

Exporter

BibTeX XML-TEI Dublin Core DC Terms EndNote DataCite

Collections

ENS-PARIS CNRS INRIA INRIA2 PSL

415 Consultations

518 Téléchargements