home *** CD-ROM | disk | FTP | other *** search
open in: 
MacOS 8.1
|
Win98
|
DOS
view JSON data
|
view as text
This file was processed as: Mailbox/MIME Entity
(archive/mbox).
You can browse this item here: RSACRYPT.20
| Confidence | Program | Detection | Match Type | Support
|
|---|
| 100%
| dexvert
| Mailbox/MIME Entity (archive/mbox)
| magic
| Supported |
| 100%
| dexvert
| Internet Message Format (text/imf)
| magic
| Supported |
| 1%
| dexvert
| Text File (text/txt)
| fallback
| Supported |
| 100%
| file
| Mailbox text, 1st line "From faq-editor@rsa.com Mon Aug 22 19:45:03 1994", ASCII text
| default
| |
| 100%
| TrID
| E-Mail message (Var. 2)
| default
| |
| 100%
| checkBytes
| Printable ASCII
| default
| |
| 100%
| perlTextCheck
| Likely Text (Perl)
| default
| |
| 100%
| siegfried
| x-fmt/111 Plain Text File
| default
| |
| 100%
| detectItEasy
| Format: plain text[LF]
| default (weak)
| |
| 100%
| xdgMime
| application/mbox
| default
|
|
hex view+--------+-------------------------+-------------------------+--------+--------+
|00000000| 46 72 6f 6d 20 66 61 71 | 2d 65 64 69 74 6f 72 40 |From faq|-editor@|
|00000010| 72 73 61 2e 63 6f 6d 20 | 4d 6f 6e 20 41 75 67 20 |rsa.com |Mon Aug |
|00000020| 32 32 20 31 39 3a 34 35 | 3a 30 33 20 31 39 39 34 |22 19:45|:03 1994|
|00000030| 0a 46 72 6f 6d 3a 20 66 | 61 71 2d 65 64 69 74 6f |.From: f|aq-edito|
|00000040| 72 40 72 73 61 2e 63 6f | 6d 0a 4e 65 77 73 67 72 |r@rsa.co|m.Newsgr|
|00000050| 6f 75 70 73 3a 20 73 63 | 69 2e 63 72 79 70 74 2c |oups: sc|i.crypt,|
|00000060| 74 61 6c 6b 2e 70 6f 6c | 69 74 69 63 73 2e 63 72 |talk.pol|itics.cr|
|00000070| 79 70 74 6f 2c 61 6c 74 | 2e 73 65 63 75 72 69 74 |ypto,alt|.securit|
|00000080| 79 2e 72 69 70 65 6d 2c | 73 63 69 2e 61 6e 73 77 |y.ripem,|sci.answ|
|00000090| 65 72 73 2c 74 61 6c 6b | 2e 61 6e 73 77 65 72 73 |ers,talk|.answers|
|000000a0| 2c 61 6c 74 2e 61 6e 73 | 77 65 72 73 2c 6e 65 77 |,alt.ans|wers,new|
|000000b0| 73 2e 61 6e 73 77 65 72 | 73 0a 53 75 62 6a 65 63 |s.answer|s.Subjec|
|000000c0| 74 3a 20 52 53 41 20 43 | 72 79 70 74 6f 67 72 61 |t: RSA C|ryptogra|
|000000d0| 70 68 79 20 54 6f 64 61 | 79 20 46 41 51 20 28 31 |phy Toda|y FAQ (1|
|000000e0| 2f 33 29 0a 53 75 70 65 | 72 73 65 64 65 73 3a 20 |/3).Supe|rsedes: |
|000000f0| 3c 63 72 79 70 74 6f 67 | 72 61 70 68 79 2d 66 61 |<cryptog|raphy-fa|
|00000100| 71 2f 72 73 61 2f 70 61 | 72 74 31 5f 37 37 35 33 |q/rsa/pa|rt1_7753|
|00000110| 37 31 33 30 33 40 72 74 | 66 6d 2e 6d 69 74 2e 65 |71303@rt|fm.mit.e|
|00000120| 64 75 3e 0a 46 6f 6c 6c | 6f 77 75 70 2d 54 6f 3a |du>.Foll|owup-To:|
|00000130| 20 70 6f 73 74 65 72 0a | 44 61 74 65 3a 20 31 39 | poster.|Date: 19|
|00000140| 20 41 75 67 20 31 39 39 | 34 20 30 32 3a 32 36 3a | Aug 199|4 02:26:|
|00000150| 33 37 20 47 4d 54 0a 4f | 72 67 61 6e 69 7a 61 74 |37 GMT.O|rganizat|
|00000160| 69 6f 6e 3a 20 6e 6f 6e | 65 0a 52 65 70 6c 79 2d |ion: non|e.Reply-|
|00000170| 54 6f 3a 20 66 61 71 2d | 65 64 69 74 6f 72 40 72 |To: faq-|editor@r|
|00000180| 73 61 2e 63 6f 6d 0a 4e | 4e 54 50 2d 50 6f 73 74 |sa.com.N|NTP-Post|
|00000190| 69 6e 67 2d 48 6f 73 74 | 3a 20 62 6c 6f 6f 6d 2d |ing-Host|: bloom-|
|000001a0| 70 69 63 61 79 75 6e 65 | 2e 6d 69 74 2e 65 64 75 |picayune|.mit.edu|
|000001b0| 0a 58 2d 4c 61 73 74 2d | 55 70 64 61 74 65 64 3a |.X-Last-|Updated:|
|000001c0| 20 31 39 39 34 2f 30 36 | 2f 31 33 0a 4f 72 69 67 | 1994/06|/13.Orig|
|000001d0| 69 6e 61 74 6f 72 3a 20 | 66 61 71 73 65 72 76 40 |inator: |faqserv@|
|000001e0| 62 6c 6f 6f 6d 2d 70 69 | 63 61 79 75 6e 65 2e 4d |bloom-pi|cayune.M|
|000001f0| 49 54 2e 45 44 55 0a 0a | 41 72 63 68 69 76 65 2d |IT.EDU..|Archive-|
|00000200| 6e 61 6d 65 3a 20 63 72 | 79 70 74 6f 67 72 61 70 |name: cr|yptograp|
|00000210| 68 79 2d 66 61 71 2f 72 | 73 61 2f 70 61 72 74 31 |hy-faq/r|sa/part1|
|00000220| 0a 4c 61 73 74 2d 6d 6f | 64 69 66 69 65 64 3a 20 |.Last-mo|dified: |
|00000230| 39 33 2f 30 39 2f 32 30 | 0a 56 65 72 73 69 6f 6e |93/09/20|.Version|
|00000240| 3a 20 32 2e 30 0a 44 69 | 73 74 72 69 62 75 74 69 |: 2.0.Di|stributi|
|00000250| 6f 6e 2d 61 67 65 6e 74 | 3a 20 74 6d 70 40 6e 65 |on-agent|: tmp@ne|
|00000260| 74 63 6f 6d 2e 63 6f 6d | 0a 0a 0a 28 54 68 69 73 |tcom.com|...(This|
|00000270| 20 64 6f 63 75 6d 65 6e | 74 20 68 61 73 20 62 65 | documen|t has be|
|00000280| 65 6e 20 62 72 6f 75 67 | 68 74 20 74 6f 20 79 6f |en broug|ht to yo|
|00000290| 75 20 69 6e 20 70 61 72 | 74 20 62 79 20 43 52 41 |u in par|t by CRA|
|000002a0| 4d 2e 20 20 53 65 65 20 | 74 68 65 0a 62 6f 74 74 |M. See |the.bott|
|000002b0| 6f 6d 20 66 6f 72 20 6d | 6f 72 65 20 69 6e 66 6f |om for m|ore info|
|000002c0| 72 6d 61 74 69 6f 6e 2c | 20 69 6e 63 6c 75 64 69 |rmation,| includi|
|000002d0| 6e 67 20 69 6e 73 74 72 | 75 63 74 69 6f 6e 73 20 |ng instr|uctions |
|000002e0| 6f 6e 20 68 6f 77 20 74 | 6f 0a 6f 62 74 61 69 6e |on how t|o.obtain|
|000002f0| 20 75 70 64 61 74 65 73 | 2e 29 0a 0a 3d 3d 3d 0a | updates|.)..===.|
|00000300| 0a 0a 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.. | |
|00000310| 20 20 20 20 20 20 20 20 | 20 20 20 20 41 6e 73 77 | | Answ|
|00000320| 65 72 73 20 54 6f 0a 20 | 20 20 20 20 20 20 20 20 |ers To. | |
|00000330| 20 20 20 20 20 20 20 20 | 46 52 45 51 55 45 4e 54 | |FREQUENT|
|00000340| 4c 59 20 41 53 4b 45 44 | 20 51 55 45 53 54 49 4f |LY ASKED| QUESTIO|
|00000350| 4e 53 0a 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |NS. | |
|00000360| 20 20 20 20 41 62 6f 75 | 74 20 54 6f 64 61 79 27 | Abou|t Today'|
|00000370| 73 20 43 72 79 70 74 6f | 67 72 61 70 68 79 0a 0a |s Crypto|graphy..|
|00000380| 0a 0a 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 |.. | |
|00000390| 20 20 20 20 20 20 20 20 | 20 20 20 20 50 61 75 6c | | Paul|
|000003a0| 20 46 61 68 6e 0a 20 20 | 20 20 20 20 20 20 20 20 | Fahn. | |
|000003b0| 20 20 20 20 20 20 20 20 | 20 20 20 20 52 53 41 20 | | RSA |
|000003c0| 4c 61 62 6f 72 61 74 6f | 72 69 65 73 0a 20 20 20 |Laborato|ries. |
|000003d0| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 20 20 | | |
|000003e0| 20 20 31 30 30 20 4d 61 | 72 69 6e 65 20 50 61 72 | 100 Ma|rine Par|
|000003f0| 6b 77 61 79 0a 20 20 20 | 20 20 20 20 20 20 20 20 |kway. | |
|00000400| 20 20 20 20 20 20 20 20 | 52 65 64 77 6f 6f 64 20 | |Redwood |
|00000410| 43 69 74 79 2c 20 43 41 | 20 20 39 34 30 36 35 0a |City, CA| 94065.|
|00000420| 0a 0a 0a 20 20 20 43 6f | 70 79 72 69 67 68 74 20 |... Co|pyright |
|00000430| 28 63 29 20 31 39 39 33 | 20 52 53 41 20 4c 61 62 |(c) 1993| RSA Lab|
|00000440| 6f 72 61 74 6f 72 69 65 | 73 2c 20 61 20 64 69 76 |oratorie|s, a div|
|00000450| 69 73 69 6f 6e 20 6f 66 | 20 52 53 41 20 44 61 74 |ision of| RSA Dat|
|00000460| 61 20 53 65 63 75 72 69 | 74 79 2c 0a 20 20 20 20 |a Securi|ty,. |
|00000470| 20 20 49 6e 63 2e 20 41 | 6c 6c 20 72 69 67 68 74 | Inc. A|ll right|
|00000480| 73 20 72 65 73 65 72 76 | 65 64 2e 0a 0a 20 20 20 |s reserv|ed... |
|00000490| 56 65 72 73 69 6f 6e 20 | 32 2e 30 2c 20 64 72 61 |Version |2.0, dra|
|000004a0| 66 74 20 32 66 0a 20 20 | 20 4c 61 73 74 20 75 70 |ft 2f. | Last up|
|000004b0| 64 61 74 65 3a 20 53 65 | 70 74 65 6d 62 65 72 20 |date: Se|ptember |
|000004c0| 32 30 2c 20 31 39 39 33 | 0a 0a 0a 0a 2d 2d 2d 2d |20, 1993|....----|
|000004d0| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|000004e0| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|000004f0| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|00000500| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|00000510| 2d 2d 2d 2d 0a 20 20 20 | 20 20 20 20 20 20 20 20 |----. | |
|00000520| 20 20 20 20 20 20 20 20 | 20 20 20 20 20 20 54 61 | | Ta|
|00000530| 62 6c 65 20 6f 66 20 43 | 6f 6e 74 65 6e 74 73 0a |ble of C|ontents.|
|00000540| 0a 5b 20 70 61 72 74 20 | 31 20 5d 0a 0a 31 20 47 |.[ part |1 ]..1 G|
|00000550| 65 6e 65 72 61 6c 20 0a | 20 20 20 20 20 20 20 31 |eneral .| 1|
|00000560| 2e 31 20 20 57 68 61 74 | 20 69 73 20 65 6e 63 72 |.1 What| is encr|
|00000570| 79 70 74 69 6f 6e 3f 20 | 0a 20 20 20 20 20 20 20 |yption? |. |
|00000580| 31 2e 32 20 20 57 68 61 | 74 20 69 73 20 61 75 74 |1.2 Wha|t is aut|
|00000590| 68 65 6e 74 69 63 61 74 | 69 6f 6e 3f 20 57 68 61 |henticat|ion? Wha|
|000005a0| 74 20 69 73 20 61 20 64 | 69 67 69 74 61 6c 20 73 |t is a d|igital s|
|000005b0| 69 67 6e 61 74 75 72 65 | 3f 20 0a 20 20 20 20 20 |ignature|? . |
|000005c0| 20 20 31 2e 33 20 20 57 | 68 61 74 20 69 73 20 70 | 1.3 W|hat is p|
|000005d0| 75 62 6c 69 63 2d 6b 65 | 79 20 63 72 79 70 74 6f |ublic-ke|y crypto|
|000005e0| 67 72 61 70 68 79 3f 20 | 0a 20 20 20 20 20 20 20 |graphy? |. |
|000005f0| 31 2e 34 20 20 57 68 61 | 74 20 61 72 65 20 74 68 |1.4 Wha|t are th|
|00000600| 65 20 61 64 76 61 6e 74 | 61 67 65 73 20 61 6e 64 |e advant|ages and|
|00000610| 20 64 69 73 61 64 76 61 | 6e 74 61 67 65 73 20 6f | disadva|ntages o|
|00000620| 66 20 70 75 62 6c 69 63 | 2d 6b 65 79 20 0a 20 20 |f public|-key . |
|00000630| 20 20 20 20 20 20 20 20 | 20 20 63 72 79 70 74 6f | | crypto|
|00000640| 67 72 61 70 68 79 20 6f | 76 65 72 20 73 65 63 72 |graphy o|ver secr|
|00000650| 65 74 2d 6b 65 79 20 63 | 72 79 70 74 6f 67 72 61 |et-key c|ryptogra|
|00000660| 70 68 79 3f 20 0a 20 20 | 20 20 20 20 20 31 2e 35 |phy? . | 1.5|
|00000670| 20 20 49 73 20 63 72 79 | 70 74 6f 67 72 61 70 68 | Is cry|ptograph|
|00000680| 79 20 70 61 74 65 6e 74 | 61 62 6c 65 20 69 6e 20 |y patent|able in |
|00000690| 74 68 65 20 55 2e 53 2e | 3f 20 0a 20 20 20 20 20 |the U.S.|? . |
|000006a0| 20 20 31 2e 36 20 20 49 | 73 20 63 72 79 70 74 6f | 1.6 I|s crypto|
|000006b0| 67 72 61 70 68 79 20 65 | 78 70 6f 72 74 61 62 6c |graphy e|xportabl|
|000006c0| 65 20 66 72 6f 6d 20 74 | 68 65 20 55 2e 53 2e 3f |e from t|he U.S.?|
|000006d0| 20 0a 0a 32 20 52 53 41 | 20 0a 20 20 20 20 20 20 | ..2 RSA| . |
|000006e0| 20 32 2e 31 20 20 57 68 | 61 74 20 69 73 20 52 53 | 2.1 Wh|at is RS|
|000006f0| 41 3f 20 0a 20 20 20 20 | 20 20 20 32 2e 32 20 20 |A? . | 2.2 |
|00000700| 57 68 79 20 75 73 65 20 | 52 53 41 20 72 61 74 68 |Why use |RSA rath|
|00000710| 65 72 20 74 68 61 6e 20 | 44 45 53 3f 20 0a 20 20 |er than |DES? . |
|00000720| 20 20 20 20 20 32 2e 33 | 20 20 48 6f 77 20 66 61 | 2.3| How fa|
|00000730| 73 74 20 69 73 20 52 53 | 41 3f 20 0a 20 20 20 20 |st is RS|A? . |
|00000740| 20 20 20 32 2e 34 20 20 | 48 6f 77 20 6d 75 63 68 | 2.4 |How much|
|00000750| 20 65 78 74 72 61 20 6d | 65 73 73 61 67 65 20 6c | extra m|essage l|
|00000760| 65 6e 67 74 68 20 69 73 | 20 63 61 75 73 65 64 20 |ength is| caused |
|00000770| 62 79 20 75 73 69 6e 67 | 20 52 53 41 3f 20 0a 20 |by using| RSA? . |
|00000780| 20 20 20 20 20 20 32 2e | 35 20 20 57 68 61 74 20 | 2.|5 What |
|00000790| 77 6f 75 6c 64 20 69 74 | 20 74 61 6b 65 20 74 6f |would it| take to|
|000007a0| 20 62 72 65 61 6b 20 52 | 53 41 3f 20 0a 20 20 20 | break R|SA? . |
|000007b0| 20 20 20 20 32 2e 36 20 | 20 41 72 65 20 73 74 72 | 2.6 | Are str|
|000007c0| 6f 6e 67 20 70 72 69 6d | 65 73 20 6e 65 63 65 73 |ong prim|es neces|
|000007d0| 73 61 72 79 20 69 6e 20 | 52 53 41 3f 20 0a 20 20 |sary in |RSA? . |
|000007e0| 20 20 20 20 20 32 2e 37 | 20 20 48 6f 77 20 6c 61 | 2.7| How la|
|000007f0| 72 67 65 20 61 20 6d 6f | 64 75 6c 75 73 20 28 6b |rge a mo|dulus (k|
|00000800| 65 79 29 20 73 68 6f 75 | 6c 64 20 62 65 20 75 73 |ey) shou|ld be us|
|00000810| 65 64 20 69 6e 20 52 53 | 41 3f 20 0a 20 20 20 20 |ed in RS|A? . |
|00000820| 20 20 20 32 2e 38 20 20 | 48 6f 77 20 6c 61 72 67 | 2.8 |How larg|
|00000830| 65 20 73 68 6f 75 6c 64 | 20 74 68 65 20 70 72 69 |e should| the pri|
|00000840| 6d 65 73 20 62 65 3f 20 | 0a 20 20 20 20 20 20 20 |mes be? |. |
|00000850| 32 2e 39 20 20 48 6f 77 | 20 64 6f 65 73 20 6f 6e |2.9 How| does on|
|00000860| 65 20 66 69 6e 64 20 72 | 61 6e 64 6f 6d 20 6e 75 |e find r|andom nu|
|00000870| 6d 62 65 72 73 20 66 6f | 72 20 6b 65 79 73 3f 20 |mbers fo|r keys? |
|00000880| 0a 20 20 20 20 20 20 20 | 32 2e 31 30 20 20 57 68 |. |2.10 Wh|
|00000890| 61 74 20 69 66 20 75 73 | 65 72 73 20 6f 66 20 52 |at if us|ers of R|
|000008a0| 53 41 20 72 75 6e 20 6f | 75 74 20 6f 66 20 64 69 |SA run o|ut of di|
|000008b0| 73 74 69 6e 63 74 20 70 | 72 69 6d 65 73 3f 20 0a |stinct p|rimes? .|
|000008c0| 20 20 20 20 20 20 20 32 | 2e 31 31 20 20 48 6f 77 | 2|.11 How|
|000008d0| 20 64 6f 20 79 6f 75 20 | 6b 6e 6f 77 20 69 66 20 | do you |know if |
|000008e0| 61 20 6e 75 6d 62 65 72 | 20 69 73 20 70 72 69 6d |a number| is prim|
|000008f0| 65 3f 20 0a 20 20 20 20 | 20 20 20 32 2e 31 32 20 |e? . | 2.12 |
|00000900| 20 48 6f 77 20 69 73 20 | 52 53 41 20 75 73 65 64 | How is |RSA used|
|00000910| 20 66 6f 72 20 65 6e 63 | 72 79 70 74 69 6f 6e 20 | for enc|ryption |
|00000920| 69 6e 20 70 72 61 63 74 | 69 63 65 3f 20 0a 20 20 |in pract|ice? . |
|00000930| 20 20 20 20 20 32 2e 31 | 33 20 20 48 6f 77 20 69 | 2.1|3 How i|
|00000940| 73 20 52 53 41 20 75 73 | 65 64 20 66 6f 72 20 61 |s RSA us|ed for a|
|00000950| 75 74 68 65 6e 74 69 63 | 61 74 69 6f 6e 20 69 6e |uthentic|ation in|
|00000960| 20 70 72 61 63 74 69 63 | 65 3f 20 0a 20 20 20 20 | practic|e? . |
|00000970| 20 20 20 32 2e 31 34 20 | 20 44 6f 65 73 20 52 53 | 2.14 | Does RS|
|00000980| 41 20 68 65 6c 70 20 64 | 65 74 65 63 74 20 61 6c |A help d|etect al|
|00000990| 74 65 72 65 64 20 64 6f | 63 75 6d 65 6e 74 73 20 |tered do|cuments |
|000009a0| 61 6e 64 20 74 72 61 6e | 73 6d 69 73 73 69 6f 6e |and tran|smission|
|000009b0| 20 65 72 72 6f 72 73 3f | 20 0a 20 20 20 20 20 20 | errors?| . |
|000009c0| 20 32 2e 31 35 20 20 57 | 68 61 74 20 61 72 65 20 | 2.15 W|hat are |
|000009d0| 61 6c 74 65 72 6e 61 74 | 69 76 65 73 20 74 6f 20 |alternat|ives to |
|000009e0| 52 53 41 3f 20 0a 20 20 | 20 20 20 20 20 32 2e 31 |RSA? . | 2.1|
|000009f0| 36 20 20 49 73 20 52 53 | 41 20 63 75 72 72 65 6e |6 Is RS|A curren|
|00000a00| 74 6c 79 20 69 6e 20 75 | 73 65 20 74 6f 64 61 79 |tly in u|se today|
|00000a10| 3f 20 0a 20 20 20 20 20 | 20 20 32 2e 31 37 20 20 |? . | 2.17 |
|00000a20| 49 73 20 52 53 41 20 61 | 6e 20 6f 66 66 69 63 69 |Is RSA a|n offici|
|00000a30| 61 6c 20 73 74 61 6e 64 | 61 72 64 20 74 6f 64 61 |al stand|ard toda|
|00000a40| 79 3f 20 0a 20 20 20 20 | 20 20 20 32 2e 31 38 20 |y? . | 2.18 |
|00000a50| 20 49 73 20 52 53 41 20 | 61 20 64 65 20 66 61 63 | Is RSA |a de fac|
|00000a60| 74 6f 20 73 74 61 6e 64 | 61 72 64 3f 20 57 68 79 |to stand|ard? Why|
|00000a70| 20 69 73 20 61 20 64 65 | 20 66 61 63 74 6f 20 73 | is a de| facto s|
|00000a80| 74 61 6e 64 61 72 64 20 | 69 6d 70 6f 72 74 61 6e |tandard |importan|
|00000a90| 74 3f 20 0a 20 20 20 20 | 20 20 20 32 2e 31 39 20 |t? . | 2.19 |
|00000aa0| 20 49 73 20 52 53 41 20 | 70 61 74 65 6e 74 65 64 | Is RSA |patented|
|00000ab0| 3f 20 0a 20 20 20 20 20 | 20 20 32 2e 32 30 20 20 |? . | 2.20 |
|00000ac0| 43 61 6e 20 52 53 41 20 | 62 65 20 65 78 70 6f 72 |Can RSA |be expor|
|00000ad0| 74 65 64 20 66 72 6f 6d | 20 74 68 65 20 55 2e 53 |ted from| the U.S|
|00000ae0| 2e 3f 20 0a 0a 5b 20 70 | 61 72 74 20 32 20 5d 0a |.? ..[ p|art 2 ].|
|00000af0| 0a 33 20 4b 65 79 20 4d | 61 6e 61 67 65 6d 65 6e |.3 Key M|anagemen|
