Skip to main content
Disciplines
Automotive Business IT + Informatics Construction + Real Estate Electrical Engineering + Electronics Energy + Sustainability Insurance + Risk Finance + Banking Management + Leadership Marketing + Sales Mechanical Engineering + Materials
Events
DE
EN
Books
Journals
Topic Page
Marketing
Start single access now
Access for companies
EXTENDED SEARCH
Log in
Top
Published in:
Cryptanalytic Time/Memory/Data Tradeoffs for Stream Ciphers Read chapter Read first chapter

2000 | OriginalPaper | Chapter

Why Textbook ElGamal and RSA Encryption Are Insecure

Extended Abstract

Authors : Dan Boneh, Antoine Joux, Phong Q. Nguyen

Published in: Advances in Cryptology — ASIACRYPT 2000

Publisher: Springer Berlin Heidelberg

Included in: Professional Book Archive

Get Access

Activate our intelligent search to find suitable subject content or patents.

search-config
loading …

We present an attack on plain ElGamal and plain RSA encryption. The attack shows that without proper preprocessing of the plaintexts, both El Gamal and RSA encryption are fundamentally insecure. Namely, when one uses these systems to encrypt a (short) secret key of a symmetric cipher it is often possible to recover the secret key from the ciphertext. Our results demonstrate that preprocessing messages prior to encryption is an essential part of bothsy stems.

previous chapter Cryptanalysis of the RSA Schemes with Short Secret Exponent from Asiacrypt ’99
next chapter Cryptanalysis of the TTM Cryptosystem
Metadata
Title
Why Textbook ElGamal and RSA Encryption Are Insecure
Authors
Dan Boneh
Antoine Joux
Phong Q. Nguyen
Copyright Year
2000
Publisher
Springer Berlin Heidelberg
Book
Advances in Cryptology — ASIACRYPT 2000

Print ISBN: 978-3-540-41404-9

Electronic ISBN: 978-3-540-44448-0

Copyright Year: 2000

DOI
https://doi.org/10.1007/3-540-44448-3_3

Premium Partner

    Image Credits