|
|
|
|
|
|
by rocqua
1930 days ago
|
|
|
Thing is, RSA keys are rather 'sparse' because they are the product of two primes. There aren't that many primes, so there aren't that many numbers that only have two (proper) divisors. Hence, if you look at the strength of the currently best-known attack on RSA keys, you see that the key strength grows quite slowly as the keys get larger. This is purely from how sparse prime numbers are. From [1] which quotes NIST in 2015 we see (both collumns are in bits): Strength RSA modulus size
80 1024
112 2048
128 3072
192 7680
256 15360
> Because multiplying two numbers together doesn't preserve information about what the factors were. Or at least pretty much everyone thought so.Technically the information is still there, it was just thought to be very hard to extract. This paper shows an easier way to extract it. [1] https://crypto.stackexchange.com/questions/8687/security-str... |
|
|