|00000b00| 74 20 0a 20 20 20 20 20 | 20 20 33 2e 31 20 20 57 |t . | 3.1 W|
|00000b10| 68 61 74 20 6b 65 79 20 | 6d 61 6e 61 67 65 6d 65 |hat key |manageme|
|00000b20| 6e 74 20 69 73 73 75 65 | 73 20 61 72 65 20 69 6e |nt issue|s are in|
|00000b30| 76 6f 6c 76 65 64 20 69 | 6e 20 70 75 62 6c 69 63 |volved i|n public|
|00000b40| 2d 6b 65 79 20 0a 20 20 | 20 20 20 20 20 20 20 20 |-key . | |
|00000b50| 20 20 63 72 79 70 74 6f | 67 72 61 70 68 79 3f 20 | crypto|graphy? |
|00000b60| 0a 20 20 20 20 20 20 20 | 33 2e 32 20 20 57 68 6f |. |3.2 Who|
|00000b70| 20 6e 65 65 64 73 20 61 | 20 6b 65 79 3f 20 0a 20 | needs a| key? . |
|00000b80| 20 20 20 20 20 20 33 2e | 33 20 20 48 6f 77 20 64 | 3.|3 How d|
|00000b90| 6f 65 73 20 6f 6e 65 20 | 67 65 74 20 61 20 6b 65 |oes one |get a ke|
|00000ba0| 79 20 70 61 69 72 3f 20 | 0a 20 20 20 20 20 20 20 |y pair? |. |
|00000bb0| 33 2e 34 20 20 53 68 6f | 75 6c 64 20 61 20 70 75 |3.4 Sho|uld a pu|
|00000bc0| 62 6c 69 63 20 6b 65 79 | 20 6f 72 20 70 72 69 76 |blic key| or priv|
|00000bd0| 61 74 65 20 6b 65 79 20 | 62 65 20 73 68 61 72 65 |ate key |be share|
|00000be0| 64 20 61 6d 6f 6e 67 20 | 75 73 65 72 73 3f 20 0a |d among |users? .|
|00000bf0| 20 20 20 20 20 20 20 33 | 2e 35 20 20 57 68 61 74 | 3|.5 What|
|00000c00| 20 61 72 65 20 63 65 72 | 74 69 66 69 63 61 74 65 | are cer|tificate|
|00000c10| 73 3f 20 0a 20 20 20 20 | 20 20 20 33 2e 36 20 20 |s? . | 3.6 |
|00000c20| 48 6f 77 20 61 72 65 20 | 63 65 72 74 69 66 69 63 |How are |certific|
|00000c30| 61 74 65 73 20 75 73 65 | 64 3f 20 0a 20 20 20 20 |ates use|d? . |
|00000c40| 20 20 20 33 2e 37 20 20 | 57 68 6f 20 69 73 73 75 | 3.7 |Who issu|
|00000c50| 65 73 20 63 65 72 74 69 | 66 69 63 61 74 65 73 20 |es certi|ficates |
|00000c60| 61 6e 64 20 68 6f 77 3f | 20 0a 20 20 20 20 20 20 |and how?| . |
|00000c70| 20 33 2e 38 20 20 57 68 | 61 74 20 69 73 20 61 20 | 3.8 Wh|at is a |
|00000c80| 43 53 55 2c 20 6f 72 2c | 20 48 6f 77 20 64 6f 20 |CSU, or,| How do |
|00000c90| 63 65 72 74 69 66 79 69 | 6e 67 20 61 75 74 68 6f |certifyi|ng autho|
|00000ca0| 72 69 74 69 65 73 20 73 | 74 6f 72 65 20 74 68 65 |rities s|tore the|
|00000cb0| 69 72 20 0a 20 20 20 20 | 20 20 20 20 20 20 20 20 |ir . | |
|00000cc0| 70 72 69 76 61 74 65 20 | 6b 65 79 73 3f 20 0a 20 |private |keys? . |
|00000cd0| 20 20 20 20 20 20 33 2e | 39 20 20 41 72 65 20 63 | 3.|9 Are c|
|00000ce0| 65 72 74 69 66 79 69 6e | 67 20 61 75 74 68 6f 72 |ertifyin|g author|
|00000cf0| 69 74 69 65 73 20 73 75 | 73 63 65 70 74 69 62 6c |ities su|sceptibl|
|00000d00| 65 20 74 6f 20 61 74 74 | 61 63 6b 3f 20 0a 20 20 |e to att|ack? . |
|00000d10| 20 20 20 20 20 33 2e 31 | 30 20 20 57 68 61 74 20 | 3.1|0 What |
|00000d20| 69 66 20 74 68 65 20 63 | 65 72 74 69 66 79 69 6e |if the c|ertifyin|
|00000d30| 67 20 61 75 74 68 6f 72 | 69 74 79 27 73 20 6b 65 |g author|ity's ke|
|00000d40| 79 20 69 73 20 6c 6f 73 | 74 20 6f 72 20 63 6f 6d |y is los|t or com|
|00000d50| 70 72 6f 6d 69 73 65 64 | 3f 20 0a 20 20 20 20 20 |promised|? . |
|00000d60| 20 20 33 2e 31 31 20 20 | 57 68 61 74 20 61 72 65 | 3.11 |What are|
|00000d70| 20 43 65 72 74 69 66 69 | 63 61 74 65 20 52 65 76 | Certifi|cate Rev|
|00000d80| 6f 63 61 74 69 6f 6e 20 | 4c 69 73 74 73 20 28 43 |ocation |Lists (C|
|00000d90| 52 4c 73 29 3f 20 0a 20 | 20 20 20 20 20 20 33 2e |RLs)? . | 3.|
|00000da0| 31 32 20 20 57 68 61 74 | 20 68 61 70 70 65 6e 73 |12 What| happens|
|00000db0| 20 77 68 65 6e 20 61 20 | 6b 65 79 20 65 78 70 69 | when a |key expi|
|00000dc0| 72 65 73 3f 20 0a 20 20 | 20 20 20 20 20 33 2e 31 |res? . | 3.1|
|00000dd0| 33 20 20 57 68 61 74 20 | 68 61 70 70 65 6e 73 20 |3 What |happens |
|00000de0| 69 66 20 49 20 6c 6f 73 | 65 20 6d 79 20 70 72 69 |if I los|e my pri|
|00000df0| 76 61 74 65 20 6b 65 79 | 3f 20 0a 20 20 20 20 20 |vate key|? . |
|00000e00| 20 20 33 2e 31 34 20 20 | 57 68 61 74 20 68 61 70 | 3.14 |What hap|
|00000e10| 70 65 6e 73 20 69 66 20 | 6d 79 20 70 72 69 76 61 |pens if |my priva|
|00000e20| 74 65 20 6b 65 79 20 69 | 73 20 63 6f 6d 70 72 6f |te key i|s compro|
|00000e30| 6d 69 73 65 64 3f 20 0a | 20 20 20 20 20 20 20 33 |mised? .| 3|
|00000e40| 2e 31 35 20 20 48 6f 77 | 20 73 68 6f 75 6c 64 20 |.15 How| should |
|00000e50| 49 20 73 74 6f 72 65 20 | 6d 79 20 70 72 69 76 61 |I store |my priva|
|00000e60| 74 65 20 6b 65 79 3f 20 | 0a 20 20 20 20 20 20 20 |te key? |. |
|00000e70| 33 2e 31 36 20 20 48 6f | 77 20 64 6f 20 49 20 66 |3.16 Ho|w do I f|
|00000e80| 69 6e 64 20 73 6f 6d 65 | 6f 6e 65 20 65 6c 73 65 |ind some|one else|
|00000e90| 27 73 20 70 75 62 6c 69 | 63 20 6b 65 79 3f 20 0a |'s publi|c key? .|
|00000ea0| 20 20 20 20 20 20 20 33 | 2e 31 37 20 20 48 6f 77 | 3|.17 How|
|00000eb0| 20 63 61 6e 20 73 69 67 | 6e 61 74 75 72 65 73 20 | can sig|natures |
|00000ec0| 72 65 6d 61 69 6e 20 76 | 61 6c 69 64 20 62 65 79 |remain v|alid bey|
|00000ed0| 6f 6e 64 20 74 68 65 20 | 65 78 70 69 72 61 74 69 |ond the |expirati|
|00000ee0| 6f 6e 20 64 61 74 65 73 | 20 6f 66 20 0a 20 20 20 |on dates| of . |
|00000ef0| 20 20 20 20 20 20 20 20 | 20 20 74 68 65 69 72 20 | | their |
|00000f00| 6b 65 79 73 2c 20 6f 72 | 2c 20 48 6f 77 20 64 6f |keys, or|, How do|
|00000f10| 20 79 6f 75 20 76 65 72 | 69 66 79 20 61 20 32 30 | you ver|ify a 20|
|00000f20| 2d 79 65 61 72 2d 6f 6c | 64 20 73 69 67 6e 61 74 |-year-ol|d signat|
|00000f30| 75 72 65 3f 20 0a 20 20 | 20 20 20 20 20 33 2e 31 |ure? . | 3.1|
|00000f40| 38 20 20 57 68 61 74 20 | 69 73 20 61 20 64 69 67 |8 What |is a dig|
|00000f50| 69 74 61 6c 20 74 69 6d | 65 2d 73 74 61 6d 70 69 |ital tim|e-stampi|
|00000f60| 6e 67 20 73 65 72 76 69 | 63 65 3f 20 0a 0a 34 20 |ng servi|ce? ..4 |
|00000f70| 46 61 63 74 6f 72 69 6e | 67 20 61 6e 64 20 44 69 |Factorin|g and Di|
|00000f80| 73 63 72 65 74 65 20 4c | 6f 67 20 0a 20 20 20 20 |screte L|og . |
|00000f90| 20 20 20 34 2e 31 20 20 | 57 68 61 74 20 69 73 20 | 4.1 |What is |
|00000fa0| 61 20 6f 6e 65 2d 77 61 | 79 20 66 75 6e 63 74 69 |a one-wa|y functi|
|00000fb0| 6f 6e 3f 20 0a 20 20 20 | 20 20 20 20 34 2e 32 20 |on? . | 4.2 |
|00000fc0| 20 57 68 61 74 20 69 73 | 20 74 68 65 20 73 69 67 | What is| the sig|
|00000fd0| 6e 69 66 69 63 61 6e 63 | 65 20 6f 66 20 6f 6e 65 |nificanc|e of one|
|00000fe0| 2d 77 61 79 20 66 75 6e | 63 74 69 6f 6e 73 20 66 |-way fun|ctions f|
|00000ff0| 6f 72 20 63 72 79 70 74 | 6f 67 72 61 70 68 79 3f |or crypt|ography?|
|00001000| 20 0a 20 20 20 20 20 20 | 20 34 2e 33 20 20 57 68 | . | 4.3 Wh|
|00001010| 61 74 20 69 73 20 74 68 | 65 20 66 61 63 74 6f 72 |at is th|e factor|
|00001020| 69 6e 67 20 70 72 6f 62 | 6c 65 6d 3f 20 0a 20 20 |ing prob|lem? . |
|00001030| 20 20 20 20 20 34 2e 34 | 20 20 57 68 61 74 20 69 | 4.4| What i|
|00001040| 73 20 74 68 65 20 73 69 | 67 6e 69 66 69 63 61 6e |s the si|gnifican|
|00001050| 63 65 20 6f 66 20 66 61 | 63 74 6f 72 69 6e 67 20 |ce of fa|ctoring |
|00001060| 69 6e 20 63 72 79 70 74 | 6f 67 72 61 70 68 79 3f |in crypt|ography?|
|00001070| 20 0a 20 20 20 20 20 20 | 20 34 2e 35 20 20 48 61 | . | 4.5 Ha|
|00001080| 73 20 66 61 63 74 6f 72 | 69 6e 67 20 62 65 65 6e |s factor|ing been|
|00001090| 20 67 65 74 74 69 6e 67 | 20 65 61 73 69 65 72 3f | getting| easier?|
|000010a0| 20 0a 20 20 20 20 20 20 | 20 34 2e 36 20 20 57 68 | . | 4.6 Wh|
|000010b0| 61 74 20 61 72 65 20 74 | 68 65 20 62 65 73 74 20 |at are t|he best |
|000010c0| 66 61 63 74 6f 72 69 6e | 67 20 6d 65 74 68 6f 64 |factorin|g method|
|000010d0| 73 20 69 6e 20 75 73 65 | 20 74 6f 64 61 79 3f 20 |s in use| today? |
|000010e0| 0a 20 20 20 20 20 20 20 | 34 2e 37 20 20 57 68 61 |. |4.7 Wha|
|000010f0| 74 20 61 72 65 20 74 68 | 65 20 70 72 6f 73 70 65 |t are th|e prospe|
|00001100| 63 74 73 20 66 6f 72 20 | 74 68 65 6f 72 65 74 69 |cts for |theoreti|
|00001110| 63 61 6c 20 66 61 63 74 | 6f 72 69 6e 67 20 62 72 |cal fact|oring br|
|00001120| 65 61 6b 74 68 72 6f 75 | 67 68 73 3f 20 0a 20 20 |eakthrou|ghs? . |
|00001130| 20 20 20 20 20 34 2e 38 | 20 20 57 68 61 74 20 69 | 4.8| What i|
|00001140| 73 20 74 68 65 20 52 53 | 41 20 46 61 63 74 6f 72 |s the RS|A Factor|
|00001150| 69 6e 67 20 43 68 61 6c | 6c 65 6e 67 65 3f 20 0a |ing Chal|lenge? .|
|00001160| 20 20 20 20 20 20 20 34 | 2e 39 20 20 57 68 61 74 | 4|.9 What|
|00001170| 20 69 73 20 74 68 65 20 | 64 69 73 63 72 65 74 65 | is the |discrete|
|00001180| 20 6c 6f 67 20 70 72 6f | 62 6c 65 6d 3f 20 0a 20 | log pro|blem? . |
|00001190| 20 20 20 20 20 20 34 2e | 31 30 20 20 57 68 69 63 | 4.|10 Whic|
|000011a0| 68 20 69 73 20 65 61 73 | 69 65 72 2c 20 66 61 63 |h is eas|ier, fac|
|000011b0| 74 6f 72 69 6e 67 20 6f | 72 20 64 69 73 63 72 65 |toring o|r discre|
|000011c0| 74 65 20 6c 6f 67 3f 20 | 0a 0a 35 20 44 45 53 20 |te log? |..5 DES |
|000011d0| 0a 20 20 20 20 20 20 20 | 35 2e 31 20 20 57 68 61 |. |5.1 Wha|
|000011e0| 74 20 69 73 20 44 45 53 | 3f 20 0a 20 20 20 20 20 |t is DES|? . |
|000011f0| 20 20 35 2e 32 20 20 48 | 61 73 20 44 45 53 20 62 | 5.2 H|as DES b|
|00001200| 65 65 6e 20 62 72 6f 6b | 65 6e 3f 20 0a 20 20 20 |een brok|en? . |
|00001210| 20 20 20 20 35 2e 33 20 | 20 48 6f 77 20 64 6f 65 | 5.3 | How doe|
|00001220| 73 20 6f 6e 65 20 75 73 | 65 20 44 45 53 20 73 65 |s one us|e DES se|
|00001230| 63 75 72 65 6c 79 3f 20 | 0a 20 20 20 20 20 20 20 |curely? |. |
|00001240| 35 2e 34 20 20 43 61 6e | 20 44 45 53 20 62 65 20 |5.4 Can| DES be |
|00001250| 65 78 70 6f 72 74 65 64 | 20 66 72 6f 6d 20 74 68 |exported| from th|
|00001260| 65 20 55 2e 53 2e 3f 20 | 0a 20 20 20 20 20 20 20 |e U.S.? |. |
|00001270| 35 2e 35 20 20 57 68 61 | 74 20 61 72 65 20 74 68 |5.5 Wha|t are th|
|00001280| 65 20 61 6c 74 65 72 6e | 61 74 69 76 65 73 20 74 |e altern|atives t|
|00001290| 6f 20 44 45 53 3f 20 0a | 20 20 20 20 20 20 20 35 |o DES? .| 5|
|000012a0| 2e 36 20 20 49 73 20 44 | 45 53 20 61 20 67 72 6f |.6 Is D|ES a gro|
|000012b0| 75 70 3f 20 0a 0a 5b 70 | 61 72 74 20 33 5d 0a 0a |up? ..[p|art 3]..|
|000012c0| 36 20 43 61 70 73 74 6f | 6e 65 2c 20 43 6c 69 70 |6 Capsto|ne, Clip|
|000012d0| 70 65 72 2c 20 61 6e 64 | 20 44 53 53 20 0a 20 20 |per, and| DSS . |
|000012e0| 20 20 20 20 20 36 2e 31 | 20 20 57 68 61 74 20 69 | 6.1| What i|
|000012f0| 73 20 43 61 70 73 74 6f | 6e 65 3f 20 0a 20 20 20 |s Capsto|ne? . |
|00001300| 20 20 20 20 36 2e 32 20 | 20 57 68 61 74 20 69 73 | 6.2 | What is|
|00001310| 20 43 6c 69 70 70 65 72 | 3f 20 0a 20 20 20 20 20 | Clipper|? . |
|00001320| 20 20 36 2e 33 20 20 48 | 6f 77 20 64 6f 65 73 20 | 6.3 H|ow does |
|00001330| 74 68 65 20 43 6c 69 70 | 70 65 72 20 63 68 69 70 |the Clip|per chip|
|00001340| 20 77 6f 72 6b 3f 20 0a | 20 20 20 20 20 20 20 36 | work? .| 6|
|00001350| 2e 34 20 20 57 68 6f 20 | 61 72 65 20 74 68 65 20 |.4 Who |are the |
|00001360| 65 73 63 72 6f 77 20 61 | 67 65 6e 63 69 65 73 3f |escrow a|gencies?|
|00001370| 20 0a 20 20 20 20 20 20 | 20 36 2e 35 20 20 57 68 | . | 6.5 Wh|
|00001380| 61 74 20 69 73 20 53 6b | 69 70 6a 61 63 6b 3f 20 |at is Sk|ipjack? |
|00001390| 0a 20 20 20 20 20 20 20 | 36 2e 36 20 20 57 68 79 |. |6.6 Why|
|000013a0| 20 69 73 20 43 6c 69 70 | 70 65 72 20 63 6f 6e 74 | is Clip|per cont|
|000013b0| 72 6f 76 65 72 73 69 61 | 6c 3f 20 0a 20 20 20 20 |roversia|l? . |
|000013c0| 20 20 20 36 2e 37 20 20 | 57 68 61 74 20 69 73 20 | 6.7 |What is |
|000013d0| 74 68 65 20 63 75 72 72 | 65 6e 74 20 73 74 61 74 |the curr|ent stat|
|000013e0| 75 73 20 6f 66 20 43 6c | 69 70 70 65 72 3f 20 0a |us of Cl|ipper? .|
|000013f0| 20 20 20 20 20 20 20 36 | 2e 38 20 20 57 68 61 74 | 6|.8 What|
|00001400| 20 69 73 20 44 53 53 3f | 20 0a 20 20 20 20 20 20 | is DSS?| . |
|00001410| 20 36 2e 39 20 20 49 73 | 20 44 53 53 20 73 65 63 | 6.9 Is| DSS sec|
|00001420| 75 72 65 3f 20 0a 20 20 | 20 20 20 20 20 36 2e 31 |ure? . | 6.1|
|00001430| 30 20 20 49 73 20 75 73 | 65 20 6f 66 20 44 53 53 |0 Is us|e of DSS|
|00001440| 20 63 6f 76 65 72 65 64 | 20 62 79 20 61 6e 79 20 | covered| by any |
|00001450| 70 61 74 65 6e 74 73 3f | 20 0a 20 20 20 20 20 20 |patents?| . |
|00001460| 20 36 2e 31 31 20 20 57 | 68 61 74 20 69 73 20 74 | 6.11 W|hat is t|
|00001470| 68 65 20 63 75 72 72 65 | 6e 74 20 73 74 61 74 75 |he curre|nt statu|
|00001480| 73 20 6f 66 20 44 53 53 | 3f 20 0a 0a 37 20 4e 49 |s of DSS|? ..7 NI|
|00001490| 53 54 20 61 6e 64 20 4e | 53 41 20 0a 20 20 20 20 |ST and N|SA . |
|000014a0| 20 20 20 37 2e 31 20 20 | 57 68 61 74 20 69 73 20 | 7.1 |What is |
|000014b0| 4e 49 53 54 3f 20 0a 20 | 20 20 20 20 20 20 37 2e |NIST? . | 7.|
|000014c0| 32 20 20 57 68 61 74 20 | 72 6f 6c 65 20 64 6f 65 |2 What |role doe|
|000014d0| 73 20 4e 49 53 54 20 70 | 6c 61 79 20 69 6e 20 63 |s NIST p|lay in c|
|000014e0| 72 79 70 74 6f 67 72 61 | 70 68 79 3f 20 0a 20 20 |ryptogra|phy? . |
|000014f0| 20 20 20 20 20 37 2e 33 | 20 20 57 68 61 74 20 69 | 7.3| What i|
|00001500| 73 20 74 68 65 20 4e 53 | 41 3f 20 0a 20 20 20 20 |s the NS|A? . |
|00001510| 20 20 20 37 2e 34 20 20 | 57 68 61 74 20 72 6f 6c | 7.4 |What rol|
|00001520| 65 20 64 6f 65 73 20 74 | 68 65 20 4e 53 41 20 70 |e does t|he NSA p|
|00001530| 6c 61 79 20 69 6e 20 63 | 6f 6d 6d 65 72 63 69 61 |lay in c|ommercia|
|00001540| 6c 20 63 72 79 70 74 6f | 67 72 61 70 68 79 3f 20 |l crypto|graphy? |
|00001550| 0a 0a 38 20 4d 69 73 63 | 65 6c 6c 61 6e 65 6f 75 |..8 Misc|ellaneou|
|00001560| 73 20 0a 20 20 20 20 20 | 20 20 38 2e 31 20 20 57 |s . | 8.1 W|
|00001570| 68 61 74 20 69 73 20 74 | 68 65 20 6c 65 67 61 6c |hat is t|he legal|
|00001580| 20 73 74 61 74 75 73 20 | 6f 66 20 64 6f 63 75 6d | status |of docum|
|00001590| 65 6e 74 73 20 73 69 67 | 6e 65 64 20 77 69 74 68 |ents sig|ned with|
|000015a0| 20 64 69 67 69 74 61 6c | 20 0a 20 20 20 20 20 20 | digital| . |
|000015b0| 20 20 20 20 20 20 73 69 | 67 6e 61 74 75 72 65 73 | si|gnatures|
|000015c0| 3f 20 0a 20 20 20 20 20 | 20 20 38 2e 32 20 20 57 |? . | 8.2 W|
|000015d0| 68 61 74 20 69 73 20 61 | 20 68 61 73 68 20 66 75 |hat is a| hash fu|
|000015e0| 6e 63 74 69 6f 6e 3f 20 | 57 68 61 74 20 69 73 20 |nction? |What is |
|000015f0| 61 20 6d 65 73 73 61 67 | 65 20 64 69 67 65 73 74 |a messag|e digest|
|00001600| 3f 20 0a 20 20 20 20 20 | 20 20 38 2e 33 20 20 57 |? . | 8.3 W|
|00001610| 68 61 74 20 61 72 65 20 | 4d 44 32 2c 20 4d 44 34 |hat are |MD2, MD4|
|00001620| 20 61 6e 64 20 4d 44 35 | 3f 20 0a 20 20 20 20 20 | and MD5|? . |
|00001630| 20 20 38 2e 34 20 20 57 | 68 61 74 20 69 73 20 53 | 8.4 W|hat is S|
|00001640| 48 53 3f 20 0a 20 20 20 | 20 20 20 20 38 2e 35 20 |HS? . | 8.5 |
|00001650| 20 57 68 61 74 20 69 73 | 20 4b 65 72 62 65 72 6f | What is| Kerbero|
|00001660| 73 3f 20 0a 20 20 20 20 | 20 20 20 38 2e 36 20 20 |s? . | 8.6 |
|00001670| 57 68 61 74 20 61 72 65 | 20 52 43 32 20 61 6e 64 |What are| RC2 and|
|00001680| 20 52 43 34 3f 20 0a 20 | 20 20 20 20 20 20 38 2e | RC4? . | 8.|
|00001690| 37 20 20 57 68 61 74 20 | 69 73 20 50 45 4d 3f 20 |7 What |is PEM? |
|000016a0| 0a 20 20 20 20 20 20 20 | 38 2e 38 20 20 57 68 61 |. |8.8 Wha|
|000016b0| 74 20 69 73 20 52 49 50 | 45 4d 3f 20 0a 20 20 20 |t is RIP|EM? . |
|000016c0| 20 20 20 20 38 2e 39 20 | 20 57 68 61 74 20 69 73 | 8.9 | What is|
|000016d0| 20 50 4b 43 53 3f 20 0a | 20 20 20 20 20 20 20 38 | PKCS? .| 8|
