Re: RSA moduli sizes
- From: 1.41421@xxxxxxxxx
- Date: Sat, 4 Apr 2009 10:42:11 -0700 (PDT)
Not that I want to rock the boat in this heated discussion but, is it
not the case that by demanding that the most significant bit of an N-
bit RSA modulus be 1 we are effectively turning it into an (N-1)-bit
modulus? I mean, we are removing the uncertainty on that bit. Also, it
has to be 1, does that not imply that we set of primes that can be
used to obtain such modulus is smaller than if there are no
constraints on the leading bit of the modulus? Would this not also
imply then that we are effectively weakening the cryptosystem?
A modicum of kindness would be appreciated - I have no claims of
expertise in the field, and I therefore might be saying something
stupid. Telling me that I am an ignorant moron would not be very
constructive.
.
- Follow-Ups:
- Re: RSA moduli sizes
- From: Joseph Ashwood
- Re: RSA moduli sizes
- From: pubkeybreaker
- Re: RSA moduli sizes
- Prev by Date: Re: Cypher Resistant to Differential Cryptanalysis
- Next by Date: Re: Brute force estimates
- Previous by thread: Re: RSA moduli sizes
- Next by thread: Re: RSA moduli sizes
- Index(es):
