Title:
GCDX of p-1,q-1 for Random p,q

Thumbnail Image
Author(s)
Vishnoi, Nisheeth Kumar
Authors
Advisor(s)
Advisor(s)
Editor(s)
Associated Organization(s)
Organizational Unit
Supplementary to
Abstract
In this note we study the following problem: How big can the greatest common divisor of p−1 and q−1 be, where p, q are randomly chosen primes in the set {1, . . . ,N}? Apart from being of independent interest, this problem arises in security when one wants to use an l (= 1024) bit RSA crypto coprocessor to do 2l bit cryptography [3]. One can answer this question quickly if one is allowed asymptotic results. But in practice one has N = 2[superscript 1024], so asymptotic results do not make much sense. It was observed that with probability at least than 0.99 ([3]), the g.c.d. is less than 32 bit. In this note we prove exactly this! To do so we combine some non-trivial exact results from analytic number theory.
Sponsor
Date Issued
2003
Extent
103799 bytes
Resource Type
Text
Resource Subtype
Technical Report
Rights Statement
Rights URI