|000016e0| 2e 31 30 20 20 57 68 61 | 74 20 69 73 20 52 53 41 |.10 Wha|t is RSA|
|000016f0| 52 45 46 3f 20 0a 0a 2d | 2d 2d 2d 2d 2d 2d 2d 2d |REF? ..-|--------|
|00001700| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|00001710| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|00001720| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 2d 2d 2d 2d 2d |--------|--------|
|00001730| 2d 2d 2d 2d 2d 2d 2d 2d | 2d 2d 2d 0a 0a 0a 31 20 |--------|---...1 |
|00001740| 47 65 6e 65 72 61 6c 0a | 0a 31 2e 31 20 57 68 61 |General.|.1.1 Wha|
|00001750| 74 20 69 73 20 65 6e 63 | 72 79 70 74 69 6f 6e 3f |t is enc|ryption?|
|00001760| 0a 0a 45 6e 63 72 79 70 | 74 69 6f 6e 20 69 73 20 |..Encryp|tion is |
|00001770| 74 68 65 20 74 72 61 6e | 73 66 6f 72 6d 61 74 69 |the tran|sformati|
|00001780| 6f 6e 20 6f 66 20 64 61 | 74 61 20 69 6e 74 6f 20 |on of da|ta into |
|00001790| 61 20 66 6f 72 6d 20 75 | 6e 72 65 61 64 61 62 6c |a form u|nreadabl|
|000017a0| 65 20 62 79 20 61 6e 79 | 6f 6e 65 0a 77 69 74 68 |e by any|one.with|
|000017b0| 6f 75 74 20 61 20 73 65 | 63 72 65 74 20 64 65 63 |out a se|cret dec|
|000017c0| 72 79 70 74 69 6f 6e 20 | 6b 65 79 2e 20 49 74 73 |ryption |key. Its|
|000017d0| 20 70 75 72 70 6f 73 65 | 20 69 73 20 74 6f 20 65 | purpose| is to e|
|000017e0| 6e 73 75 72 65 20 70 72 | 69 76 61 63 79 20 62 79 |nsure pr|ivacy by|
|000017f0| 0a 6b 65 65 70 69 6e 67 | 20 74 68 65 20 69 6e 66 |.keeping| the inf|
|00001800| 6f 72 6d 61 74 69 6f 6e | 20 68 69 64 64 65 6e 20 |ormation| hidden |
|00001810| 66 72 6f 6d 20 61 6e 79 | 6f 6e 65 20 66 6f 72 20 |from any|one for |
|00001820| 77 68 6f 6d 20 69 74 20 | 69 73 20 6e 6f 74 20 69 |whom it |is not i|
|00001830| 6e 74 65 6e 64 65 64 2c | 20 0a 65 76 65 6e 20 74 |ntended,| .even t|
|00001840| 68 6f 73 65 20 77 68 6f | 20 63 61 6e 20 73 65 65 |hose who| can see|
|00001850| 20 74 68 65 20 65 6e 63 | 72 79 70 74 65 64 20 64 | the enc|rypted d|
|00001860| 61 74 61 2e 20 46 6f 72 | 20 65 78 61 6d 70 6c 65 |ata. For| example|
|00001870| 2c 20 6f 6e 65 20 6d 61 | 79 20 77 69 73 68 20 74 |, one ma|y wish t|
|00001880| 6f 20 0a 65 6e 63 72 79 | 70 74 20 66 69 6c 65 73 |o .encry|pt files|
|00001890| 20 6f 6e 20 61 20 68 61 | 72 64 20 64 69 73 6b 20 | on a ha|rd disk |
|000018a0| 74 6f 20 70 72 65 76 65 | 6e 74 20 61 6e 20 69 6e |to preve|nt an in|
|000018b0| 74 72 75 64 65 72 20 66 | 72 6f 6d 20 72 65 61 64 |truder f|rom read|
|000018c0| 69 6e 67 20 74 68 65 6d | 2e 20 0a 0a 49 6e 20 61 |ing them|. ..In a|
|000018d0| 20 6d 75 6c 74 69 2d 75 | 73 65 72 20 73 65 74 74 | multi-u|ser sett|
|000018e0| 69 6e 67 2c 20 65 6e 63 | 72 79 70 74 69 6f 6e 20 |ing, enc|ryption |
|000018f0| 61 6c 6c 6f 77 73 20 73 | 65 63 75 72 65 20 63 6f |allows s|ecure co|
|00001900| 6d 6d 75 6e 69 63 61 74 | 69 6f 6e 20 6f 76 65 72 |mmunicat|ion over|
|00001910| 20 61 6e 0a 69 6e 73 65 | 63 75 72 65 20 63 68 61 | an.inse|cure cha|
|00001920| 6e 6e 65 6c 2e 20 54 68 | 65 20 67 65 6e 65 72 61 |nnel. Th|e genera|
|00001930| 6c 20 73 63 65 6e 61 72 | 69 6f 20 69 73 20 61 73 |l scenar|io is as|
|00001940| 20 66 6f 6c 6c 6f 77 73 | 3a 20 41 6c 69 63 65 20 | follows|: Alice |
|00001950| 77 69 73 68 65 73 20 74 | 6f 20 0a 73 65 6e 64 20 |wishes t|o .send |
|00001960| 61 20 6d 65 73 73 61 67 | 65 20 74 6f 20 42 6f 62 |a messag|e to Bob|
|00001970| 20 73 6f 20 74 68 61 74 | 20 6e 6f 20 6f 6e 65 20 | so that| no one |
|00001980| 65 6c 73 65 20 62 65 73 | 69 64 65 73 20 42 6f 62 |else bes|ides Bob|
|00001990| 20 63 61 6e 20 72 65 61 | 64 20 69 74 2e 20 41 6c | can rea|d it. Al|
|000019a0| 69 63 65 20 0a 65 6e 63 | 72 79 70 74 73 20 74 68 |ice .enc|rypts th|
|000019b0| 65 20 6d 65 73 73 61 67 | 65 2c 20 77 68 69 63 68 |e messag|e, which|
|000019c0| 20 69 73 20 63 61 6c 6c | 65 64 20 74 68 65 20 70 | is call|ed the p|
|000019d0| 6c 61 69 6e 74 65 78 74 | 2c 20 77 69 74 68 20 61 |laintext|, with a|
|000019e0| 6e 20 65 6e 63 72 79 70 | 74 69 6f 6e 20 0a 6b 65 |n encryp|tion .ke|
|000019f0| 79 3b 20 74 68 65 20 65 | 6e 63 72 79 70 74 65 64 |y; the e|ncrypted|
|00001a00| 20 6d 65 73 73 61 67 65 | 2c 20 63 61 6c 6c 65 64 | message|, called|
|00001a10| 20 74 68 65 20 63 69 70 | 68 65 72 74 65 78 74 2c | the cip|hertext,|
|00001a20| 20 69 73 20 73 65 6e 74 | 20 74 6f 20 42 6f 62 2e | is sent| to Bob.|
|00001a30| 20 42 6f 62 20 0a 64 65 | 63 72 79 70 74 73 20 74 | Bob .de|crypts t|
|00001a40| 68 65 20 63 69 70 68 65 | 72 74 65 78 74 20 77 69 |he ciphe|rtext wi|
|00001a50| 74 68 20 74 68 65 20 64 | 65 63 72 79 70 74 69 6f |th the d|ecryptio|
|00001a60| 6e 20 6b 65 79 20 61 6e | 64 20 72 65 61 64 73 20 |n key an|d reads |
|00001a70| 74 68 65 20 6d 65 73 73 | 61 67 65 2e 20 41 6e 20 |the mess|age. An |
|00001a80| 0a 61 74 74 61 63 6b 65 | 72 2c 20 43 68 61 72 6c |.attacke|r, Charl|
|00001a90| 69 65 2c 20 6d 61 79 20 | 65 69 74 68 65 72 20 74 |ie, may |either t|
|00001aa0| 72 79 20 74 6f 20 6f 62 | 74 61 69 6e 20 74 68 65 |ry to ob|tain the|
|00001ab0| 20 73 65 63 72 65 74 20 | 6b 65 79 20 6f 72 20 74 | secret |key or t|
|00001ac0| 6f 20 72 65 63 6f 76 65 | 72 20 0a 74 68 65 20 70 |o recove|r .the p|
|00001ad0| 6c 61 69 6e 74 65 78 74 | 20 77 69 74 68 6f 75 74 |laintext| without|
|00001ae0| 20 75 73 69 6e 67 20 74 | 68 65 20 73 65 63 72 65 | using t|he secre|
|00001af0| 74 20 6b 65 79 2e 20 49 | 6e 20 61 20 73 65 63 75 |t key. I|n a secu|
|00001b00| 72 65 20 63 72 79 70 74 | 6f 73 79 73 74 65 6d 2c |re crypt|osystem,|
|00001b10| 20 74 68 65 20 0a 70 6c | 61 69 6e 74 65 78 74 20 | the .pl|aintext |
|00001b20| 63 61 6e 6e 6f 74 20 62 | 65 20 72 65 63 6f 76 65 |cannot b|e recove|
|00001b30| 72 65 64 20 66 72 6f 6d | 20 74 68 65 20 63 69 70 |red from| the cip|
|00001b40| 68 65 72 74 65 78 74 20 | 65 78 63 65 70 74 20 62 |hertext |except b|
|00001b50| 79 20 75 73 69 6e 67 20 | 74 68 65 20 0a 64 65 63 |y using |the .dec|
|00001b60| 72 79 70 74 69 6f 6e 20 | 6b 65 79 2e 20 49 6e 20 |ryption |key. In |
|00001b70| 61 20 73 79 6d 6d 65 74 | 72 69 63 20 63 72 79 70 |a symmet|ric cryp|
|00001b80| 74 6f 73 79 73 74 65 6d | 2c 20 61 20 73 69 6e 67 |tosystem|, a sing|
|00001b90| 6c 65 20 6b 65 79 20 73 | 65 72 76 65 73 20 61 73 |le key s|erves as|
|00001ba0| 20 62 6f 74 68 20 0a 74 | 68 65 20 65 6e 63 72 79 | both .t|he encry|
|00001bb0| 70 74 69 6f 6e 20 61 6e | 64 20 64 65 63 72 79 70 |ption an|d decryp|
|00001bc0| 74 69 6f 6e 20 6b 65 79 | 73 2e 0a 0a 43 72 79 70 |tion key|s...Cryp|
|00001bd0| 74 6f 67 72 61 70 68 79 | 20 68 61 73 20 62 65 65 |tography| has bee|
|00001be0| 6e 20 61 72 6f 75 6e 64 | 20 66 6f 72 20 6d 69 6c |n around| for mil|
|00001bf0| 6c 65 6e 6e 69 61 3b 20 | 73 65 65 20 4b 61 68 6e |lennia; |see Kahn|
|00001c00| 20 5b 33 37 5d 20 66 6f | 72 20 61 20 0a 67 6f 6f | [37] fo|r a .goo|
|00001c10| 64 20 68 69 73 74 6f 72 | 79 20 6f 66 20 63 72 79 |d histor|y of cry|
|00001c20| 70 74 6f 67 72 61 70 68 | 79 3b 20 73 65 65 20 52 |ptograph|y; see R|
|00001c30| 69 76 65 73 74 20 5b 36 | 39 5d 20 61 6e 64 20 42 |ivest [6|9] and B|
|00001c40| 72 61 73 73 61 72 64 0a | 5b 31 30 5d 20 66 6f 72 |rassard.|[10] for|
|00001c50| 20 61 6e 20 69 6e 74 72 | 6f 64 75 63 74 69 6f 6e | an intr|oduction|
|00001c60| 20 74 6f 20 6d 6f 64 65 | 72 6e 20 63 72 79 70 74 | to mode|rn crypt|
|00001c70| 6f 67 72 61 70 68 79 2e | 0a 0a 0a 31 2e 32 20 57 |ography.|...1.2 W|
|00001c80| 68 61 74 20 69 73 20 61 | 75 74 68 65 6e 74 69 63 |hat is a|uthentic|
|00001c90| 61 74 69 6f 6e 3f 20 57 | 68 61 74 20 69 73 20 61 |ation? W|hat is a|
|00001ca0| 20 64 69 67 69 74 61 6c | 20 73 69 67 6e 61 74 75 | digital| signatu|
|00001cb0| 72 65 3f 0a 0a 41 75 74 | 68 65 6e 74 69 63 61 74 |re?..Aut|henticat|
|00001cc0| 69 6f 6e 20 69 6e 20 61 | 20 64 69 67 69 74 61 6c |ion in a| digital|
|00001cd0| 20 73 65 74 74 69 6e 67 | 20 69 73 20 61 20 70 72 | setting| is a pr|
|00001ce0| 6f 63 65 73 73 20 77 68 | 65 72 65 62 79 20 74 68 |ocess wh|ereby th|
|00001cf0| 65 20 72 65 63 65 69 76 | 65 72 20 6f 66 20 61 20 |e receiv|er of a |
|00001d00| 0a 64 69 67 69 74 61 6c | 20 6d 65 73 73 61 67 65 |.digital| message|
|00001d10| 20 63 61 6e 20 62 65 20 | 63 6f 6e 66 69 64 65 6e | can be |confiden|
|00001d20| 74 20 6f 66 20 74 68 65 | 20 69 64 65 6e 74 69 74 |t of the| identit|
|00001d30| 79 20 6f 66 20 74 68 65 | 20 73 65 6e 64 65 72 20 |y of the| sender |
|00001d40| 61 6e 64 2f 6f 72 20 74 | 68 65 0a 69 6e 74 65 67 |and/or t|he.integ|
|00001d50| 72 69 74 79 20 6f 66 20 | 74 68 65 20 6d 65 73 73 |rity of |the mess|
|00001d60| 61 67 65 2e 20 41 75 74 | 68 65 6e 74 69 63 61 74 |age. Aut|henticat|
|00001d70| 69 6f 6e 20 70 72 6f 74 | 6f 63 6f 6c 73 20 63 61 |ion prot|ocols ca|
|00001d80| 6e 20 62 65 20 62 61 73 | 65 64 20 6f 6e 20 65 69 |n be bas|ed on ei|
|00001d90| 74 68 65 72 20 0a 63 6f | 6e 76 65 6e 74 69 6f 6e |ther .co|nvention|
|00001da0| 61 6c 20 73 65 63 72 65 | 74 2d 6b 65 79 20 63 72 |al secre|t-key cr|
|00001db0| 79 70 74 6f 73 79 73 74 | 65 6d 73 20 6c 69 6b 65 |yptosyst|ems like|
|00001dc0| 20 44 45 53 20 6f 72 20 | 6f 6e 20 70 75 62 6c 69 | DES or |on publi|
|00001dd0| 63 2d 6b 65 79 20 73 79 | 73 74 65 6d 73 20 0a 6c |c-key sy|stems .l|
|00001de0| 69 6b 65 20 52 53 41 3b | 20 61 75 74 68 65 6e 74 |ike RSA;| authent|
|00001df0| 69 63 61 74 69 6f 6e 20 | 69 6e 20 70 75 62 6c 69 |ication |in publi|
|00001e00| 63 2d 6b 65 79 20 73 79 | 73 74 65 6d 73 20 75 73 |c-key sy|stems us|
|00001e10| 65 73 20 64 69 67 69 74 | 61 6c 20 73 69 67 6e 61 |es digit|al signa|
|00001e20| 74 75 72 65 73 2e 0a 0a | 49 6e 20 74 68 69 73 20 |tures...|In this |
|00001e30| 64 6f 63 75 6d 65 6e 74 | 2c 20 61 75 74 68 65 6e |document|, authen|
|00001e40| 74 69 63 61 74 69 6f 6e | 20 77 69 6c 6c 20 67 65 |tication| will ge|
|00001e50| 6e 65 72 61 6c 6c 79 20 | 72 65 66 65 72 20 74 6f |nerally |refer to|
|00001e60| 20 74 68 65 20 75 73 65 | 20 6f 66 20 64 69 67 69 | the use| of digi|
|00001e70| 74 61 6c 0a 73 69 67 6e | 61 74 75 72 65 73 2c 20 |tal.sign|atures, |
|00001e80| 77 68 69 63 68 20 70 6c | 61 79 20 61 20 66 75 6e |which pl|ay a fun|
|00001e90| 63 74 69 6f 6e 20 66 6f | 72 20 64 69 67 69 74 61 |ction fo|r digita|
|00001ea0| 6c 20 64 6f 63 75 6d 65 | 6e 74 73 20 73 69 6d 69 |l docume|nts simi|
|00001eb0| 6c 61 72 20 74 6f 20 74 | 68 61 74 20 0a 70 6c 61 |lar to t|hat .pla|
|00001ec0| 79 65 64 20 62 79 20 68 | 61 6e 64 77 72 69 74 74 |yed by h|andwritt|
|00001ed0| 65 6e 20 73 69 67 6e 61 | 74 75 72 65 73 20 66 6f |en signa|tures fo|
|00001ee0| 72 20 70 72 69 6e 74 65 | 64 20 64 6f 63 75 6d 65 |r printe|d docume|
|00001ef0| 6e 74 73 3a 20 74 68 65 | 20 73 69 67 6e 61 74 75 |nts: the| signatu|
|00001f00| 72 65 20 69 73 20 61 6e | 20 0a 75 6e 66 6f 72 67 |re is an| .unforg|
|00001f10| 65 61 62 6c 65 20 70 69 | 65 63 65 20 6f 66 20 64 |eable pi|ece of d|
|00001f20| 61 74 61 20 61 73 73 65 | 72 74 69 6e 67 20 74 68 |ata asse|rting th|
|00001f30| 61 74 20 61 20 6e 61 6d | 65 64 20 70 65 72 73 6f |at a nam|ed perso|
|00001f40| 6e 20 77 72 6f 74 65 20 | 6f 72 20 6f 74 68 65 72 |n wrote |or other|
|00001f50| 77 69 73 65 20 0a 61 67 | 72 65 65 64 20 74 6f 20 |wise .ag|reed to |
|00001f60| 74 68 65 20 64 6f 63 75 | 6d 65 6e 74 20 74 6f 20 |the docu|ment to |
|00001f70| 77 68 69 63 68 20 74 68 | 65 20 73 69 67 6e 61 74 |which th|e signat|
|00001f80| 75 72 65 20 69 73 20 61 | 74 74 61 63 68 65 64 2e |ure is a|ttached.|
|00001f90| 20 54 68 65 20 72 65 63 | 69 70 69 65 6e 74 2c 20 | The rec|ipient, |
|00001fa0| 61 73 20 0a 77 65 6c 6c | 20 61 73 20 61 20 74 68 |as .well| as a th|
|00001fb0| 69 72 64 20 70 61 72 74 | 79 2c 20 63 61 6e 20 76 |ird part|y, can v|
|00001fc0| 65 72 69 66 79 20 62 6f | 74 68 20 74 68 61 74 20 |erify bo|th that |
|00001fd0| 74 68 65 20 64 6f 63 75 | 6d 65 6e 74 20 64 69 64 |the docu|ment did|
|00001fe0| 20 69 6e 64 65 65 64 20 | 6f 72 69 67 69 6e 61 74 | indeed |originat|
|00001ff0| 65 20 0a 3e 66 72 6f 6d | 20 74 68 65 20 70 65 72 |e .>from| the per|
|00002000| 73 6f 6e 20 77 68 6f 73 | 65 20 73 69 67 6e 61 74 |son whos|e signat|
|00002010| 75 72 65 20 69 73 20 61 | 74 74 61 63 68 65 64 20 |ure is a|ttached |
|00002020| 61 6e 64 20 74 68 61 74 | 20 74 68 65 20 64 6f 63 |and that| the doc|
|00002030| 75 6d 65 6e 74 20 68 61 | 73 20 6e 6f 74 20 0a 62 |ument ha|s not .b|
|00002040| 65 65 6e 20 61 6c 74 65 | 72 65 64 20 73 69 6e 63 |een alte|red sinc|
|00002050| 65 20 69 74 20 77 61 73 | 20 73 69 67 6e 65 64 2e |e it was| signed.|
|00002060| 20 41 20 73 65 63 75 72 | 65 20 64 69 67 69 74 61 | A secur|e digita|
|00002070| 6c 20 73 69 67 6e 61 74 | 75 72 65 20 73 79 73 74 |l signat|ure syst|
|00002080| 65 6d 20 74 68 75 73 20 | 0a 63 6f 6e 73 69 73 74 |em thus |.consist|
|00002090| 73 20 6f 66 20 74 77 6f | 20 70 61 72 74 73 3a 20 |s of two| parts: |
|000020a0| 61 20 6d 65 74 68 6f 64 | 20 6f 66 20 73 69 67 6e |a method| of sign|
|000020b0| 69 6e 67 20 61 20 64 6f | 63 75 6d 65 6e 74 20 73 |ing a do|cument s|
|000020c0| 75 63 68 20 74 68 61 74 | 20 66 6f 72 67 65 72 79 |uch that| forgery|
|000020d0| 20 69 73 20 0a 69 6e 66 | 65 61 73 69 62 6c 65 2c | is .inf|easible,|
|000020e0| 20 61 6e 64 20 61 20 6d | 65 74 68 6f 64 20 6f 66 | and a m|ethod of|
|000020f0| 20 76 65 72 69 66 79 69 | 6e 67 20 74 68 61 74 20 | verifyi|ng that |
|00002100| 61 20 73 69 67 6e 61 74 | 75 72 65 20 77 61 73 20 |a signat|ure was |
|00002110| 61 63 74 75 61 6c 6c 79 | 20 67 65 6e 65 72 61 74 |actually| generat|
|00002120| 65 64 20 0a 62 79 20 77 | 68 6f 6d 65 76 65 72 20 |ed .by w|homever |
|00002130| 69 74 20 72 65 70 72 65 | 73 65 6e 74 73 2e 20 46 |it repre|sents. F|
|00002140| 75 72 74 68 65 72 6d 6f | 72 65 2c 20 73 65 63 75 |urthermo|re, secu|
|00002150| 72 65 20 64 69 67 69 74 | 61 6c 20 73 69 67 6e 61 |re digit|al signa|
|00002160| 74 75 72 65 73 20 63 61 | 6e 6e 6f 74 20 62 65 20 |tures ca|nnot be |
|00002170| 0a 72 65 70 75 64 69 61 | 74 65 64 3b 20 69 2e 65 |.repudia|ted; i.e|
|00002180| 2e 2c 20 74 68 65 20 73 | 69 67 6e 65 72 20 6f 66 |., the s|igner of|
|00002190| 20 61 20 64 6f 63 75 6d | 65 6e 74 20 63 61 6e 6e | a docum|ent cann|
|000021a0| 6f 74 20 6c 61 74 65 72 | 20 64 69 73 6f 77 6e 20 |ot later| disown |
|000021b0| 69 74 20 62 79 20 63 6c | 61 69 6d 69 6e 67 20 0a |it by cl|aiming .|
|000021c0| 69 74 20 77 61 73 20 66 | 6f 72 67 65 64 2e 0a 0a |it was f|orged...|
|000021d0| 55 6e 6c 69 6b 65 20 65 | 6e 63 72 79 70 74 69 6f |Unlike e|ncryptio|
|000021e0| 6e 2c 20 64 69 67 69 74 | 61 6c 20 73 69 67 6e 61 |n, digit|al signa|
|000021f0| 74 75 72 65 73 20 61 72 | 65 20 61 20 72 65 63 65 |tures ar|e a rece|
|00002200| 6e 74 20 64 65 76 65 6c | 6f 70 6d 65 6e 74 2c 20 |nt devel|opment, |
|00002210| 74 68 65 0a 6e 65 65 64 | 20 66 6f 72 20 77 68 69 |the.need| for whi|
|00002220| 63 68 20 68 61 73 20 61 | 72 69 73 65 6e 20 77 69 |ch has a|risen wi|
|00002230| 74 68 20 74 68 65 20 70 | 72 6f 6c 69 66 65 72 61 |th the p|rolifera|
|00002240| 74 69 6f 6e 20 6f 66 20 | 64 69 67 69 74 61 6c 20 |tion of |digital |
|00002250| 63 6f 6d 6d 75 6e 69 63 | 61 74 69 6f 6e 73 2e 0a |communic|ations..|
|00002260| 0a 0a 31 2e 33 20 57 68 | 61 74 20 69 73 20 70 75 |..1.3 Wh|at is pu|
|00002270| 62 6c 69 63 2d 6b 65 79 | 20 63 72 79 70 74 6f 67 |blic-key| cryptog|
|00002280| 72 61 70 68 79 3f 20 0a | 0a 54 72 61 64 69 74 69 |raphy? .|.Traditi|
|00002290| 6f 6e 61 6c 20 63 72 79 | 70 74 6f 67 72 61 70 68 |onal cry|ptograph|
|000022a0| 79 20 69 73 20 62 61 73 | 65 64 20 6f 6e 20 74 68 |y is bas|ed on th|
|000022b0| 65 20 73 65 6e 64 65 72 | 20 61 6e 64 20 72 65 63 |e sender| and rec|
|000022c0| 65 69 76 65 72 20 6f 66 | 20 61 20 6d 65 73 73 61 |eiver of| a messa|
|000022d0| 67 65 20 0a 6b 6e 6f 77 | 69 6e 67 20 61 6e 64 20 |ge .know|ing and |
|000022e0| 75 73 69 6e 67 20 74 68 | 65 20 73 61 6d 65 20 73 |using th|e same s|
|000022f0| 65 63 72 65 74 20 6b 65 | 79 3a 20 74 68 65 20 73 |ecret ke|y: the s|
|00002300| 65 6e 64 65 72 20 75 73 | 65 73 20 74 68 65 20 73 |ender us|es the s|
|00002310| 65 63 72 65 74 20 6b 65 | 79 20 74 6f 20 0a 65 6e |ecret ke|y to .en|
|00002320| 63 72 79 70 74 20 74 68 | 65 20 6d 65 73 73 61 67 |crypt th|e messag|
|00002330| 65 2c 20 61 6e 64 20 74 | 68 65 20 72 65 63 65 69 |e, and t|he recei|
|00002340| 76 65 72 20 75 73 65 73 | 20 74 68 65 20 73 61 6d |ver uses| the sam|
|00002350| 65 20 73 65 63 72 65 74 | 20 6b 65 79 20 74 6f 20 |e secret| key to |
|00002360| 64 65 63 72 79 70 74 20 | 0a 74 68 65 20 6d 65 73 |decrypt |.the mes|
|00002370| 73 61 67 65 2e 20 54 68 | 69 73 20 6d 65 74 68 6f |sage. Th|is metho|
|00002380| 64 20 69 73 20 6b 6e 6f | 77 6e 20 61 73 20 73 65 |d is kno|wn as se|
|00002390| 63 72 65 74 2d 6b 65 79 | 20 63 72 79 70 74 6f 67 |cret-key| cryptog|
|000023a0| 72 61 70 68 79 2e 20 54 | 68 65 20 6d 61 69 6e 20 |raphy. T|he main |
|000023b0| 0a 70 72 6f 62 6c 65 6d | 20 69 73 20 67 65 74 74 |.problem| is gett|
|000023c0| 69 6e 67 20 74 68 65 20 | 73 65 6e 64 65 72 20 61 |ing the |sender a|
|000023d0| 6e 64 20 72 65 63 65 69 | 76 65 72 20 74 6f 20 61 |nd recei|ver to a|
|000023e0| 67 72 65 65 20 6f 6e 20 | 74 68 65 20 73 65 63 72 |gree on |the secr|
|000023f0| 65 74 20 6b 65 79 20 0a | 77 69 74 68 6f 75 74 20 |et key .|without |
|00002400| 61 6e 79 6f 6e 65 20 65 | 6c 73 65 20 66 69 6e 64 |anyone e|lse find|
|00002410| 69 6e 67 20 6f 75 74 2e | 20 49 66 20 74 68 65 79 |ing out.| If they|
|00002420| 20 61 72 65 20 69 6e 20 | 73 65 70 61 72 61 74 65 | are in |separate|
|00002430| 20 70 68 79 73 69 63 61 | 6c 20 6c 6f 63 61 74 69 | physica|l locati|
|00002440| 6f 6e 73 2c 20 0a 74 68 | 65 79 20 6d 75 73 74 20 |ons, .th|ey must |
|00002450| 74 72 75 73 74 20 61 20 | 63 6f 75 72 69 65 72 2c |trust a |courier,|
|00002460| 20 6f 72 20 61 20 70 68 | 6f 6e 65 20 73 79 73 74 | or a ph|one syst|
|00002470| 65 6d 2c 20 6f 72 20 73 | 6f 6d 65 20 6f 74 68 65 |em, or s|ome othe|
|00002480| 72 20 74 72 61 6e 73 6d | 69 73 73 69 6f 6e 20 0a |r transm|ission .|
|00002490| 73 79 73 74 65 6d 20 74 | 6f 20 6e 6f 74 20 64 69 |system t|o not di|
|000024a0| 73 63 6c 6f 73 65 20 74 | 68 65 20 73 65 63 72 65 |sclose t|he secre|
|000024b0| 74 20 6b 65 79 20 62 65 | 69 6e 67 20 63 6f 6d 6d |t key be|ing comm|
|000024c0| 75 6e 69 63 61 74 65 64 | 2e 20 41 6e 79 6f 6e 65 |unicated|. Anyone|
|000024d0| 20 77 68 6f 20 0a 6f 76 | 65 72 68 65 61 72 73 20 | who .ov|erhears |
|000024e0| 6f 72 20 69 6e 74 65 72 | 63 65 70 74 73 20 74 68 |or inter|cepts th|
|000024f0| 65 20 6b 65 79 20 69 6e | 20 74 72 61 6e 73 69 74 |e key in| transit|
|00002500| 20 63 61 6e 20 6c 61 74 | 65 72 20 72 65 61 64 20 | can lat|er read |
|00002510| 61 6c 6c 20 6d 65 73 73 | 61 67 65 73 20 0a 65 6e |all mess|ages .en|
|00002520| 63 72 79 70 74 65 64 20 | 75 73 69 6e 67 20 74 68 |crypted |using th|
|00002530| 61 74 20 6b 65 79 2e 20 | 54 68 65 20 67 65 6e 65 |at key. |The gene|
|00002540| 72 61 74 69 6f 6e 2c 20 | 74 72 61 6e 73 6d 69 73 |ration, |transmis|
|00002550| 73 69 6f 6e 20 61 6e 64 | 20 73 74 6f 72 61 67 65 |sion and| storage|
|00002560| 20 6f 66 20 6b 65 79 73 | 20 0a 69 73 20 63 61 6c | of keys| .is cal|
|00002570| 6c 65 64 20 6b 65 79 20 | 6d 61 6e 61 67 65 6d 65 |led key |manageme|
|00002580| 6e 74 3b 20 61 6c 6c 20 | 63 72 79 70 74 6f 73 79 |nt; all |cryptosy|
|00002590| 73 74 65 6d 73 20 6d 75 | 73 74 20 64 65 61 6c 20 |stems mu|st deal |
|000025a0| 77 69 74 68 20 6b 65 79 | 20 6d 61 6e 61 67 65 6d |with key| managem|
|000025b0| 65 6e 74 20 0a 69 73 73 | 75 65 73 2e 20 53 65 63 |ent .iss|ues. Sec|
|000025c0| 72 65 74 2d 6b 65 79 20 | 63 72 79 70 74 6f 67 72 |ret-key |cryptogr|
|000025d0| 61 70 68 79 20 6f 66 74 | 65 6e 20 68 61 73 20 64 |aphy oft|en has d|
|000025e0| 69 66 66 69 63 75 6c 74 | 79 20 70 72 6f 76 69 64 |ifficult|y provid|
|000025f0| 69 6e 67 20 73 65 63 75 | 72 65 20 6b 65 79 20 0a |ing secu|re key .|
|00002600| 6d 61 6e 61 67 65 6d 65 | 6e 74 2e 0a 0a 50 75 62 |manageme|nt...Pub|
|00002610| 6c 69 63 2d 6b 65 79 20 | 63 72 79 70 74 6f 67 72 |lic-key |cryptogr|
|00002620| 61 70 68 79 20 77 61 73 | 20 69 6e 76 65 6e 74 65 |aphy was| invente|
|00002630| 64 20 69 6e 20 31 39 37 | 36 20 62 79 20 57 68 69 |d in 197|6 by Whi|
|00002640| 74 66 69 65 6c 64 20 44 | 69 66 66 69 65 20 61 6e |tfield D|iffie an|
|00002650| 64 0a 4d 61 72 74 69 6e | 20 48 65 6c 6c 6d 61 6e |d.Martin| Hellman|
|00002660| 20 5b 32 39 5d 20 69 6e | 20 6f 72 64 65 72 20 74 | [29] in| order t|
|00002670| 6f 20 73 6f 6c 76 65 20 | 74 68 65 20 6b 65 79 20 |o solve |the key |
|00002680| 6d 61 6e 61 67 65 6d 65 | 6e 74 20 70 72 6f 62 6c |manageme|nt probl|
|00002690| 65 6d 2e 20 49 6e 20 74 | 68 65 20 0a 6e 65 77 20 |em. In t|he .new |
|000026a0| 73 79 73 74 65 6d 2c 20 | 65 61 63 68 20 70 65 72 |system, |each per|
|000026b0| 73 6f 6e 20 67 65 74 73 | 20 61 20 70 61 69 72 20 |son gets| a pair |
|000026c0| 6f 66 20 6b 65 79 73 2c | 20 63 61 6c 6c 65 64 20 |of keys,| called |
|000026d0| 74 68 65 20 70 75 62 6c | 69 63 20 6b 65 79 20 61 |the publ|ic key a|
|000026e0| 6e 64 20 0a 74 68 65 20 | 70 72 69 76 61 74 65 20 |nd .the |private |
|000026f0| 6b 65 79 2e 20 45 61 63 | 68 20 70 65 72 73 6f 6e |key. Eac|h person|
|00002700| 27 73 20 70 75 62 6c 69 | 63 20 6b 65 79 20 69 73 |'s publi|c key is|
|00002710| 20 70 75 62 6c 69 73 68 | 65 64 20 77 68 69 6c 65 | publish|ed while|
|00002720| 20 74 68 65 20 70 72 69 | 76 61 74 65 20 0a 6b 65 | the pri|vate .ke|
|00002730| 79 20 69 73 20 6b 65 70 | 74 20 73 65 63 72 65 74 |y is kep|t secret|
|00002740| 2e 20 54 68 65 20 6e 65 | 65 64 20 66 6f 72 20 73 |. The ne|ed for s|
|00002750| 65 6e 64 65 72 20 61 6e | 64 20 72 65 63 65 69 76 |ender an|d receiv|
|00002760| 65 72 20 74 6f 20 73 68 | 61 72 65 20 73 65 63 72 |er to sh|are secr|
|00002770| 65 74 20 0a 69 6e 66 6f | 72 6d 61 74 69 6f 6e 20 |et .info|rmation |
|00002780| 69 73 20 65 6c 69 6d 69 | 6e 61 74 65 64 3a 20 61 |is elimi|nated: a|
|00002790| 6c 6c 20 63 6f 6d 6d 75 | 6e 69 63 61 74 69 6f 6e |ll commu|nication|
|000027a0| 73 20 69 6e 76 6f 6c 76 | 65 20 6f 6e 6c 79 20 70 |s involv|e only p|
|000027b0| 75 62 6c 69 63 20 6b 65 | 79 73 2c 20 0a 61 6e 64 |ublic ke|ys, .and|
|000027c0| 20 6e 6f 20 70 72 69 76 | 61 74 65 20 6b 65 79 20 | no priv|ate key |
|000027d0| 69 73 20 65 76 65 72 20 | 74 72 61 6e 73 6d 69 74 |is ever |transmit|
|000027e0| 74 65 64 20 6f 72 20 73 | 68 61 72 65 64 2e 20 4e |ted or s|hared. N|
|000027f0| 6f 20 6c 6f 6e 67 65 72 | 20 69 73 20 69 74 20 6e |o longer| is it n|
|00002800| 65 63 65 73 73 61 72 79 | 20 0a 74 6f 20 74 72 75 |ecessary| .to tru|
|00002810| 73 74 20 73 6f 6d 65 20 | 63 6f 6d 6d 75 6e 69 63 |st some |communic|
|00002820| 61 74 69 6f 6e 73 20 63 | 68 61 6e 6e 65 6c 20 74 |ations c|hannel t|
|00002830| 6f 20 62 65 20 73 65 63 | 75 72 65 20 61 67 61 69 |o be sec|ure agai|
|00002840| 6e 73 74 20 65 61 76 65 | 73 64 72 6f 70 70 69 6e |nst eave|sdroppin|
|00002850| 67 20 0a 6f 72 20 62 65 | 74 72 61 79 61 6c 2e 20 |g .or be|trayal. |
|00002860| 41 6e 79 6f 6e 65 20 63 | 61 6e 20 73 65 6e 64 20 |Anyone c|an send |
|00002870| 61 20 63 6f 6e 66 69 64 | 65 6e 74 69 61 6c 20 6d |a confid|ential m|
|00002880| 65 73 73 61 67 65 20 6a | 75 73 74 20 75 73 69 6e |essage j|ust usin|
|00002890| 67 20 70 75 62 6c 69 63 | 20 0a 69 6e 66 6f 72 6d |g public| .inform|
|000028a0| 61 74 69 6f 6e 2c 20 62 | 75 74 20 69 74 20 63 61 |ation, b|ut it ca|
|000028b0| 6e 20 6f 6e 6c 79 20 62 | 65 20 64 65 63 72 79 70 |n only b|e decryp|
|000028c0| 74 65 64 20 77 69 74 68 | 20 61 20 70 72 69 76 61 |ted with| a priva|
|000028d0| 74 65 20 6b 65 79 20 74 | 68 61 74 20 69 73 20 69 |te key t|hat is i|
|000028e0| 6e 20 0a 74 68 65 20 73 | 6f 6c 65 20 70 6f 73 73 |n .the s|ole poss|
|000028f0| 65 73 73 69 6f 6e 20 6f | 66 20 74 68 65 20 69 6e |ession o|f the in|
|00002900| 74 65 6e 64 65 64 20 72 | 65 63 69 70 69 65 6e 74 |tended r|ecipient|
|00002910| 2e 20 46 75 72 74 68 65 | 72 6d 6f 72 65 2c 20 70 |. Furthe|rmore, p|
|00002920| 75 62 6c 69 63 2d 6b 65 | 79 20 0a 63 72 79 70 74 |ublic-ke|y .crypt|
|00002930| 6f 67 72 61 70 68 79 20 | 63 61 6e 20 62 65 20 75 |ography |can be u|
|00002940| 73 65 64 20 66 6f 72 20 | 61 75 74 68 65 6e 74 69 |sed for |authenti|
|00002950| 63 61 74 69 6f 6e 20 28 | 64 69 67 69 74 61 6c 20 |cation (|digital |
|00002960| 73 69 67 6e 61 74 75 72 | 65 73 29 20 61 73 20 77 |signatur|es) as w|
|00002970| 65 6c 6c 20 61 73 20 0a | 66 6f 72 20 70 72 69 76 |ell as .|for priv|
|00002980| 61 63 79 20 28 65 6e 63 | 72 79 70 74 69 6f 6e 29 |acy (enc|ryption)|
|00002990| 2e 20 0a 0a 48 65 72 65 | 27 73 20 68 6f 77 20 69 |. ..Here|'s how i|
|000029a0| 74 20 77 6f 72 6b 73 20 | 66 6f 72 20 65 6e 63 72 |t works |for encr|
|000029b0| 79 70 74 69 6f 6e 3a 20 | 77 68 65 6e 20 41 6c 69 |yption: |when Ali|
|000029c0| 63 65 20 77 69 73 68 65 | 73 20 74 6f 20 73 65 6e |ce wishe|s to sen|
|000029d0| 64 20 61 20 6d 65 73 73 | 61 67 65 20 74 6f 20 0a |d a mess|age to .|
|000029e0| 42 6f 62 2c 20 73 68 65 | 20 6c 6f 6f 6b 73 20 75 |Bob, she| looks u|
|000029f0| 70 20 42 6f 62 27 73 20 | 70 75 62 6c 69 63 20 6b |p Bob's |public k|
|00002a00| 65 79 20 69 6e 20 61 20 | 64 69 72 65 63 74 6f 72 |ey in a |director|
|00002a10| 79 2c 20 75 73 65 73 20 | 69 74 20 74 6f 20 65 6e |y, uses |it to en|
|00002a20| 63 72 79 70 74 20 74 68 | 65 20 0a 6d 65 73 73 61 |crypt th|e .messa|
|00002a30| 67 65 20 61 6e 64 20 73 | 65 6e 64 73 20 69 74 20 |ge and s|ends it |
|00002a40| 6f 66 66 2e 20 42 6f 62 | 20 74 68 65 6e 20 75 73 |off. Bob| then us|
|00002a50| 65 73 20 68 69 73 20 70 | 72 69 76 61 74 65 20 6b |es his p|rivate k|
|00002a60| 65 79 20 74 6f 20 64 65 | 63 72 79 70 74 20 74 68 |ey to de|crypt th|
|00002a70| 65 20 0a 6d 65 73 73 61 | 67 65 20 61 6e 64 20 72 |e .messa|ge and r|
|00002a80| 65 61 64 20 69 74 2e 20 | 4e 6f 20 6f 6e 65 20 6c |ead it. |No one l|
|00002a90| 69 73 74 65 6e 69 6e 67 | 20 69 6e 20 63 61 6e 20 |istening| in can |
|00002aa0| 64 65 63 72 79 70 74 20 | 74 68 65 20 6d 65 73 73 |decrypt |the mess|
|00002ab0| 61 67 65 2e 20 41 6e 79 | 6f 6e 65 20 0a 63 61 6e |age. Any|one .can|
|00002ac0| 20 73 65 6e 64 20 61 6e | 20 65 6e 63 72 79 70 74 | send an| encrypt|
|00002ad0| 65 64 20 6d 65 73 73 61 | 67 65 20 74 6f 20 42 6f |ed messa|ge to Bo|
|00002ae0| 62 20 62 75 74 20 6f 6e | 6c 79 20 42 6f 62 20 63 |b but on|ly Bob c|
|00002af0| 61 6e 20 72 65 61 64 20 | 69 74 2e 20 43 6c 65 61 |an read |it. Clea|
|00002b00| 72 6c 79 2c 20 6f 6e 65 | 20 0a 72 65 71 75 69 72 |rly, one| .requir|
|00002b10| 65 6d 65 6e 74 20 69 73 | 20 74 68 61 74 20 6e 6f |ement is| that no|
|00002b20| 20 6f 6e 65 20 63 61 6e | 20 66 69 67 75 72 65 20 | one can| figure |
|00002b30| 6f 75 74 20 74 68 65 20 | 70 72 69 76 61 74 65 20 |out the |private |
|00002b40| 6b 65 79 20 66 72 6f 6d | 20 74 68 65 20 0a 63 6f |key from| the .co|
|00002b50| 72 72 65 73 70 6f 6e 64 | 69 6e 67 20 70 75 62 6c |rrespond|ing publ|
|00002b60| 69 63 20 6b 65 79 2e 0a | 0a 48 65 72 65 27 73 20 |ic key..|.Here's |
|00002b70| 68 6f 77 20 69 74 20 77 | 6f 72 6b 73 20 66 6f 72 |how it w|orks for|
|00002b80| 20 61 75 74 68 65 6e 74 | 69 63 61 74 69 6f 6e 3a | authent|ication:|
|00002b90| 20 41 6c 69 63 65 2c 20 | 74 6f 20 73 69 67 6e 20 | Alice, |to sign |
|00002ba0| 61 20 6d 65 73 73 61 67 | 65 2c 20 64 6f 65 73 0a |a messag|e, does.|
|00002bb0| 61 20 63 6f 6d 70 75 74 | 61 74 69 6f 6e 20 69 6e |a comput|ation in|
|00002bc0| 76 6f 6c 76 69 6e 67 20 | 62 6f 74 68 20 68 65 72 |volving |both her|
|00002bd0| 20 70 72 69 76 61 74 65 | 20 6b 65 79 20 61 6e 64 | private| key and|
|00002be0| 20 74 68 65 20 6d 65 73 | 73 61 67 65 20 69 74 73 | the mes|sage its|
|00002bf0| 65 6c 66 3b 20 74 68 65 | 0a 6f 75 74 70 75 74 20 |elf; the|.output |
|00002c00| 69 73 20 63 61 6c 6c 65 | 64 20 74 68 65 20 64 69 |is calle|d the di|
|00002c10| 67 69 74 61 6c 20 73 69 | 67 6e 61 74 75 72 65 20 |gital si|gnature |
|00002c20| 61 6e 64 20 69 73 20 61 | 74 74 61 63 68 65 64 20 |and is a|ttached |
|00002c30| 74 6f 20 74 68 65 20 6d | 65 73 73 61 67 65 2c 0a |to the m|essage,.|
|00002c40| 77 68 69 63 68 20 69 73 | 20 74 68 65 6e 20 73 65 |which is| then se|
|00002c50| 6e 74 2e 20 42 6f 62 2c | 20 74 6f 20 76 65 72 69 |nt. Bob,| to veri|
|00002c60| 66 79 20 74 68 65 20 73 | 69 67 6e 61 74 75 72 65 |fy the s|ignature|
|00002c70| 2c 20 64 6f 65 73 20 73 | 6f 6d 65 20 63 6f 6d 70 |, does s|ome comp|
|00002c80| 75 74 61 74 69 6f 6e 20 | 0a 69 6e 76 6f 6c 76 69 |utation |.involvi|
|00002c90| 6e 67 20 74 68 65 20 6d | 65 73 73 61 67 65 2c 20 |ng the m|essage, |
|00002ca0| 74 68 65 20 70 75 72 70 | 6f 72 74 65 64 20 73 69 |the purp|orted si|
|00002cb0| 67 6e 61 74 75 72 65 2c | 20 61 6e 64 20 41 6c 69 |gnature,| and Ali|
|00002cc0| 63 65 27 73 20 70 75 62 | 6c 69 63 20 6b 65 79 2e |ce's pub|lic key.|
|00002cd0| 20 49 66 20 0a 74 68 65 | 20 72 65 73 75 6c 74 73 | If .the| results|
|00002ce0| 20 70 72 6f 70 65 72 6c | 79 20 68 6f 6c 64 20 69 | properl|y hold i|
|00002cf0| 6e 20 61 20 73 69 6d 70 | 6c 65 20 6d 61 74 68 65 |n a simp|le mathe|
|00002d00| 6d 61 74 69 63 61 6c 20 | 72 65 6c 61 74 69 6f 6e |matical |relation|
|00002d10| 2c 20 74 68 65 20 73 69 | 67 6e 61 74 75 72 65 20 |, the si|gnature |
|00002d20| 0a 69 73 20 76 65 72 69 | 66 69 65 64 20 61 73 20 |.is veri|fied as |
|00002d30| 67 65 6e 75 69 6e 65 3b | 20 6f 74 68 65 72 77 69 |genuine;| otherwi|
|00002d40| 73 65 2c 20 74 68 65 20 | 73 69 67 6e 61 74 75 72 |se, the |signatur|
|00002d50| 65 20 6d 61 79 20 62 65 | 20 66 72 61 75 64 75 6c |e may be| fraudul|
|00002d60| 65 6e 74 20 6f 72 20 74 | 68 65 20 0a 6d 65 73 73 |ent or t|he .mess|
|00002d70| 61 67 65 20 61 6c 74 65 | 72 65 64 2c 20 61 6e 64 |age alte|red, and|
|00002d80| 20 74 68 65 79 20 61 72 | 65 20 64 69 73 63 61 72 | they ar|e discar|
|00002d90| 64 65 64 2e 0a 0a 41 20 | 67 6f 6f 64 20 68 69 73 |ded...A |good his|
|00002da0| 74 6f 72 79 20 6f 66 20 | 70 75 62 6c 69 63 2d 6b |tory of |public-k|
|00002db0| 65 79 20 63 72 79 70 74 | 6f 67 72 61 70 68 79 2c |ey crypt|ography,|
|00002dc0| 20 62 79 20 6f 6e 65 20 | 6f 66 20 69 74 73 20 69 | by one |of its i|
|00002dd0| 6e 76 65 6e 74 6f 72 73 | 2c 20 69 73 20 0a 67 69 |nventors|, is .gi|
|00002de0| 76 65 6e 20 62 79 20 44 | 69 66 66 69 65 20 5b 32 |ven by D|iffie [2|
|00002df0| 37 5d 2e 0a 0a 0a 31 2e | 34 20 57 68 61 74 20 61 |7]....1.|4 What a|
|00002e00| 72 65 20 74 68 65 20 61 | 64 76 61 6e 74 61 67 65 |re the a|dvantage|
|00002e10| 73 20 61 6e 64 20 64 69 | 73 61 64 76 61 6e 74 61 |s and di|sadvanta|
|00002e20| 67 65 73 20 6f 66 20 70 | 75 62 6c 69 63 2d 6b 65 |ges of p|ublic-ke|
|00002e30| 79 20 63 72 79 70 74 6f | 67 72 61 70 68 79 20 0a |y crypto|graphy .|
|00002e40| 20 20 20 20 6f 76 65 72 | 20 73 65 63 72 65 74 2d | over| secret-|
|00002e50| 6b 65 79 20 63 72 79 70 | 74 6f 67 72 61 70 68 79 |key cryp|tography|
|00002e60| 3f 7d 0a 0a 54 68 65 20 | 70 72 69 6d 61 72 79 20 |?}..The |primary |
|00002e70| 61 64 76 61 6e 74 61 67 | 65 20 6f 66 20 70 75 62 |advantag|e of pub|
|00002e80| 6c 69 63 2d 6b 65 79 20 | 63 72 79 70 74 6f 67 72 |lic-key |cryptogr|
|00002e90| 61 70 68 79 20 69 73 20 | 69 6e 63 72 65 61 73 65 |aphy is |increase|
|00002ea0| 64 20 73 65 63 75 72 69 | 74 79 3a 20 0a 74 68 65 |d securi|ty: .the|
|00002eb0| 20 70 72 69 76 61 74 65 | 20 6b 65 79 73 20 64 6f | private| keys do|
|00002ec0| 20 6e 6f 74 20 65 76 65 | 72 20 6e 65 65 64 20 74 | not eve|r need t|
|00002ed0| 6f 20 62 65 20 74 72 61 | 6e 73 6d 69 74 74 65 64 |o be tra|nsmitted|
|00002ee0| 20 6f 72 20 72 65 76 65 | 61 6c 65 64 20 74 6f 20 | or reve|aled to |
|00002ef0| 61 6e 79 6f 6e 65 2e 20 | 0a 49 6e 20 61 20 73 65 |anyone. |.In a se|
|00002f00| 63 72 65 74 2d 6b 65 79 | 20 73 79 73 74 65 6d 2c |cret-key| system,|
|00002f10| 20 62 79 20 63 6f 6e 74 | 72 61 73 74 2c 20 74 68 | by cont|rast, th|
|00002f20| 65 72 65 20 69 73 20 61 | 6c 77 61 79 73 20 61 20 |ere is a|lways a |
|00002f30| 63 68 61 6e 63 65 20 74 | 68 61 74 20 61 6e 20 0a |chance t|hat an .|
|00002f40| 65 6e 65 6d 79 20 63 6f | 75 6c 64 20 64 69 73 63 |enemy co|uld disc|
|00002f50| 6f 76 65 72 20 74 68 65 | 20 73 65 63 72 65 74 20 |over the| secret |
|00002f60| 6b 65 79 20 77 68 69 6c | 65 20 69 74 20 69 73 20 |key whil|e it is |
|00002f70| 62 65 69 6e 67 20 74 72 | 61 6e 73 6d 69 74 74 65 |being tr|ansmitte|
|00002f80| 64 2e 0a 0a 41 6e 6f 74 | 68 65 72 20 6d 61 6a 6f |d...Anot|her majo|
|00002f90| 72 20 61 64 76 61 6e 74 | 61 67 65 20 6f 66 20 70 |r advant|age of p|
|00002fa0| 75 62 6c 69 63 2d 6b 65 | 79 20 73 79 73 74 65 6d |ublic-ke|y system|
|00002fb0| 73 20 69 73 20 74 68 61 | 74 20 74 68 65 79 20 63 |s is tha|t they c|
|00002fc0| 61 6e 20 70 72 6f 76 69 | 64 65 20 0a 61 20 6d 65 |an provi|de .a me|
|00002fd0| 74 68 6f 64 20 66 6f 72 | 20 64 69 67 69 74 61 6c |thod for| digital|
|00002fe0| 20 73 69 67 6e 61 74 75 | 72 65 73 2e 20 41 75 74 | signatu|res. Aut|
|00002ff0| 68 65 6e 74 69 63 61 74 | 69 6f 6e 20 76 69 61 20 |henticat|ion via |
|00003000| 73 65 63 72 65 74 2d 6b | 65 79 20 73 79 73 74 65 |secret-k|ey syste|
|00003010| 6d 73 0a 72 65 71 75 69 | 72 65 73 20 74 68 65 20 |ms.requi|res the |
|00003020| 73 68 61 72 69 6e 67 20 | 6f 66 20 73 6f 6d 65 20 |sharing |of some |
|00003030| 73 65 63 72 65 74 20 61 | 6e 64 20 73 6f 6d 65 74 |secret a|nd somet|
|00003040| 69 6d 65 73 20 72 65 71 | 75 69 72 65 73 20 74 72 |imes req|uires tr|
|00003050| 75 73 74 20 6f 66 20 61 | 20 0a 74 68 69 72 64 20 |ust of a| .third |
|00003060| 70 61 72 74 79 20 61 73 | 20 77 65 6c 6c 2e 20 41 |party as| well. A|
|00003070| 20 73 65 6e 64 65 72 20 | 63 61 6e 20 74 68 65 6e | sender |can then|
|00003080| 20 72 65 70 75 64 69 61 | 74 65 20 61 20 70 72 65 | repudia|te a pre|
|00003090| 76 69 6f 75 73 6c 79 20 | 73 69 67 6e 65 64 20 6d |viously |signed m|
|000030a0| 65 73 73 61 67 65 20 0a | 62 79 20 63 6c 61 69 6d |essage .|by claim|
|000030b0| 69 6e 67 20 74 68 61 74 | 20 74 68 65 20 73 68 61 |ing that| the sha|
|000030c0| 72 65 64 20 73 65 63 72 | 65 74 20 77 61 73 20 73 |red secr|et was s|
|000030d0| 6f 6d 65 68 6f 77 20 63 | 6f 6d 70 72 6f 6d 69 73 |omehow c|ompromis|
|000030e0| 65 64 20 62 79 20 6f 6e | 65 20 6f 66 20 74 68 65 |ed by on|e of the|
|000030f0| 0a 70 61 72 74 69 65 73 | 20 73 68 61 72 69 6e 67 |.parties| sharing|
|00003100| 20 74 68 65 20 73 65 63 | 72 65 74 2e 20 46 6f 72 | the sec|ret. For|
|00003110| 20 65 78 61 6d 70 6c 65 | 2c 20 74 68 65 20 4b 65 | example|, the Ke|
|00003120| 72 62 65 72 6f 73 20 73 | 65 63 72 65 74 2d 6b 65 |rberos s|ecret-ke|
|00003130| 79 20 0a 61 75 74 68 65 | 6e 74 69 63 61 74 69 6f |y .authe|nticatio|
|00003140| 6e 20 73 79 73 74 65 6d | 20 5b 37 39 5d 20 69 6e |n system| [79] in|
|00003150| 76 6f 6c 76 65 73 20 61 | 20 63 65 6e 74 72 61 6c |volves a| central|
|00003160| 20 64 61 74 61 62 61 73 | 65 20 74 68 61 74 20 6b | databas|e that k|
|00003170| 65 65 70 73 20 63 6f 70 | 69 65 73 20 0a 6f 66 20 |eeps cop|ies .of |
|00003180| 74 68 65 20 73 65 63 72 | 65 74 20 6b 65 79 73 20 |the secr|et keys |
|00003190| 6f 66 20 61 6c 6c 20 75 | 73 65 72 73 3b 20 61 20 |of all u|sers; a |
|000031a0| 4b 65 72 62 65 72 6f 73 | 2d 61 75 74 68 65 6e 74 |Kerberos|-authent|
|000031b0| 69 63 61 74 65 64 20 6d | 65 73 73 61 67 65 20 77 |icated m|essage w|
|000031c0| 6f 75 6c 64 20 0a 6d 6f | 73 74 20 6c 69 6b 65 6c |ould .mo|st likel|
|000031d0| 79 20 6e 6f 74 20 62 65 | 20 68 65 6c 64 20 6c 65 |y not be| held le|
|000031e0| 67 61 6c 6c 79 20 62 69 | 6e 64 69 6e 67 2c 20 73 |gally bi|nding, s|
|000031f0| 69 6e 63 65 20 61 6e 20 | 61 74 74 61 63 6b 20 6f |ince an |attack o|
|00003200| 6e 20 74 68 65 20 64 61 | 74 61 62 61 73 65 20 0a |n the da|tabase .|
|00003210| 77 6f 75 6c 64 20 61 6c | 6c 6f 77 20 77 69 64 65 |would al|low wide|
|00003220| 73 70 72 65 61 64 20 66 | 6f 72 67 65 72 79 2e 20 |spread f|orgery. |
|00003230| 50 75 62 6c 69 63 2d 6b | 65 79 20 61 75 74 68 65 |Public-k|ey authe|
|00003240| 6e 74 69 63 61 74 69 6f | 6e 2c 20 6f 6e 20 74 68 |nticatio|n, on th|
|00003250| 65 20 6f 74 68 65 72 20 | 0a 68 61 6e 64 2c 20 70 |e other |.hand, p|
|00003260| 72 65 76 65 6e 74 73 20 | 74 68 69 73 20 74 79 70 |revents |this typ|
|00003270| 65 20 6f 66 20 72 65 70 | 75 64 69 61 74 69 6f 6e |e of rep|udiation|
|00003280| 3b 20 65 61 63 68 20 75 | 73 65 72 20 68 61 73 20 |; each u|ser has |
|00003290| 73 6f 6c 65 20 72 65 73 | 70 6f 6e 73 69 62 69 6c |sole res|ponsibil|
|000032a0| 69 74 79 20 0a 66 6f 72 | 20 70 72 6f 74 65 63 74 |ity .for| protect|
|000032b0| 69 6e 67 20 68 69 73 20 | 6f 72 20 68 65 72 20 70 |ing his |or her p|
|000032c0| 72 69 76 61 74 65 20 6b | 65 79 2e 20 54 68 69 73 |rivate k|ey. This|
|000032d0| 20 70 72 6f 70 65 72 74 | 79 20 6f 66 20 70 75 62 | propert|y of pub|
|000032e0| 6c 69 63 2d 6b 65 79 20 | 0a 61 75 74 68 65 6e 74 |lic-key |.authent|
|000032f0| 69 63 61 74 69 6f 6e 20 | 69 73 20 6f 66 74 65 6e |ication |is often|
|00003300| 20 63 61 6c 6c 65 64 20 | 6e 6f 6e 2d 72 65 70 75 | called |non-repu|
|00003310| 64 69 61 74 69 6f 6e 2e | 20 0a 0a 46 75 72 74 68 |diation.| ..Furth|
|00003320| 65 72 6d 6f 72 65 2c 20 | 64 69 67 69 74 61 6c 6c |ermore, |digitall|
|00003330| 79 20 73 69 67 6e 65 64 | 20 6d 65 73 73 61 67 65 |y signed| message|
|00003340| 73 20 63 61 6e 20 62 65 | 20 70 72 6f 76 65 64 20 |s can be| proved |
|00003350| 61 75 74 68 65 6e 74 69 | 63 20 74 6f 20 61 20 74 |authenti|c to a t|
|00003360| 68 69 72 64 20 0a 70 61 | 72 74 79 2c 20 73 75 63 |hird .pa|rty, suc|
|00003370| 68 20 61 73 20 61 20 6a | 75 64 67 65 2c 20 74 68 |h as a j|udge, th|
|00003380| 75 73 20 61 6c 6c 6f 77 | 69 6e 67 20 73 75 63 68 |us allow|ing such|
|00003390| 20 6d 65 73 73 61 67 65 | 73 20 74 6f 20 62 65 20 | message|s to be |
|000033a0| 6c 65 67 61 6c 6c 79 20 | 62 69 6e 64 69 6e 67 2e |legally |binding.|
|000033b0| 20 0a 53 65 63 72 65 74 | 2d 6b 65 79 20 61 75 74 | .Secret|-key aut|
|000033c0| 68 65 6e 74 69 63 61 74 | 69 6f 6e 20 73 79 73 74 |henticat|ion syst|
|000033d0| 65 6d 73 20 73 75 63 68 | 20 61 73 20 4b 65 72 62 |ems such| as Kerb|
|000033e0| 65 72 6f 73 20 77 65 72 | 65 20 64 65 73 69 67 6e |eros wer|e design|
|000033f0| 65 64 20 74 6f 20 0a 61 | 75 74 68 65 6e 74 69 63 |ed to .a|uthentic|
|00003400| 61 74 65 20 61 63 63 65 | 73 73 20 74 6f 20 6e 65 |ate acce|ss to ne|
|00003410| 74 77 6f 72 6b 20 72 65 | 73 6f 75 72 63 65 73 2c |twork re|sources,|
|00003420| 20 72 61 74 68 65 72 20 | 74 68 61 6e 20 74 6f 20 | rather |than to |
|00003430| 61 75 74 68 65 6e 74 69 | 63 61 74 65 20 0a 64 6f |authenti|cate .do|
|00003440| 63 75 6d 65 6e 74 73 2c | 20 61 20 74 61 73 6b 20 |cuments,| a task |
|00003450| 77 68 69 63 68 20 69 73 | 20 62 65 74 74 65 72 20 |which is| better |
|00003460| 61 63 68 69 65 76 65 64 | 20 76 69 61 20 64 69 67 |achieved| via dig|
|00003470| 69 74 61 6c 20 73 69 67 | 6e 61 74 75 72 65 73 2e |ital sig|natures.|
|00003480| 0a 0a 41 20 64 69 73 61 | 64 76 61 6e 74 61 67 65 |..A disa|dvantage|
|00003490| 20 6f 66 20 75 73 69 6e | 67 20 70 75 62 6c 69 63 | of usin|g public|
|000034a0| 2d 6b 65 79 20 63 72 79 | 70 74 6f 67 72 61 70 68 |-key cry|ptograph|
|000034b0| 79 20 66 6f 72 20 65 6e | 63 72 79 70 74 69 6f 6e |y for en|cryption|
|000034c0| 20 69 73 20 73 70 65 65 | 64 3a 20 0a 74 68 65 72 | is spee|d: .ther|
|000034d0| 65 20 61 72 65 20 70 6f | 70 75 6c 61 72 20 73 65 |e are po|pular se|
|000034e0| 63 72 65 74 2d 6b 65 79 | 20 65 6e 63 72 79 70 74 |cret-key| encrypt|
|000034f0| 69 6f 6e 20 6d 65 74 68 | 6f 64 73 20 77 68 69 63 |ion meth|ods whic|
|00003500| 68 20 61 72 65 20 73 69 | 67 6e 69 66 69 63 61 6e |h are si|gnifican|
|00003510| 74 6c 79 20 0a 66 61 73 | 74 65 72 20 74 68 61 6e |tly .fas|ter than|
|00003520| 20 61 6e 79 20 63 75 72 | 72 65 6e 74 6c 79 20 61 | any cur|rently a|
|00003530| 76 61 69 6c 61 62 6c 65 | 20 70 75 62 6c 69 63 2d |vailable| public-|
|00003540| 6b 65 79 20 65 6e 63 72 | 79 70 74 69 6f 6e 20 6d |key encr|yption m|
|00003550| 65 74 68 6f 64 2e 20 42 | 75 74 20 0a 70 75 62 6c |ethod. B|ut .publ|
|00003560| 69 63 2d 6b 65 79 20 63 | 72 79 70 74 6f 67 72 61 |ic-key c|ryptogra|
|00003570| 70 68 79 20 63 61 6e 20 | 73 68 61 72 65 20 74 68 |phy can |share th|
|00003580| 65 20 62 75 72 64 65 6e | 20 77 69 74 68 20 73 65 |e burden| with se|
|00003590| 63 72 65 74 2d 6b 65 79 | 20 63 72 79 70 74 6f 67 |cret-key| cryptog|
|000035a0| 72 61 70 68 79 20 0a 74 | 6f 20 67 65 74 20 74 68 |raphy .t|o get th|
|000035b0| 65 20 62 65 73 74 20 6f | 66 20 62 6f 74 68 20 77 |e best o|f both w|
|000035c0| 6f 72 6c 64 73 2e 20 0a | 0a 46 6f 72 20 65 6e 63 |orlds. .|.For enc|
|000035d0| 72 79 70 74 69 6f 6e 2c | 20 74 68 65 20 62 65 73 |ryption,| the bes|
|000035e0| 74 20 73 6f 6c 75 74 69 | 6f 6e 20 69 73 20 74 6f |t soluti|on is to|
|000035f0| 20 63 6f 6d 62 69 6e 65 | 20 70 75 62 6c 69 63 2d | combine| public-|
|00003600| 20 61 6e 64 20 73 65 63 | 72 65 74 2d 6b 65 79 20 | and sec|ret-key |
|00003610| 0a 73 79 73 74 65 6d 73 | 20 69 6e 20 6f 72 64 65 |.systems| in orde|
|00003620| 72 20 74 6f 20 67 65 74 | 20 62 6f 74 68 20 74 68 |r to get| both th|
|00003630| 65 20 73 65 63 75 72 69 | 74 79 20 61 64 76 61 6e |e securi|ty advan|
|00003640| 74 61 67 65 73 20 6f 66 | 20 70 75 62 6c 69 63 2d |tages of| public-|
|00003650| 6b 65 79 20 73 79 73 74 | 65 6d 73 20 0a 61 6e 64 |key syst|ems .and|
|00003660| 20 74 68 65 20 73 70 65 | 65 64 20 61 64 76 61 6e | the spe|ed advan|
|00003670| 74 61 67 65 73 20 6f 66 | 20 73 65 63 72 65 74 2d |tages of| secret-|
|00003680| 6b 65 79 20 73 79 73 74 | 65 6d 73 2e 20 54 68 65 |key syst|ems. The|
|00003690| 20 70 75 62 6c 69 63 2d | 6b 65 79 20 73 79 73 74 | public-|key syst|
|000036a0| 65 6d 20 63 61 6e 20 0a | 62 65 20 75 73 65 64 20 |em can .|be used |
|000036b0| 74 6f 20 65 6e 63 72 79 | 70 74 20 61 20 73 65 63 |to encry|pt a sec|
|000036c0| 72 65 74 20 6b 65 79 20 | 77 68 69 63 68 20 69 73 |ret key |which is|
|000036d0| 20 74 68 65 6e 20 75 73 | 65 64 20 74 6f 20 65 6e | then us|ed to en|
|000036e0| 63 72 79 70 74 20 74 68 | 65 20 62 75 6c 6b 20 0a |crypt th|e bulk .|
|000036f0| 6f 66 20 61 20 66 69 6c | 65 20 6f 72 20 6d 65 73 |of a fil|e or mes|
|00003700| 73 61 67 65 2e 20 54 68 | 69 73 20 69 73 20 65 78 |sage. Th|is is ex|
|00003710| 70 6c 61 69 6e 65 64 20 | 69 6e 20 6d 6f 72 65 20 |plained |in more |
|00003720| 64 65 74 61 69 6c 20 69 | 6e 20 51 75 65 73 74 69 |detail i|n Questi|
|00003730| 6f 6e 20 32 2e 31 32 0a | 69 6e 20 74 68 65 20 63 |on 2.12.|in the c|
|00003740| 61 73 65 20 6f 66 20 52 | 53 41 2e 20 50 75 62 6c |ase of R|SA. Publ|
|00003750| 69 63 2d 6b 65 79 20 63 | 72 79 70 74 6f 67 72 61 |ic-key c|ryptogra|
|00003760| 70 68 79 20 69 73 20 6e | 6f 74 20 6d 65 61 6e 74 |phy is n|ot meant|
|00003770| 20 74 6f 20 72 65 70 6c | 61 63 65 20 0a 73 65 63 | to repl|ace .sec|
|00003780| 72 65 74 2d 6b 65 79 20 | 63 72 79 70 74 6f 67 72 |ret-key |cryptogr|
|00003790| 61 70 68 79 2c 20 62 75 | 74 20 72 61 74 68 65 72 |aphy, bu|t rather|
|000037a0| 20 74 6f 20 73 75 70 70 | 6c 65 6d 65 6e 74 20 69 | to supp|lement i|
|000037b0| 74 2c 20 74 6f 20 6d 61 | 6b 65 20 69 74 20 6d 6f |t, to ma|ke it mo|
|000037c0| 72 65 20 0a 73 65 63 75 | 72 65 2e 20 54 68 65 20 |re .secu|re. The |
|000037d0| 66 69 72 73 74 20 75 73 | 65 20 6f 66 20 70 75 62 |first us|e of pub|
|000037e0| 6c 69 63 2d 6b 65 79 20 | 74 65 63 68 6e 69 71 75 |lic-key |techniqu|
|000037f0| 65 73 20 77 61 73 20 66 | 6f 72 20 73 65 63 75 72 |es was f|or secur|
|00003800| 65 20 6b 65 79 20 65 78 | 63 68 61 6e 67 65 20 0a |e key ex|change .|
|00003810| 69 6e 20 61 6e 20 6f 74 | 68 65 72 77 69 73 65 20 |in an ot|herwise |
|00003820| 73 65 63 72 65 74 2d 6b | 65 79 20 73 79 73 74 65 |secret-k|ey syste|
|00003830| 6d 20 5b 32 39 5d 3b 20 | 74 68 69 73 20 69 73 20 |m [29]; |this is |
|00003840| 73 74 69 6c 6c 20 6f 6e | 65 20 6f 66 20 69 74 73 |still on|e of its|
|00003850| 20 70 72 69 6d 61 72 79 | 20 0a 66 75 6e 63 74 69 | primary| .functi|
|00003860| 6f 6e 73 2e 0a 0a 53 65 | 63 72 65 74 2d 6b 65 79 |ons...Se|cret-key|
|00003870| 20 63 72 79 70 74 6f 67 | 72 61 70 68 79 20 72 65 | cryptog|raphy re|
|00003880| 6d 61 69 6e 73 20 65 78 | 74 72 65 6d 65 6c 79 20 |mains ex|tremely |
|00003890| 69 6d 70 6f 72 74 61 6e | 74 20 61 6e 64 20 69 73 |importan|t and is|
|000038a0| 20 74 68 65 20 73 75 62 | 6a 65 63 74 20 6f 66 0a | the sub|ject of.|
|000038b0| 6d 75 63 68 20 6f 6e 67 | 6f 69 6e 67 20 73 74 75 |much ong|oing stu|
|000038c0| 64 79 20 61 6e 64 20 72 | 65 73 65 61 72 63 68 2e |dy and r|esearch.|
|000038d0| 20 53 6f 6d 65 20 73 65 | 63 72 65 74 2d 6b 65 79 | Some se|cret-key|
|000038e0| 20 65 6e 63 72 79 70 74 | 69 6f 6e 20 73 79 73 74 | encrypt|ion syst|
|000038f0| 65 6d 73 20 61 72 65 20 | 0a 64 69 73 63 75 73 73 |ems are |.discuss|
|00003900| 65 64 20 69 6e 20 51 75 | 65 73 74 69 6f 6e 73 20 |ed in Qu|estions |
|00003910| 35 2e 31 20 61 6e 64 20 | 35 2e 35 2e 0a 0a 0a 31 |5.1 and |5.5....1|
|00003920| 2e 35 20 49 73 20 63 72 | 79 70 74 6f 67 72 61 70 |.5 Is cr|yptograp|
|00003930| 68 79 20 70 61 74 65 6e | 74 61 62 6c 65 20 69 6e |hy paten|table in|
|00003940| 20 74 68 65 20 55 2e 53 | 2e 3f 0a 0a 43 72 79 70 | the U.S|.?..Cryp|
|00003950| 74 6f 67 72 61 70 68 69 | 63 20 73 79 73 74 65 6d |tographi|c system|
|00003960| 73 20 61 72 65 20 70 61 | 74 65 6e 74 61 62 6c 65 |s are pa|tentable|
|00003970| 2e 20 4d 61 6e 79 20 73 | 65 63 72 65 74 2d 6b 65 |. Many s|ecret-ke|
|00003980| 79 20 63 72 79 70 74 6f | 73 79 73 74 65 6d 73 20 |y crypto|systems |
|00003990| 0a 68 61 76 65 20 62 65 | 65 6e 20 70 61 74 65 6e |.have be|en paten|
|000039a0| 74 65 64 2c 20 69 6e 63 | 6c 75 64 69 6e 67 20 44 |ted, inc|luding D|
|000039b0| 45 53 20 28 73 65 65 20 | 51 75 65 73 74 69 6f 6e |ES (see |Question|
|000039c0| 20 35 2e 31 29 2e 20 54 | 68 65 20 62 61 73 69 63 | 5.1). T|he basic|
|000039d0| 20 69 64 65 61 73 20 0a | 6f 66 20 70 75 62 6c 69 | ideas .|of publi|
|000039e0| 63 2d 6b 65 79 20 63 72 | 79 70 74 6f 67 72 61 70 |c-key cr|yptograp|
|000039f0| 68 79 20 61 72 65 20 63 | 6f 6e 74 61 69 6e 65 64 |hy are c|ontained|
|00003a00| 20 69 6e 20 55 2e 53 2e | 20 50 61 74 65 6e 74 20 | in U.S.| Patent |
|00003a10| 34 2c 32 30 30 2c 37 37 | 30 2c 20 62 79 20 4d 2e |4,200,77|0, by M.|
|00003a20| 0a 48 65 6c 6c 6d 61 6e | 2c 20 57 2e 20 44 69 66 |.Hellman|, W. Dif|
|00003a30| 66 69 65 2c 20 61 6e 64 | 20 52 2e 20 4d 65 72 6b |fie, and| R. Merk|
|00003a40| 6c 65 2c 20 69 73 73 75 | 65 64 20 34 2f 32 39 2f |le, issu|ed 4/29/|
|00003a50| 38 30 20 61 6e 64 20 69 | 6e 20 55 2e 53 2e 20 50 |80 and i|n U.S. P|
|00003a60| 61 74 65 6e 74 20 0a 34 | 2c 32 31 38 2c 35 38 32 |atent .4|,218,582|
|00003a70| 2c 20 62 79 20 4d 2e 20 | 48 65 6c 6c 6d 61 6e 20 |, by M. |Hellman |
|00003a80| 61 6e 64 20 52 2e 20 4d | 65 72 6b 6c 65 2c 20 69 |and R. M|erkle, i|
|00003a90| 73 73 75 65 64 20 38 2f | 31 39 2f 38 30 3b 20 73 |ssued 8/|19/80; s|
|00003aa0| 69 6d 69 6c 61 72 20 70 | 61 74 65 6e 74 73 20 68 |imilar p|atents h|
|00003ab0| 61 76 65 20 0a 62 65 65 | 6e 20 69 73 73 75 65 64 |ave .bee|n issued|
|00003ac0| 20 74 68 72 6f 75 67 68 | 6f 75 74 20 74 68 65 20 | through|out the |
|00003ad0| 77 6f 72 6c 64 2e 20 54 | 68 65 20 65 78 63 6c 75 |world. T|he exclu|
|00003ae0| 73 69 76 65 20 6c 69 63 | 65 6e 73 69 6e 67 20 72 |sive lic|ensing r|
|00003af0| 69 67 68 74 73 20 74 6f | 20 62 6f 74 68 20 0a 70 |ights to| both .p|
|00003b00| 61 74 65 6e 74 73 20 61 | 72 65 20 68 65 6c 64 20 |atents a|re held |
|00003b10| 62 79 20 50 75 62 6c 69 | 63 20 4b 65 79 20 50 61 |by Publi|c Key Pa|
|00003b20| 72 74 6e 65 72 73 20 28 | 50 4b 50 29 2c 20 6f 66 |rtners (|PKP), of|
|00003b30| 20 53 75 6e 6e 79 76 61 | 6c 65 2c 20 43 61 6c 69 | Sunnyva|le, Cali|
|00003b40| 66 6f 72 6e 69 61 2c 20 | 0a 77 68 69 63 68 20 61 |fornia, |.which a|
|00003b50| 6c 73 6f 20 68 6f 6c 64 | 73 20 74 68 65 20 72 69 |lso hold|s the ri|
|00003b60| 67 68 74 73 20 74 6f 20 | 74 68 65 20 52 53 41 20 |ghts to |the RSA |
|00003b70| 70 61 74 65 6e 74 20 28 | 73 65 65 20 51 75 65 73 |patent (|see Ques|
|00003b80| 74 69 6f 6e 20 32 2e 31 | 39 29 2e 20 0a 55 73 75 |tion 2.1|9). .Usu|
|00003b90| 61 6c 6c 79 20 61 6c 6c | 20 6f 66 20 74 68 65 73 |ally all| of thes|
|00003ba0| 65 20 70 75 62 6c 69 63 | 2d 6b 65 79 20 70 61 74 |e public|-key pat|
|00003bb0| 65 6e 74 73 20 61 72 65 | 20 6c 69 63 65 6e 73 65 |ents are| license|
|00003bc0| 64 20 74 6f 67 65 74 68 | 65 72 2e 20 0a 0a 41 6c |d togeth|er. ..Al|
|00003bd0| 6c 20 6c 65 67 61 6c 20 | 63 68 61 6c 6c 65 6e 67 |l legal |challeng|
|00003be0| 65 73 20 74 6f 20 70 75 | 62 6c 69 63 2d 6b 65 79 |es to pu|blic-key|
|00003bf0| 20 70 61 74 65 6e 74 73 | 20 68 61 76 65 20 62 65 | patents| have be|
|00003c00| 65 6e 20 73 65 74 74 6c | 65 64 20 62 65 66 6f 72 |en settl|ed befor|
|00003c10| 65 0a 6a 75 64 67 6d 65 | 6e 74 2e 20 49 6e 20 61 |e.judgme|nt. In a|
|00003c20| 20 72 65 63 65 6e 74 20 | 63 61 73 65 2c 20 66 6f | recent |case, fo|
|00003c30| 72 20 65 78 61 6d 70 6c | 65 2c 20 50 4b 50 20 62 |r exampl|e, PKP b|
|00003c40| 72 6f 75 67 68 74 20 73 | 75 69 74 20 61 67 61 69 |rought s|uit agai|
|00003c50| 6e 73 74 20 74 68 65 20 | 54 52 57 20 0a 43 6f 72 |nst the |TRW .Cor|
|00003c60| 70 6f 72 61 74 69 6f 6e | 20 77 68 69 63 68 20 77 |poration| which w|
|00003c70| 61 73 20 75 73 69 6e 67 | 20 70 75 62 6c 69 63 2d |as using| public-|
|00003c80| 6b 65 79 20 63 72 79 70 | 74 6f 67 72 61 70 68 79 |key cryp|tography|
|00003c90| 20 28 74 68 65 20 45 6c | 47 61 6d 61 6c 20 73 79 | (the El|Gamal sy|
|00003ca0| 73 74 65 6d 29 20 0a 77 | 69 74 68 6f 75 74 20 61 |stem) .w|ithout a|
|00003cb0| 20 6c 69 63 65 6e 73 65 | 3b 20 54 52 57 20 63 6c | license|; TRW cl|
|00003cc0| 61 69 6d 65 64 20 69 74 | 20 64 69 64 20 6e 6f 74 |aimed it| did not|
|00003cd0| 20 6e 65 65 64 20 74 6f | 20 6c 69 63 65 6e 73 65 | need to| license|
|00003ce0| 2e 20 49 6e 20 4a 75 6e | 65 20 31 39 39 32 20 61 |. In Jun|e 1992 a|
|00003cf0| 20 0a 73 65 74 74 6c 65 | 6d 65 6e 74 20 77 61 73 | .settle|ment was|
|00003d00| 20 72 65 61 63 68 65 64 | 20 69 6e 20 77 68 69 63 | reached| in whic|
|00003d10| 68 20 54 52 57 20 61 67 | 72 65 65 64 20 74 6f 20 |h TRW ag|reed to |
|00003d20| 6c 69 63 65 6e 73 65 20 | 74 6f 20 74 68 65 20 70 |license |to the p|
|00003d30| 61 74 65 6e 74 73 2e 0a | 0a 53 6f 6d 65 20 70 61 |atents..|.Some pa|
|00003d40| 74 65 6e 74 20 61 70 70 | 6c 69 63 61 74 69 6f 6e |tent app|lication|
|00003d50| 73 20 66 6f 72 20 63 72 | 79 70 74 6f 73 79 73 74 |s for cr|yptosyst|
|00003d60| 65 6d 73 20 68 61 76 65 | 20 62 65 65 6e 20 62 6c |ems have| been bl|
|00003d70| 6f 63 6b 65 64 20 62 79 | 20 69 6e 74 65 72 76 65 |ocked by| interve|
|00003d80| 6e 74 69 6f 6e 20 0a 62 | 79 20 74 68 65 20 4e 53 |ntion .b|y the NS|
|00003d90| 41 20 28 73 65 65 20 51 | 75 65 73 74 69 6f 6e 20 |A (see Q|uestion |
|00003da0| 37 2e 33 29 20 6f 72 20 | 6f 74 68 65 72 20 69 6e |7.3) or |other in|
|00003db0| 74 65 6c 6c 69 67 65 6e | 63 65 20 6f 72 20 64 65 |telligen|ce or de|
|00003dc0| 66 65 6e 73 65 20 61 67 | 65 6e 63 69 65 73 2c 20 |fense ag|encies, |
|00003dd0| 0a 75 6e 64 65 72 20 74 | 68 65 20 61 75 74 68 6f |.under t|he autho|
|00003de0| 72 69 74 79 20 6f 66 20 | 74 68 65 20 49 6e 76 65 |rity of |the Inve|
|00003df0| 6e 74 69 6f 6e 20 53 65 | 63 72 65 63 79 20 41 63 |ntion Se|crecy Ac|
|00003e00| 74 20 6f 66 20 31 39 34 | 30 20 61 6e 64 20 74 68 |t of 194|0 and th|
|00003e10| 65 20 4e 61 74 69 6f 6e | 61 6c 20 0a 53 65 63 75 |e Nation|al .Secu|
|00003e20| 72 69 74 79 20 41 63 74 | 20 6f 66 20 31 39 34 37 |rity Act| of 1947|
|00003e30| 3b 20 73 65 65 20 4c 61 | 6e 64 61 75 20 5b 34 36 |; see La|ndau [46|
|00003e40| 5d 20 66 6f 72 20 73 6f | 6d 65 20 72 65 63 65 6e |] for so|me recen|
|00003e50| 74 20 63 61 73 65 73 20 | 72 65 6c 61 74 65 64 20 |t cases |related |
|00003e60| 74 6f 20 0a 63 72 79 70 | 74 6f 67 72 61 70 68 79 |to .cryp|tography|
|00003e70| 2e 0a 0a 0a 31 2e 36 20 | 49 73 20 63 72 79 70 74 |....1.6 |Is crypt|
|00003e80| 6f 67 72 61 70 68 79 20 | 65 78 70 6f 72 74 61 62 |ography |exportab|
|00003e90| 6c 65 20 66 72 6f 6d 20 | 74 68 65 20 55 2e 53 2e |le from |the U.S.|
|00003ea0| 3f 0a 0a 41 6c 6c 20 63 | 72 79 70 74 6f 67 72 61 |?..All c|ryptogra|
|00003eb0| 70 68 69 63 20 70 72 6f | 64 75 63 74 73 20 6e 65 |phic pro|ducts ne|
|00003ec0| 65 64 20 65 78 70 6f 72 | 74 20 6c 69 63 65 6e 73 |ed expor|t licens|
|00003ed0| 65 73 20 66 72 6f 6d 20 | 74 68 65 20 53 74 61 74 |es from |the Stat|
|00003ee0| 65 20 44 65 70 61 72 74 | 6d 65 6e 74 2c 20 0a 61 |e Depart|ment, .a|
|00003ef0| 63 74 69 6e 67 20 75 6e | 64 65 72 20 61 75 74 68 |cting un|der auth|
|00003f00| 6f 72 69 74 79 20 6f 66 | 20 74 68 65 20 49 6e 74 |ority of| the Int|
|00003f10| 65 72 6e 61 74 69 6f 6e | 61 6c 20 54 72 61 66 66 |ernation|al Traff|
|00003f20| 69 63 20 69 6e 20 41 72 | 6d 73 20 52 65 67 75 6c |ic in Ar|ms Regul|
|00003f30| 61 74 69 6f 6e 20 0a 28 | 49 54 41 52 29 2c 20 77 |ation .(|ITAR), w|
|00003f40| 68 69 63 68 20 64 65 66 | 69 6e 65 73 20 63 72 79 |hich def|ines cry|
|00003f50| 70 74 6f 67 72 61 70 68 | 69 63 20 64 65 76 69 63 |ptograph|ic devic|
|00003f60| 65 73 2c 20 69 6e 63 6c | 75 64 69 6e 67 20 73 6f |es, incl|uding so|
|00003f70| 66 74 77 61 72 65 2c 20 | 61 73 20 0a 6d 75 6e 69 |ftware, |as .muni|
|00003f80| 74 69 6f 6e 73 2e 20 54 | 68 65 20 55 2e 53 2e 20 |tions. T|he U.S. |
|00003f90| 67 6f 76 65 72 6e 6d 65 | 6e 74 20 68 61 73 20 68 |governme|nt has h|
|00003fa0| 69 73 74 6f 72 69 63 61 | 6c 6c 79 20 62 65 65 6e |istorica|lly been|
|00003fb0| 20 72 65 6c 75 63 74 61 | 6e 74 20 74 6f 20 67 72 | relucta|nt to gr|
|00003fc0| 61 6e 74 20 0a 65 78 70 | 6f 72 74 20 6c 69 63 65 |ant .exp|ort lice|
|00003fd0| 6e 73 65 73 20 66 6f 72 | 20 65 6e 63 72 79 70 74 |nses for| encrypt|
|00003fe0| 69 6f 6e 20 70 72 6f 64 | 75 63 74 73 20 73 74 72 |ion prod|ucts str|
|00003ff0| 6f 6e 67 65 72 20 74 68 | 61 6e 20 73 6f 6d 65 20 |onger th|an some |
|00004000| 62 61 73 69 63 20 6c 65 | 76 65 6c 20 0a 28 6e 6f |basic le|vel .(no|
|00004010| 74 20 70 75 62 6c 69 63 | 6c 79 20 73 74 61 74 65 |t public|ly state|
|00004020| 64 29 2e 20 0a 0a 55 6e | 64 65 72 20 63 75 72 72 |d). ..Un|der curr|
|00004030| 65 6e 74 20 72 65 67 75 | 6c 61 74 69 6f 6e 73 2c |ent regu|lations,|
|00004040| 20 61 20 76 65 6e 64 6f | 72 20 73 65 65 6b 69 6e | a vendo|r seekin|
|00004050| 67 20 74 6f 20 65 78 70 | 6f 72 74 20 61 20 70 72 |g to exp|ort a pr|
|00004060| 6f 64 75 63 74 20 75 73 | 69 6e 67 20 0a 63 72 79 |oduct us|ing .cry|
|00004070| 70 74 6f 67 72 61 70 68 | 79 20 66 69 72 73 74 20 |ptograph|y first |
|00004080| 73 75 62 6d 69 74 73 20 | 61 6e 20 72 65 71 75 65 |submits |an reque|
|00004090| 73 74 20 74 6f 20 74 68 | 65 20 53 74 61 74 65 20 |st to th|e State |
|000040a0| 44 65 70 61 72 74 6d 65 | 6e 74 27 73 20 44 65 66 |Departme|nt's Def|
|000040b0| 65 6e 73 65 0a 54 72 61 | 64 65 20 43 6f 6e 74 72 |ense.Tra|de Contr|
|000040c0| 6f 6c 20 6f 66 66 69 63 | 65 2e 20 45 78 70 6f 72 |ol offic|e. Expor|
|000040d0| 74 20 6a 75 72 69 73 64 | 69 63 74 69 6f 6e 20 6d |t jurisd|iction m|
|000040e0| 61 79 20 74 68 65 6e 20 | 62 65 20 70 61 73 73 65 |ay then |be passe|
|000040f0| 64 20 74 6f 20 74 68 65 | 0a 44 65 70 61 72 74 6d |d to the|.Departm|
|00004100| 65 6e 74 20 6f 66 20 43 | 6f 6d 6d 65 72 63 65 2c |ent of C|ommerce,|
|00004110| 20 77 68 6f 73 65 20 65 | 78 70 6f 72 74 20 70 72 | whose e|xport pr|
|00004120| 6f 63 65 64 75 72 65 73 | 20 61 72 65 20 67 65 6e |ocedures| are gen|
|00004130| 65 72 61 6c 6c 79 20 73 | 69 6d 70 6c 65 20 61 6e |erally s|imple an|
|00004140| 64 0a 65 66 66 69 63 69 | 65 6e 74 2e 20 49 66 20 |d.effici|ent. If |
|00004150| 6a 75 72 69 73 64 69 63 | 74 69 6f 6e 20 72 65 6d |jurisdic|tion rem|
|00004160| 61 69 6e 73 20 77 69 74 | 68 20 74 68 65 20 53 74 |ains wit|h the St|
|00004170| 61 74 65 20 44 65 70 61 | 72 74 6d 65 6e 74 2c 20 |ate Depa|rtment, |
|00004180| 66 75 72 74 68 65 72 0a | 72 65 76 69 65 77 2c 20 |further.|review, |
|00004190| 70 65 72 68 61 70 73 20 | 6c 65 6e 67 74 68 79 2c |perhaps |lengthy,|
|000041a0| 20 69 73 20 72 65 71 75 | 69 72 65 64 20 62 65 66 | is requ|ired bef|
|000041b0| 6f 72 65 20 65 78 70 6f | 72 74 20 69 73 20 65 69 |ore expo|rt is ei|
|000041c0| 74 68 65 72 20 61 70 70 | 72 6f 76 65 64 20 6f 72 |ther app|roved or|
|000041d0| 0a 64 65 6e 69 65 64 3b | 20 74 68 65 20 4e 61 74 |.denied;| the Nat|
|000041e0| 69 6f 6e 61 6c 20 53 65 | 63 75 72 69 74 79 20 41 |ional Se|curity A|
|000041f0| 67 65 6e 63 79 20 28 4e | 53 41 2c 20 73 65 65 20 |gency (N|SA, see |
|00004200| 51 75 65 73 74 69 6f 6e | 20 37 2e 33 29 20 6d 61 |Question| 7.3) ma|
|00004210| 79 20 62 65 63 6f 6d 65 | 20 0a 64 69 72 65 63 74 |y become| .direct|
|00004220| 6c 79 20 69 6e 76 6f 6c | 76 65 64 20 61 74 20 74 |ly invol|ved at t|
|00004230| 68 69 73 20 70 6f 69 6e | 74 2e 20 54 68 65 20 64 |his poin|t. The d|
|00004240| 65 74 61 69 6c 73 20 6f | 66 20 74 68 65 20 65 78 |etails o|f the ex|
|00004250| 70 6f 72 74 20 61 70 70 | 72 6f 76 61 6c 20 0a 70 |port app|roval .p|
|00004260| 72 6f 63 65 73 73 20 63 | 68 61 6e 67 65 20 66 72 |rocess c|hange fr|
|00004270| 65 71 75 65 6e 74 6c 79 | 2e 0a 0a 54 68 65 20 4e |equently|...The N|
|00004280| 53 41 20 68 61 73 20 64 | 65 20 66 61 63 74 6f 20 |SA has d|e facto |
|00004290| 63 6f 6e 74 72 6f 6c 20 | 6f 76 65 72 20 65 78 70 |control |over exp|
|000042a0| 6f 72 74 20 6f 66 20 63 | 72 79 70 74 6f 67 72 61 |ort of c|ryptogra|
|000042b0| 70 68 69 63 20 70 72 6f | 64 75 63 74 73 2e 20 54 |phic pro|ducts. T|
|000042c0| 68 65 20 53 74 61 74 65 | 20 0a 44 65 70 61 72 74 |he State| .Depart|
|000042d0| 6d 65 6e 74 20 77 69 6c | 6c 20 6e 6f 74 20 67 72 |ment wil|l not gr|
|000042e0| 61 6e 74 20 61 20 6c 69 | 63 65 6e 73 65 20 77 69 |ant a li|cense wi|
|000042f0| 74 68 6f 75 74 20 4e 53 | 41 20 61 70 70 72 6f 76 |thout NS|A approv|
|00004300| 61 6c 20 61 6e 64 20 72 | 6f 75 74 69 6e 65 6c 79 |al and r|outinely|
|00004310| 20 67 72 61 6e 74 73 20 | 0a 6c 69 63 65 6e 73 65 | grants |.license|
|00004320| 73 20 77 68 65 6e 65 76 | 65 72 20 4e 53 41 20 64 |s whenev|er NSA d|
|00004330| 6f 65 73 20 61 70 70 72 | 6f 76 65 2e 20 54 68 65 |oes appr|ove. The|
|00004340| 72 65 66 6f 72 65 2c 20 | 74 68 65 20 70 6f 6c 69 |refore, |the poli|
|00004350| 63 79 20 64 65 63 69 73 | 69 6f 6e 73 20 6f 76 65 |cy decis|ions ove|
|00004360| 72 20 0a 65 78 70 6f 72 | 74 69 6e 67 20 63 72 79 |r .expor|ting cry|
|00004370| 70 74 6f 67 72 61 70 68 | 79 20 75 6c 74 69 6d 61 |ptograph|y ultima|
|00004380| 74 65 6c 79 20 72 65 73 | 74 20 77 69 74 68 20 74 |tely res|t with t|
|00004390| 68 65 20 4e 53 41 2e 0a | 0a 49 74 20 69 73 20 74 |he NSA..|.It is t|
|000043a0| 68 65 20 73 74 61 74 65 | 64 20 70 6f 6c 69 63 79 |he state|d policy|
|000043b0| 20 6f 66 20 74 68 65 20 | 4e 53 41 20 6e 6f 74 20 | of the |NSA not |
|000043c0| 74 6f 20 72 65 73 74 72 | 69 63 74 20 65 78 70 6f |to restr|ict expo|
|000043d0| 72 74 20 6f 66 20 63 72 | 79 70 74 6f 67 72 61 70 |rt of cr|yptograp|
|000043e0| 68 79 0a 66 6f 72 20 61 | 75 74 68 65 6e 74 69 63 |hy.for a|uthentic|
|000043f0| 61 74 69 6f 6e 3b 20 69 | 74 20 69 73 20 6f 6e 6c |ation; i|t is onl|
|00004400| 79 20 63 6f 6e 63 65 72 | 6e 65 64 20 77 69 74 68 |y concer|ned with|
|00004410| 20 74 68 65 20 75 73 65 | 20 6f 66 20 63 72 79 70 | the use| of cryp|
|00004420| 74 6f 67 72 61 70 68 79 | 20 66 6f 72 20 0a 70 72 |tography| for .pr|
|00004430| 69 76 61 63 79 2e 20 41 | 20 76 65 6e 64 6f 72 20 |ivacy. A| vendor |
|00004440| 73 65 65 6b 69 6e 67 20 | 74 6f 20 65 78 70 6f 72 |seeking |to expor|
|00004450| 74 20 61 20 70 72 6f 64 | 75 63 74 20 66 6f 72 20 |t a prod|uct for |
|00004460| 61 75 74 68 65 6e 74 69 | 63 61 74 69 6f 6e 20 6f |authenti|cation o|
|00004470| 6e 6c 79 20 77 69 6c 6c | 20 0a 62 65 20 67 72 61 |nly will| .be gra|
|00004480| 6e 74 65 64 20 61 6e 20 | 65 78 70 6f 72 74 20 6c |nted an |export l|
|00004490| 69 63 65 6e 73 65 20 61 | 73 20 6c 6f 6e 67 20 61 |icense a|s long a|
|000044a0| 73 20 69 74 20 63 61 6e | 20 64 65 6d 6f 6e 73 74 |s it can| demonst|
|000044b0| 72 61 74 65 20 74 68 61 | 74 20 74 68 65 20 70 72 |rate tha|t the pr|
|000044c0| 6f 64 75 63 74 20 0a 63 | 61 6e 6e 6f 74 20 62 65 |oduct .c|annot be|
|000044d0| 20 65 61 73 69 6c 79 20 | 6d 6f 64 69 66 69 65 64 | easily |modified|
|000044e0| 20 66 6f 72 20 65 6e 63 | 72 79 70 74 69 6f 6e 3b | for enc|ryption;|
|000044f0| 20 74 68 69 73 20 69 73 | 20 74 72 75 65 20 65 76 | this is| true ev|
|00004500| 65 6e 20 66 6f 72 20 76 | 65 72 79 20 73 74 72 6f |en for v|ery stro|
|00004510| 6e 67 20 0a 73 79 73 74 | 65 6d 73 2c 20 73 75 63 |ng .syst|ems, suc|
|00004520| 68 20 61 73 20 52 53 41 | 20 77 69 74 68 20 6c 61 |h as RSA| with la|
|00004530| 72 67 65 20 6b 65 79 20 | 73 69 7a 65 73 2e 20 46 |rge key |sizes. F|
|00004540| 75 72 74 68 65 72 6d 6f | 72 65 2c 20 74 68 65 20 |urthermo|re, the |
|00004550| 62 75 72 65 61 75 63 72 | 61 74 69 63 20 0a 70 72 |bureaucr|atic .pr|
|00004560| 6f 63 65 64 75 72 65 73 | 20 61 72 65 20 73 69 6d |ocedures| are sim|
|00004570| 70 6c 65 72 20 66 6f 72 | 20 61 75 74 68 65 6e 74 |pler for| authent|
|00004580| 69 63 61 74 69 6f 6e 20 | 70 72 6f 64 75 63 74 73 |ication |products|
|00004590| 20 74 68 61 6e 20 66 6f | 72 20 70 72 69 76 61 63 | than fo|r privac|
|000045a0| 79 20 70 72 6f 64 75 63 | 74 73 2e 20 0a 41 6e 20 |y produc|ts. .An |
|000045b0| 61 75 74 68 65 6e 74 69 | 63 61 74 69 6f 6e 20 70 |authenti|cation p|
|000045c0| 72 6f 64 75 63 74 20 6e | 65 65 64 73 20 4e 53 41 |roduct n|eeds NSA|
|000045d0| 20 61 6e 64 20 53 74 61 | 74 65 20 44 65 70 74 2e | and Sta|te Dept.|
|000045e0| 20 61 70 70 72 6f 76 61 | 6c 20 6f 6e 6c 79 20 6f | approva|l only o|
|000045f0| 6e 63 65 2c 20 0a 77 68 | 65 72 65 61 73 20 61 6e |nce, .wh|ereas an|
|00004600| 20 65 6e 63 72 79 70 74 | 69 6f 6e 20 70 72 6f 64 | encrypt|ion prod|
|00004610| 75 63 74 20 6d 61 79 20 | 6e 65 65 64 20 61 70 70 |uct may |need app|
|00004620| 72 6f 76 61 6c 20 66 6f | 72 20 65 76 65 72 79 20 |roval fo|r every |
|00004630| 73 61 6c 65 20 6f 72 20 | 65 76 65 72 79 20 0a 70 |sale or |every .p|
|00004640| 72 6f 64 75 63 74 20 72 | 65 76 69 73 69 6f 6e 2e |roduct r|evision.|
|00004650| 0a 0a 45 78 70 6f 72 74 | 20 70 6f 6c 69 63 79 20 |..Export| policy |
|00004660| 69 73 20 63 75 72 72 65 | 6e 74 6c 79 20 61 20 6d |is curre|ntly a m|
|00004670| 61 74 74 65 72 20 6f 66 | 20 67 72 65 61 74 20 63 |atter of| great c|
|00004680| 6f 6e 74 72 6f 76 65 72 | 73 79 2c 20 61 73 20 6d |ontrover|sy, as m|
|00004690| 61 6e 79 20 73 6f 66 74 | 77 61 72 65 0a 61 6e 64 |any soft|ware.and|
|000046a0| 20 68 61 72 64 77 61 72 | 65 20 76 65 6e 64 6f 72 | hardwar|e vendor|
|000046b0| 73 20 63 6f 6e 73 69 64 | 65 72 20 63 75 72 72 65 |s consid|er curre|
|000046c0| 6e 74 20 65 78 70 6f 72 | 74 20 72 65 67 75 6c 61 |nt expor|t regula|
|000046d0| 74 69 6f 6e 73 20 6f 76 | 65 72 6c 79 20 72 65 73 |tions ov|erly res|
|000046e0| 74 72 69 63 74 69 76 65 | 20 0a 61 6e 64 20 62 75 |trictive| .and bu|
|000046f0| 72 64 65 6e 73 6f 6d 65 | 2e 20 54 68 65 20 53 6f |rdensome|. The So|
|00004700| 66 74 77 61 72 65 20 50 | 75 62 6c 69 73 68 65 72 |ftware P|ublisher|
|00004710| 73 20 41 73 73 6f 63 69 | 61 74 69 6f 6e 20 28 53 |s Associ|ation (S|
|00004720| 50 41 29 2c 20 61 20 73 | 6f 66 74 77 61 72 65 20 |PA), a s|oftware |
|00004730| 0a 69 6e 64 75 73 74 72 | 79 20 67 72 6f 75 70 2c |.industr|y group,|
|00004740| 20 68 61 73 20 72 65 63 | 65 6e 74 6c 79 20 62 65 | has rec|ently be|
|00004750| 65 6e 20 6e 65 67 6f 74 | 69 61 74 69 6e 67 20 77 |en negot|iating w|
|00004760| 69 74 68 20 74 68 65 20 | 67 6f 76 65 72 6e 6d 65 |ith the |governme|
|00004770| 6e 74 20 69 6e 20 6f 72 | 64 65 72 20 0a 74 6f 20 |nt in or|der .to |
|00004780| 67 65 74 20 65 78 70 6f | 72 74 20 6c 69 63 65 6e |get expo|rt licen|
|00004790| 73 65 20 72 65 73 74 72 | 69 63 74 69 6f 6e 73 20 |se restr|ictions |
|000047a0| 65 61 73 65 64 3b 20 6f | 6e 65 20 61 67 72 65 65 |eased; o|ne agree|
|000047b0| 6d 65 6e 74 20 77 61 73 | 20 72 65 61 63 68 65 64 |ment was| reached|
|000047c0| 20 74 68 61 74 20 0a 61 | 6c 6c 6f 77 73 20 73 69 | that .a|llows si|
|000047d0| 6d 70 6c 69 66 69 65 64 | 20 70 72 6f 63 65 64 75 |mplified| procedu|
|000047e0| 72 65 73 20 66 6f 72 20 | 65 78 70 6f 72 74 20 6f |res for |export o|
|000047f0| 66 20 74 77 6f 20 62 75 | 6c 6b 20 65 6e 63 72 79 |f two bu|lk encry|
|00004800| 70 74 69 6f 6e 20 63 69 | 70 68 65 72 73 2c 20 52 |ption ci|phers, R|
|00004810| 43 32 20 0a 61 6e 64 20 | 52 43 34 20 28 73 65 65 |C2 .and |RC4 (see|
|00004820| 20 51 75 65 73 74 69 6f | 6e 20 38 2e 36 29 2c 20 | Questio|n 8.6), |
|00004830| 77 68 65 6e 20 74 68 65 | 20 6b 65 79 20 73 69 7a |when the| key siz|
|00004840| 65 20 69 73 20 6c 69 6d | 69 74 65 64 2e 20 41 6c |e is lim|ited. Al|
|00004850| 73 6f 2c 20 65 78 70 6f | 72 74 20 0a 70 6f 6c 69 |so, expo|rt .poli|
|00004860| 63 79 20 69 73 20 6c 65 | 73 73 20 72 65 73 74 72 |cy is le|ss restr|
|00004870| 69 63 74 69 76 65 20 66 | 6f 72 20 66 6f 72 65 69 |ictive f|or forei|
|00004880| 67 6e 20 73 75 62 73 69 | 64 69 61 72 69 65 73 20 |gn subsi|diaries |
|00004890| 61 6e 64 20 6f 76 65 72 | 73 65 61 73 20 6f 66 66 |and over|seas off|
|000048a0| 69 63 65 73 20 6f 66 20 | 0a 55 2e 53 2e 20 63 6f |ices of |.U.S. co|
|000048b0| 6d 70 61 6e 69 65 73 2e | 0a 0a 49 6e 20 4d 61 72 |mpanies.|..In Mar|
|000048c0| 63 68 20 31 39 39 32 2c | 20 74 68 65 20 43 6f 6d |ch 1992,| the Com|
|000048d0| 70 75 74 65 72 20 53 65 | 63 75 72 69 74 79 20 61 |puter Se|curity a|
|000048e0| 6e 64 20 50 72 69 76 61 | 63 79 20 41 64 76 69 73 |nd Priva|cy Advis|
|000048f0| 6f 72 79 20 42 6f 61 72 | 64 20 76 6f 74 65 64 20 |ory Boar|d voted |
|00004900| 0a 75 6e 61 6e 69 6d 6f | 75 73 6c 79 20 74 6f 20 |.unanimo|usly to |
|00004910| 72 65 63 6f 6d 6d 65 6e | 64 20 61 20 6e 61 74 69 |recommen|d a nati|
|00004920| 6f 6e 61 6c 20 72 65 76 | 69 65 77 20 6f 66 20 63 |onal rev|iew of c|
|00004930| 72 79 70 74 6f 67 72 61 | 70 68 79 20 70 6f 6c 69 |ryptogra|phy poli|
|00004940| 63 79 2c 20 0a 69 6e 63 | 6c 75 64 69 6e 67 20 65 |cy, .inc|luding e|
|00004950| 78 70 6f 72 74 20 70 6f | 6c 69 63 79 2e 20 54 68 |xport po|licy. Th|
|00004960| 65 20 42 6f 61 72 64 20 | 69 73 20 61 6e 20 6f 66 |e Board |is an of|
|00004970| 66 69 63 69 61 6c 20 61 | 64 76 69 73 6f 72 79 20 |ficial a|dvisory |
|00004980| 62 6f 61 72 64 20 74 6f | 20 4e 49 53 54 20 0a 28 |board to| NIST .(|
|00004990| 73 65 65 20 51 75 65 73 | 74 69 6f 6e 20 37 2e 31 |see Ques|tion 7.1|
|000049a0| 29 20 77 68 6f 73 65 20 | 6d 65 6d 62 65 72 73 20 |) whose |members |
|000049b0| 61 72 65 20 64 72 61 77 | 6e 20 66 72 6f 6d 20 62 |are draw|n from b|
|000049c0| 6f 74 68 20 74 68 65 20 | 67 6f 76 65 72 6e 6d 65 |oth the |governme|
|000049d0| 6e 74 20 0a 61 6e 64 20 | 74 68 65 20 70 72 69 76 |nt .and |the priv|
|000049e0| 61 74 65 20 73 65 63 74 | 6f 72 2e 20 54 68 65 20 |ate sect|or. The |
|000049f0| 42 6f 61 72 64 20 73 74 | 61 74 65 64 20 74 68 61 |Board st|ated tha|
|00004a00| 74 20 61 20 70 75 62 6c | 69 63 20 64 65 62 61 74 |t a publ|ic debat|
|00004a10| 65 20 69 73 20 74 68 65 | 20 6f 6e 6c 79 20 0a 77 |e is the| only .w|
|00004a20| 61 79 20 74 6f 20 72 65 | 61 63 68 20 61 20 63 6f |ay to re|ach a co|
|00004a30| 6e 73 65 6e 73 75 73 20 | 70 6f 6c 69 63 79 20 74 |nsensus |policy t|
|00004a40| 6f 20 62 65 73 74 20 73 | 61 74 69 73 66 79 20 63 |o best s|atisfy c|
|00004a50| 6f 6d 70 65 74 69 6e 67 | 20 69 6e 74 65 72 65 73 |ompeting| interes|
|00004a60| 74 73 3a 20 0a 6e 61 74 | 69 6f 6e 61 6c 20 73 65 |ts: .nat|ional se|
|00004a70| 63 75 72 69 74 79 20 61 | 6e 64 20 6c 61 77 20 65 |curity a|nd law e|
|00004a80| 6e 66 6f 72 63 65 6d 65 | 6e 74 20 61 67 65 6e 63 |nforceme|nt agenc|
|00004a90| 69 65 73 20 6c 69 6b 65 | 20 72 65 73 74 72 69 63 |ies like| restric|
|00004aa0| 74 69 6f 6e 73 20 6f 6e | 20 0a 63 72 79 70 74 6f |tions on| .crypto|
|00004ab0| 67 72 61 70 68 79 2c 20 | 65 73 70 65 63 69 61 6c |graphy, |especial|
|00004ac0| 6c 79 20 66 6f 72 20 65 | 78 70 6f 72 74 2c 20 77 |ly for e|xport, w|
|00004ad0| 68 65 72 65 61 73 20 6f | 74 68 65 72 20 67 6f 76 |hereas o|ther gov|
|00004ae0| 65 72 6e 6d 65 6e 74 20 | 61 67 65 6e 63 69 65 73 |ernment |agencies|
|00004af0| 20 61 6e 64 20 0a 70 72 | 69 76 61 74 65 20 69 6e | and .pr|ivate in|
|00004b00| 64 75 73 74 72 79 20 77 | 61 6e 74 20 67 72 65 61 |dustry w|ant grea|
|00004b10| 74 65 72 20 66 72 65 65 | 64 6f 6d 20 66 6f 72 20 |ter free|dom for |
|00004b20| 75 73 69 6e 67 20 61 6e | 64 20 65 78 70 6f 72 74 |using an|d export|
|00004b30| 69 6e 67 20 63 72 79 70 | 74 6f 67 72 61 70 68 79 |ing cryp|tography|
|00004b40| 2e 20 0a 45 78 70 6f 72 | 74 20 70 6f 6c 69 63 79 |. .Expor|t policy|
|00004b50| 20 68 61 73 20 74 72 61 | 64 69 74 69 6f 6e 61 6c | has tra|ditional|
|00004b60| 6c 79 20 62 65 65 6e 20 | 64 65 63 69 64 65 64 20 |ly been |decided |
|00004b70| 73 6f 6c 65 6c 79 20 62 | 79 20 61 67 65 6e 63 69 |solely b|y agenci|
|00004b80| 65 73 20 63 6f 6e 63 65 | 72 6e 65 64 20 0a 77 69 |es conce|rned .wi|
|00004b90| 74 68 20 6e 61 74 69 6f | 6e 61 6c 20 73 65 63 75 |th natio|nal secu|
|00004ba0| 72 69 74 79 2c 20 77 69 | 74 68 6f 75 74 20 6d 75 |rity, wi|thout mu|
|00004bb0| 63 68 20 69 6e 70 75 74 | 20 66 72 6f 6d 20 74 68 |ch input| from th|
|00004bc0| 6f 73 65 20 77 68 6f 20 | 77 69 73 68 20 74 6f 20 |ose who |wish to |
|00004bd0| 65 6e 63 6f 75 72 61 67 | 65 20 0a 63 6f 6d 6d 65 |encourag|e .comme|
|00004be0| 72 63 65 20 69 6e 20 63 | 72 79 70 74 6f 67 72 61 |rce in c|ryptogra|
|00004bf0| 70 68 79 2e 20 55 2e 53 | 2e 20 65 78 70 6f 72 74 |phy. U.S|. export|
|00004c00| 20 70 6f 6c 69 63 79 20 | 6d 61 79 20 75 6e 64 65 | policy |may unde|
|00004c10| 72 67 6f 20 73 69 67 6e | 69 66 69 63 61 6e 74 20 |rgo sign|ificant |
|00004c20| 63 68 61 6e 67 65 20 0a | 69 6e 20 74 68 65 20 6e |change .|in the n|
|00004c30| 65 78 74 20 66 65 77 20 | 79 65 61 72 73 2e 0a 0a |ext few |years...|
|00004c40| 0a 32 20 52 53 41 0a 0a | 32 2e 31 20 57 68 61 74 |.2 RSA..|2.1 What|
|00004c50| 20 69 73 20 52 53 41 3f | 0a 0a 52 53 41 20 69 73 | is RSA?|..RSA is|
|00004c60| 20 61 20 70 75 62 6c 69 | 63 2d 6b 65 79 20 63 72 | a publi|c-key cr|
|00004c70| 79 70 74 6f 73 79 73 74 | 65 6d 20 66 6f 72 20 62 |yptosyst|em for b|
|00004c80| 6f 74 68 20 65 6e 63 72 | 79 70 74 69 6f 6e 20 61 |oth encr|yption a|
|00004c90| 6e 64 20 61 75 74 68 65 | 6e 74 69 63 61 74 69 6f |nd authe|nticatio|
|00004ca0| 6e 3b 0a 69 74 20 77 61 | 73 20 69 6e 76 65 6e 74 |n;.it wa|s invent|
|00004cb0| 65 64 20 69 6e 20 31 39 | 37 37 20 62 79 20 52 6f |ed in 19|77 by Ro|
|00004cc0| 6e 20 52 69 76 65 73 74 | 2c 20 41 64 69 20 53 68 |n Rivest|, Adi Sh|
|00004cd0| 61 6d 69 72 2c 20 61 6e | 64 20 4c 65 6f 6e 61 72 |amir, an|d Leonar|
|00004ce0| 64 20 41 64 6c 65 6d 61 | 6e 0a 5b 37 34 5d 2e 20 |d Adlema|n.[74]. |
|00004cf0| 49 74 20 77 6f 72 6b 73 | 20 61 73 20 66 6f 6c 6c |It works| as foll|
|00004d00| 6f 77 73 3a 20 74 61 6b | 65 20 74 77 6f 20 6c 61 |ows: tak|e two la|
|00004d10| 72 67 65 20 70 72 69 6d | 65 73 2c 20 70 20 61 6e |rge prim|es, p an|
|00004d20| 64 20 71 2c 20 61 6e 64 | 20 66 69 6e 64 20 74 68 |d q, and| find th|
|00004d30| 65 69 72 20 0a 70 72 6f | 64 75 63 74 20 6e 20 3d |eir .pro|duct n =|
|00004d40| 20 70 71 3b 20 6e 20 69 | 73 20 63 61 6c 6c 65 64 | pq; n i|s called|
|00004d50| 20 74 68 65 20 6d 6f 64 | 75 6c 75 73 2e 20 43 68 | the mod|ulus. Ch|
|00004d60| 6f 6f 73 65 20 61 20 6e | 75 6d 62 65 72 2c 20 65 |oose a n|umber, e|
|00004d70| 2c 20 6c 65 73 73 20 74 | 68 61 6e 20 6e 20 0a 61 |, less t|han n .a|
|00004d80| 6e 64 20 72 65 6c 61 74 | 69 76 65 6c 79 20 70 72 |nd relat|ively pr|
|00004d90| 69 6d 65 20 74 6f 20 28 | 70 2d 31 29 28 71 2d 31 |ime to (|p-1)(q-1|
|00004da0| 29 2c 20 61 6e 64 20 66 | 69 6e 64 20 69 74 73 20 |), and f|ind its |
|00004db0| 69 6e 76 65 72 73 65 2c | 20 64 2c 20 6d 6f 64 20 |inverse,| d, mod |
|00004dc0| 28 70 2d 31 29 28 71 2d | 31 29 2c 0a 77 68 69 63 |(p-1)(q-|1),.whic|
|00004dd0| 68 20 6d 65 61 6e 73 20 | 74 68 61 74 20 65 64 20 |h means |that ed |
|00004de0| 3d 20 31 20 6d 6f 64 20 | 28 70 2d 31 29 28 71 2d |= 1 mod |(p-1)(q-|
|00004df0| 31 29 3b 20 65 20 61 6e | 64 20 64 20 61 72 65 20 |1); e an|d d are |
|00004e00| 63 61 6c 6c 65 64 20 74 | 68 65 20 70 75 62 6c 69 |called t|he publi|
|00004e10| 63 20 61 6e 64 20 0a 70 | 72 69 76 61 74 65 20 65 |c and .p|rivate e|
|00004e20| 78 70 6f 6e 65 6e 74 73 | 2c 20 72 65 73 70 65 63 |xponents|, respec|
|00004e30| 74 69 76 65 6c 79 2e 20 | 54 68 65 20 70 75 62 6c |tively. |The publ|
|00004e40| 69 63 20 6b 65 79 20 69 | 73 20 74 68 65 20 70 61 |ic key i|s the pa|
|00004e50| 69 72 20 28 6e 2c 65 29 | 3b 20 74 68 65 20 0a 70 |ir (n,e)|; the .p|
|00004e60| 72 69 76 61 74 65 20 6b | 65 79 20 69 73 20 64 2e |rivate k|ey is d.|
|00004e70| 20 54 68 65 20 66 61 63 | 74 6f 72 73 20 70 20 61 | The fac|tors p a|
|00004e80| 6e 64 20 71 20 6d 75 73 | 74 20 62 65 20 6b 65 70 |nd q mus|t be kep|
|00004e90| 74 20 73 65 63 72 65 74 | 2c 20 6f 72 20 64 65 73 |t secret|, or des|
|00004ea0| 74 72 6f 79 65 64 2e 20 | 0a 0a 49 74 20 69 73 20 |troyed. |..It is |
|00004eb0| 64 69 66 66 69 63 75 6c | 74 20 28 70 72 65 73 75 |difficul|t (presu|
|00004ec0| 6d 61 62 6c 79 29 20 74 | 6f 20 6f 62 74 61 69 6e |mably) t|o obtain|
|00004ed0| 20 74 68 65 20 70 72 69 | 76 61 74 65 20 6b 65 79 | the pri|vate key|
|00004ee0| 20 64 20 66 72 6f 6d 20 | 74 68 65 20 70 75 62 6c | d from |the publ|
|00004ef0| 69 63 20 0a 6b 65 79 20 | 28 6e 2c 65 29 2e 20 49 |ic .key |(n,e). I|
|00004f00| 66 20 6f 6e 65 20 63 6f | 75 6c 64 20 66 61 63 74 |f one co|uld fact|
|00004f10| 6f 72 20 6e 20 69 6e 74 | 6f 20 70 20 61 6e 64 20 |or n int|o p and |
|00004f20| 71 2c 20 68 6f 77 65 76 | 65 72 2c 20 74 68 65 6e |q, howev|er, then|
|00004f30| 20 6f 6e 65 20 63 6f 75 | 6c 64 20 0a 6f 62 74 61 | one cou|ld .obta|
|00004f40| 69 6e 20 74 68 65 20 70 | 72 69 76 61 74 65 20 6b |in the p|rivate k|
|00004f50| 65 79 20 64 2e 20 54 68 | 75 73 20 74 68 65 20 65 |ey d. Th|us the e|
|00004f60| 6e 74 69 72 65 20 73 65 | 63 75 72 69 74 79 20 6f |ntire se|curity o|
|00004f70| 66 20 52 53 41 20 69 73 | 20 70 72 65 64 69 63 61 |f RSA is| predica|
|00004f80| 74 65 64 20 0a 6f 6e 20 | 74 68 65 20 61 73 73 75 |ted .on |the assu|
|00004f90| 6d 70 74 69 6f 6e 20 74 | 68 61 74 20 66 61 63 74 |mption t|hat fact|
|00004fa0| 6f 72 69 6e 67 20 69 73 | 20 64 69 66 66 69 63 75 |oring is| difficu|
|00004fb0| 6c 74 3b 20 61 6e 20 65 | 61 73 79 20 66 61 63 74 |lt; an e|asy fact|
|00004fc0| 6f 72 69 6e 67 20 6d 65 | 74 68 6f 64 20 0a 77 6f |oring me|thod .wo|
|00004fd0| 75 6c 64 20 60 60 62 72 | 65 61 6b 27 27 20 52 53 |uld ``br|eak'' RS|
|00004fe0| 41 20 28 73 65 65 20 51 | 75 65 73 74 69 6f 6e 73 |A (see Q|uestions|
|00004ff0| 20 32 2e 35 20 61 6e 64 | 20 34 2e 34 29 2e 0a 0a | 2.5 and| 4.4)...|
|00005000| 48 65 72 65 20 69 73 20 | 68 6f 77 20 52 53 41 20 |Here is |how RSA |
|00005010| 63 61 6e 20 62 65 20 75 | 73 65 64 20 66 6f 72 20 |can be u|sed for |
|00005020| 70 72 69 76 61 63 79 20 | 61 6e 64 20 61 75 74 68 |privacy |and auth|
|00005030| 65 6e 74 69 63 61 74 69 | 6f 6e 20 28 69 6e 20 70 |enticati|on (in p|
|00005040| 72 61 63 74 69 63 65 2c | 20 0a 61 63 74 75 61 6c |ractice,| .actual|
|00005050| 20 75 73 65 20 69 73 20 | 73 6c 69 67 68 74 6c 79 | use is |slightly|
|00005060| 20 64 69 66 66 65 72 65 | 6e 74 3b 20 73 65 65 20 | differe|nt; see |
|00005070| 51 75 65 73 74 69 6f 6e | 73 20 32 2e 31 32 20 61 |Question|s 2.12 a|
|00005080| 6e 64 20 32 2e 31 33 29 | 3a 0a 0a 52 53 41 20 70 |nd 2.13)|:..RSA p|
|00005090| 72 69 76 61 63 79 20 28 | 65 6e 63 72 79 70 74 69 |rivacy (|encrypti|
|000050a0| 6f 6e 29 3a 20 73 75 70 | 70 6f 73 65 20 41 6c 69 |on): sup|pose Ali|
|000050b0| 63 65 20 77 61 6e 74 73 | 20 74 6f 20 73 65 6e 64 |ce wants| to send|
|000050c0| 20 61 20 70 72 69 76 61 | 74 65 20 6d 65 73 73 61 | a priva|te messa|
|000050d0| 67 65 2c 20 0a 6d 2c 20 | 74 6f 20 42 6f 62 2e 20 |ge, .m, |to Bob. |
|000050e0| 41 6c 69 63 65 20 63 72 | 65 61 74 65 73 20 74 68 |Alice cr|eates th|
|000050f0| 65 20 63 69 70 68 65 72 | 74 65 78 74 20 63 20 62 |e cipher|text c b|
|00005100| 79 20 65 78 70 6f 6e 65 | 6e 74 69 61 74 69 6e 67 |y expone|ntiating|
|00005110| 3a 20 63 20 3d 20 6d 5e | 65 20 0a 6d 6f 64 20 6e |: c = m^|e .mod n|
|00005120| 2c 20 77 68 65 72 65 20 | 65 20 61 6e 64 20 6e 20 |, where |e and n |
|00005130| 61 72 65 20 42 6f 62 27 | 73 20 70 75 62 6c 69 63 |are Bob'|s public|
|00005140| 20 6b 65 79 2e 20 54 6f | 20 64 65 63 72 79 70 74 | key. To| decrypt|
|00005150| 2c 20 42 6f 62 20 61 6c | 73 6f 20 0a 65 78 70 6f |, Bob al|so .expo|
|00005160| 6e 65 6e 74 69 61 74 65 | 73 3a 20 6d 20 3d 20 63 |nentiate|s: m = c|
|00005170| 5e 64 20 6d 6f 64 20 6e | 2c 20 61 6e 64 20 72 65 |^d mod n|, and re|
|00005180| 63 6f 76 65 72 73 20 74 | 68 65 20 6f 72 69 67 69 |covers t|he origi|
|00005190| 6e 61 6c 20 6d 65 73 73 | 61 67 65 20 6d 3b 0a 74 |nal mess|age m;.t|
|000051a0| 68 65 20 72 65 6c 61 74 | 69 6f 6e 73 68 69 70 20 |he relat|ionship |
|000051b0| 62 65 74 77 65 65 6e 20 | 65 20 61 6e 64 20 64 20 |between |e and d |
|000051c0| 65 6e 73 75 72 65 73 20 | 74 68 61 74 20 42 6f 62 |ensures |that Bob|
|000051d0| 20 63 6f 72 72 65 63 74 | 6c 79 20 72 65 63 6f 76 | correct|ly recov|
|000051e0| 65 72 73 20 6d 2e 0a 53 | 69 6e 63 65 20 6f 6e 6c |ers m..S|ince onl|
|000051f0| 79 20 42 6f 62 20 6b 6e | 6f 77 73 20 64 2c 20 6f |y Bob kn|ows d, o|
|00005200| 6e 6c 79 20 42 6f 62 20 | 63 61 6e 20 64 65 63 72 |nly Bob |can decr|
|00005210| 79 70 74 2e 20 0a 0a 52 | 53 41 20 61 75 74 68 65 |ypt. ..R|SA authe|
|00005220| 6e 74 69 63 61 74 69 6f | 6e 3a 20 73 75 70 70 6f |nticatio|n: suppo|
|00005230| 73 65 20 41 6c 69 63 65 | 20 77 61 6e 74 73 20 74 |se Alice| wants t|
|00005240| 6f 20 73 65 6e 64 20 61 | 20 73 69 67 6e 65 64 20 |o send a| signed |
|00005250| 64 6f 63 75 6d 65 6e 74 | 20 6d 20 74 6f 20 42 6f |document| m to Bo|
|00005260| 62 2e 20 0a 41 6c 69 63 | 65 20 63 72 65 61 74 65 |b. .Alic|e create|
|00005270| 73 20 61 20 64 69 67 69 | 74 61 6c 20 73 69 67 6e |s a digi|tal sign|
|00005280| 61 74 75 72 65 20 73 20 | 62 79 20 65 78 70 6f 6e |ature s |by expon|
|00005290| 65 6e 74 69 61 74 69 6e | 67 3a 20 73 20 3d 20 6d |entiatin|g: s = m|
|000052a0| 5e 64 20 6d 6f 64 20 6e | 2c 20 0a 77 68 65 72 65 |^d mod n|, .where|
|000052b0| 20 64 20 61 6e 64 20 6e | 20 62 65 6c 6f 6e 67 20 | d and n| belong |
|000052c0| 74 6f 20 41 6c 69 63 65 | 27 73 20 6b 65 79 20 70 |to Alice|'s key p|
|000052d0| 61 69 72 2e 20 53 68 65 | 20 73 65 6e 64 73 20 73 |air. She| sends s|
|000052e0| 20 61 6e 64 20 6d 20 74 | 6f 20 42 6f 62 2e 20 0a | and m t|o Bob. .|
|000052f0| 54 6f 20 76 65 72 69 66 | 79 20 74 68 65 20 73 69 |To verif|y the si|
|00005300| 67 6e 61 74 75 72 65 2c | 20 42 6f 62 20 65 78 70 |gnature,| Bob exp|
|00005310| 6f 6e 65 6e 74 69 61 74 | 65 73 20 61 6e 64 20 63 |onentiat|es and c|
|00005320| 68 65 63 6b 73 20 74 68 | 61 74 20 74 68 65 20 6d |hecks th|at the m|
|00005330| 65 73 73 61 67 65 20 6d | 20 0a 69 73 20 72 65 63 |essage m| .is rec|
|00005340| 6f 76 65 72 65 64 3a 20 | 6d 20 3d 20 73 5e 65 20 |overed: |m = s^e |
|00005350| 6d 6f 64 20 6e 2c 20 77 | 68 65 72 65 20 65 20 61 |mod n, w|here e a|
|00005360| 6e 64 20 6e 20 62 65 6c | 6f 6e 67 20 74 6f 20 41 |nd n bel|ong to A|
|00005370| 6c 69 63 65 27 73 20 70 | 75 62 6c 69 63 20 0a 6b |lice's p|ublic .k|
|00005380| 65 79 2e 0a 0a 54 68 75 | 73 20 65 6e 63 72 79 70 |ey...Thu|s encryp|
|00005390| 74 69 6f 6e 20 61 6e 64 | 20 61 75 74 68 65 6e 74 |tion and| authent|
|000053a0| 69 63 61 74 69 6f 6e 20 | 74 61 6b 65 20 70 6c 61 |ication |take pla|
|000053b0| 63 65 20 77 69 74 68 6f | 75 74 20 61 6e 79 20 73 |ce witho|ut any s|
|000053c0| 68 61 72 69 6e 67 20 6f | 66 20 0a 70 72 69 76 61 |haring o|f .priva|
|000053d0| 74 65 20 6b 65 79 73 3a | 20 65 61 63 68 20 70 65 |te keys:| each pe|
|000053e0| 72 73 6f 6e 20 75 73 65 | 73 20 6f 6e 6c 79 20 6f |rson use|s only o|
|000053f0| 74 68 65 72 20 70 65 6f | 70 6c 65 27 73 20 70 75 |ther peo|ple's pu|
|00005400| 62 6c 69 63 20 6b 65 79 | 73 20 61 6e 64 20 68 69 |blic key|s and hi|
|00005410| 73 20 6f 72 20 0a 68 65 | 72 20 6f 77 6e 20 70 72 |s or .he|r own pr|
|00005420| 69 76 61 74 65 20 6b 65 | 79 2e 20 41 6e 79 6f 6e |ivate ke|y. Anyon|
|00005430| 65 20 63 61 6e 20 73 65 | 6e 64 20 61 6e 20 65 6e |e can se|nd an en|
|00005440| 63 72 79 70 74 65 64 20 | 6d 65 73 73 61 67 65 20 |crypted |message |
|00005450| 6f 72 20 76 65 72 69 66 | 79 20 61 20 73 69 67 6e |or verif|y a sign|
|00005460| 65 64 20 0a 6d 65 73 73 | 61 67 65 2c 20 75 73 69 |ed .mess|age, usi|
|00005470| 6e 67 20 6f 6e 6c 79 20 | 70 75 62 6c 69 63 20 6b |ng only |public k|
|00005480| 65 79 73 2c 20 62 75 74 | 20 6f 6e 6c 79 20 73 6f |eys, but| only so|
|00005490| 6d 65 6f 6e 65 20 69 6e | 20 70 6f 73 73 65 73 73 |meone in| possess|
|000054a0| 69 6f 6e 20 6f 66 20 74 | 68 65 20 63 6f 72 72 65 |ion of t|he corre|
|000054b0| 63 74 20 0a 70 72 69 76 | 61 74 65 20 6b 65 79 20 |ct .priv|ate key |
|000054c0| 63 61 6e 20 64 65 63 72 | 79 70 74 20 6f 72 20 73 |can decr|ypt or s|
|000054d0| 69 67 6e 20 61 20 6d 65 | 73 73 61 67 65 2e 20 0a |ign a me|ssage. .|
|000054e0| 0a 0a 32 2e 32 20 57 68 | 79 20 75 73 65 20 52 53 |..2.2 Wh|y use RS|
|000054f0| 41 20 72 61 74 68 65 72 | 20 74 68 61 6e 20 44 45 |A rather| than DE|
|00005500| 53 3f 0a 0a 52 53 41 20 | 69 73 20 6e 6f 74 20 61 |S?..RSA |is not a|
|00005510| 6e 20 61 6c 74 65 72 6e | 61 74 69 76 65 20 6f 72 |n altern|ative or|
|00005520| 20 72 65 70 6c 61 63 65 | 6d 65 6e 74 20 66 6f 72 | replace|ment for|
|00005530| 20 44 45 53 3b 20 72 61 | 74 68 65 72 20 69 74 20 | DES; ra|ther it |
|00005540| 73 75 70 70 6c 65 6d 65 | 6e 74 73 0a 44 45 53 20 |suppleme|nts.DES |
|00005550| 28 6f 72 20 61 6e 79 20 | 6f 74 68 65 72 20 66 61 |(or any |other fa|
|00005560| 73 74 20 62 75 6c 6b 20 | 65 6e 63 72 79 70 74 69 |st bulk |encrypti|
|00005570| 6f 6e 20 63 69 70 68 65 | 72 29 20 61 6e 64 20 69 |on ciphe|r) and i|
|00005580| 73 20 75 73 65 64 20 74 | 6f 67 65 74 68 65 72 20 |s used t|ogether |
|00005590| 77 69 74 68 20 44 45 53 | 20 0a 69 6e 20 61 20 73 |with DES| .in a s|
|000055a0| 65 63 75 72 65 20 63 6f | 6d 6d 75 6e 69 63 61 74 |ecure co|mmunicat|
|000055b0| 69 6f 6e 73 20 65 6e 76 | 69 72 6f 6e 6d 65 6e 74 |ions env|ironment|
|000055c0| 2e 20 28 4e 6f 74 65 3a | 20 66 6f 72 20 61 6e 20 |. (Note:| for an |
|000055d0| 65 78 70 6c 61 6e 61 74 | 69 6f 6e 20 6f 66 20 44 |explanat|ion of D|
|000055e0| 45 53 2c 0a 73 65 65 20 | 51 75 65 73 74 69 6f 6e |ES,.see |Question|
|000055f0| 20 35 2e 31 2e 29 0a 0a | 52 53 41 20 61 6c 6c 6f | 5.1.)..|RSA allo|
|00005600| 77 73 20 74 77 6f 20 69 | 6d 70 6f 72 74 61 6e 74 |ws two i|mportant|
|00005610| 20 66 75 6e 63 74 69 6f | 6e 73 20 6e 6f 74 20 70 | functio|ns not p|
|00005620| 72 6f 76 69 64 65 64 20 | 62 79 20 44 45 53 3a 20 |rovided |by DES: |
|00005630| 73 65 63 75 72 65 20 6b | 65 79 20 65 78 63 68 61 |secure k|ey excha|
|00005640| 6e 67 65 20 0a 77 69 74 | 68 6f 75 74 20 70 72 69 |nge .wit|hout pri|
|00005650| 6f 72 20 65 78 63 68 61 | 6e 67 65 20 6f 66 20 73 |or excha|nge of s|
|00005660| 65 63 72 65 74 73 2c 20 | 61 6e 64 20 64 69 67 69 |ecrets, |and digi|
|00005670| 74 61 6c 20 73 69 67 6e | 61 74 75 72 65 73 2e 20 |tal sign|atures. |
|00005680| 46 6f 72 20 65 6e 63 72 | 79 70 74 69 6e 67 0a 6d |For encr|ypting.m|
|00005690| 65 73 73 61 67 65 73 2c | 20 52 53 41 20 61 6e 64 |essages,| RSA and|
|000056a0| 20 44 45 53 20 61 72 65 | 20 75 73 75 61 6c 6c 79 | DES are| usually|
|000056b0| 20 63 6f 6d 62 69 6e 65 | 64 20 61 73 20 66 6f 6c | combine|d as fol|
|000056c0| 6c 6f 77 73 3a 20 66 69 | 72 73 74 20 74 68 65 20 |lows: fi|rst the |
|000056d0| 6d 65 73 73 61 67 65 20 | 69 73 20 0a 65 6e 63 72 |message |is .encr|
|000056e0| 79 70 74 65 64 20 77 69 | 74 68 20 61 20 72 61 6e |ypted wi|th a ran|
|000056f0| 64 6f 6d 20 44 45 53 20 | 6b 65 79 2c 20 61 6e 64 |dom DES |key, and|
|00005700| 20 74 68 65 6e 2c 20 62 | 65 66 6f 72 65 20 62 65 | then, b|efore be|
|00005710| 69 6e 67 20 73 65 6e 74 | 20 6f 76 65 72 20 61 6e |ing sent| over an|
|00005720| 20 69 6e 73 65 63 75 72 | 65 20 0a 63 6f 6d 6d 75 | insecur|e .commu|
|00005730| 6e 69 63 61 74 69 6f 6e | 73 20 63 68 61 6e 6e 65 |nication|s channe|
|00005740| 6c 2c 20 74 68 65 20 44 | 45 53 20 6b 65 79 20 69 |l, the D|ES key i|
|00005750| 73 20 65 6e 63 72 79 70 | 74 65 64 20 77 69 74 68 |s encryp|ted with|
|00005760| 20 52 53 41 2e 20 54 6f | 67 65 74 68 65 72 2c 20 | RSA. To|gether, |
|00005770| 74 68 65 20 0a 44 45 53 | 2d 65 6e 63 72 79 70 74 |the .DES|-encrypt|
|00005780| 65 64 20 6d 65 73 73 61 | 67 65 20 61 6e 64 20 74 |ed messa|ge and t|
|00005790| 68 65 20 52 53 41 2d 65 | 6e 63 72 79 70 74 65 64 |he RSA-e|ncrypted|
|000057a0| 20 44 45 53 20 6b 65 79 | 20 61 72 65 20 73 65 6e | DES key| are sen|
|000057b0| 74 2e 20 54 68 69 73 20 | 70 72 6f 74 6f 63 6f 6c |t. This |protocol|
|000057c0| 20 0a 69 73 20 6b 6e 6f | 77 6e 20 61 73 20 61 6e | .is kno|wn as an|
|000057d0| 20 52 53 41 20 64 69 67 | 69 74 61 6c 20 65 6e 76 | RSA dig|ital env|
|000057e0| 65 6c 6f 70 65 2e 0a 0a | 4f 6e 65 20 6d 61 79 20 |elope...|One may |
|000057f0| 77 6f 6e 64 65 72 2c 20 | 77 68 79 20 6e 6f 74 20 |wonder, |why not |
|00005800| 6a 75 73 74 20 75 73 65 | 20 52 53 41 20 74 6f 20 |just use| RSA to |
|00005810| 65 6e 63 72 79 70 74 20 | 74 68 65 20 77 68 6f 6c |encrypt |the whol|
|00005820| 65 20 6d 65 73 73 61 67 | 65 20 61 6e 64 20 6e 6f |e messag|e and no|
|00005830| 74 20 75 73 65 20 0a 44 | 45 53 20 61 74 20 61 6c |t use .D|ES at al|
|00005840| 6c 3f 20 41 6c 74 68 6f | 75 67 68 20 74 68 69 73 |l? Altho|ugh this|
|00005850| 20 6d 61 79 20 62 65 20 | 66 69 6e 65 20 66 6f 72 | may be |fine for|
|00005860| 20 73 6d 61 6c 6c 20 6d | 65 73 73 61 67 65 73 2c | small m|essages,|
|00005870| 20 44 45 53 20 28 6f 72 | 20 61 6e 6f 74 68 65 72 | DES (or| another|
|00005880| 20 0a 63 69 70 68 65 72 | 29 20 69 73 20 70 72 65 | .cipher|) is pre|
|00005890| 66 65 72 61 62 6c 65 20 | 66 6f 72 20 6c 61 72 67 |ferable |for larg|
|000058a0| 65 72 20 6d 65 73 73 61 | 67 65 73 20 62 65 63 61 |er messa|ges beca|
|000058b0| 75 73 65 20 69 74 20 69 | 73 20 6d 75 63 68 20 66 |use it i|s much f|
|000058c0| 61 73 74 65 72 20 74 68 | 61 6e 20 52 53 41 0a 28 |aster th|an RSA.(|
|000058d0| 73 65 65 20 51 75 65 73 | 74 69 6f 6e 20 32 2e 33 |see Ques|tion 2.3|
|000058e0| 29 2e 0a 0a 49 6e 20 73 | 6f 6d 65 20 73 69 74 75 |)...In s|ome situ|
|000058f0| 61 74 69 6f 6e 73 2c 20 | 52 53 41 20 69 73 20 6e |ations, |RSA is n|
|00005900| 6f 74 20 6e 65 63 65 73 | 73 61 72 79 20 61 6e 64 |ot neces|sary and|
|00005910| 20 44 45 53 20 61 6c 6f | 6e 65 20 69 73 20 73 75 | DES alo|ne is su|
|00005920| 66 66 69 63 69 65 6e 74 | 2e 20 54 68 69 73 20 0a |fficient|. This .|
|00005930| 69 6e 63 6c 75 64 65 73 | 20 6d 75 6c 74 69 2d 75 |includes| multi-u|
|00005940| 73 65 72 20 65 6e 76 69 | 72 6f 6e 6d 65 6e 74 73 |ser envi|ronments|
|00005950| 20 77 68 65 72 65 20 73 | 65 63 75 72 65 20 44 45 | where s|ecure DE|
|00005960| 53 2d 6b 65 79 20 61 67 | 72 65 65 6d 65 6e 74 20 |S-key ag|reement |
|00005970| 63 61 6e 20 74 61 6b 65 | 20 0a 70 6c 61 63 65 2c |can take| .place,|
|00005980| 20 66 6f 72 20 65 78 61 | 6d 70 6c 65 20 62 79 20 | for exa|mple by |
|00005990| 74 68 65 20 74 77 6f 20 | 70 61 72 74 69 65 73 20 |the two |parties |
|000059a0| 6d 65 65 74 69 6e 67 20 | 69 6e 20 70 72 69 76 61 |meeting |in priva|
|000059b0| 74 65 2e 20 41 6c 73 6f | 2c 20 52 53 41 20 69 73 |te. Also|, RSA is|
|000059c0| 20 0a 75 73 75 61 6c 6c | 79 20 6e 6f 74 20 6e 65 | .usuall|y not ne|
|000059d0| 63 65 73 73 61 72 79 20 | 69 6e 20 61 20 73 69 6e |cessary |in a sin|
|000059e0| 67 6c 65 2d 75 73 65 72 | 20 65 6e 76 69 72 6f 6e |gle-user| environ|
|000059f0| 6d 65 6e 74 3b 20 66 6f | 72 20 65 78 61 6d 70 6c |ment; fo|r exampl|
|00005a00| 65 2c 20 69 66 20 79 6f | 75 20 77 61 6e 74 20 0a |e, if yo|u want .|
|00005a10| 74 6f 20 6b 65 65 70 20 | 79 6f 75 72 20 70 65 72 |to keep |your per|
|00005a20| 73 6f 6e 61 6c 20 66 69 | 6c 65 73 20 65 6e 63 72 |sonal fi|les encr|
|00005a30| 79 70 74 65 64 2c 20 6a | 75 73 74 20 64 6f 20 73 |ypted, j|ust do s|
|00005a40| 6f 20 77 69 74 68 20 44 | 45 53 20 75 73 69 6e 67 |o with D|ES using|
|00005a50| 2c 20 73 61 79 2c 20 79 | 6f 75 72 20 0a 70 65 72 |, say, y|our .per|
|00005a60| 73 6f 6e 61 6c 20 70 61 | 73 73 77 6f 72 64 20 61 |sonal pa|ssword a|
|00005a70| 73 20 74 68 65 20 44 45 | 53 20 6b 65 79 2e 20 52 |s the DE|S key. R|
|00005a80| 53 41 2c 20 61 6e 64 20 | 70 75 62 6c 69 63 2d 6b |SA, and |public-k|
|00005a90| 65 79 20 63 72 79 70 74 | 6f 67 72 61 70 68 79 20 |ey crypt|ography |
|00005aa0| 69 6e 20 67 65 6e 65 72 | 61 6c 2c 0a 69 73 20 62 |in gener|al,.is b|
|00005ab0| 65 73 74 20 73 75 69 74 | 65 64 20 66 6f 72 20 61 |est suit|ed for a|
|00005ac0| 20 6d 75 6c 74 69 2d 75 | 73 65 72 20 65 6e 76 69 | multi-u|ser envi|
|00005ad0| 72 6f 6e 6d 65 6e 74 2e | 20 41 6c 73 6f 2c 20 61 |ronment.| Also, a|
|00005ae0| 6e 79 20 73 79 73 74 65 | 6d 20 69 6e 20 77 68 69 |ny syste|m in whi|
|00005af0| 63 68 20 64 69 67 69 74 | 61 6c 0a 73 69 67 6e 61 |ch digit|al.signa|
|00005b00| 74 75 72 65 73 20 61 72 | 65 20 64 65 73 69 72 65 |tures ar|e desire|
|00005b10| 64 20 6e 65 65 64 73 20 | 52 53 41 20 6f 72 20 73 |d needs |RSA or s|
|00005b20| 6f 6d 65 20 6f 74 68 65 | 72 20 70 75 62 6c 69 63 |ome othe|r public|
|00005b30| 2d 6b 65 79 20 73 79 73 | 74 65 6d 2e 0a 0a 0a 32 |-key sys|tem....2|
|00005b40| 2e 33 20 48 6f 77 20 66 | 61 73 74 20 69 73 20 52 |.3 How f|ast is R|
|00005b50| 53 41 3f 0a 0a 41 6e 20 | 60 60 52 53 41 20 6f 70 |SA?..An |``RSA op|
|00005b60| 65 72 61 74 69 6f 6e 2c | 27 27 20 77 68 65 74 68 |eration,|'' wheth|
|00005b70| 65 72 20 66 6f 72 20 65 | 6e 63 72 79 70 74 69 6e |er for e|ncryptin|
|00005b80| 67 20 6f 72 20 64 65 63 | 72 79 70 74 69 6e 67 2c |g or dec|rypting,|
|00005b90| 20 73 69 67 6e 69 6e 67 | 0a 6f 72 20 76 65 72 69 | signing|.or veri|
|00005ba0| 66 79 69 6e 67 2c 20 69 | 73 20 65 73 73 65 6e 74 |fying, i|s essent|
|00005bb0| 69 61 6c 6c 79 20 61 20 | 6d 6f 64 75 6c 61 72 20 |ially a |modular |
|00005bc0| 65 78 70 6f 6e 65 6e 74 | 69 61 74 69 6f 6e 2c 20 |exponent|iation, |
|00005bd0| 77 68 69 63 68 20 63 61 | 6e 20 62 65 20 0a 70 65 |which ca|n be .pe|
|00005be0| 72 66 6f 72 6d 65 64 20 | 62 79 20 61 20 73 65 72 |rformed |by a ser|
|00005bf0| 69 65 73 20 6f 66 20 6d | 6f 64 75 6c 61 72 20 6d |ies of m|odular m|
|00005c00| 75 6c 74 69 70 6c 69 63 | 61 74 69 6f 6e 73 2e 0a |ultiplic|ations..|
|00005c10| 0a 49 6e 20 70 72 61 63 | 74 69 63 61 6c 20 61 70 |.In prac|tical ap|
|00005c20| 70 6c 69 63 61 74 69 6f | 6e 73 2c 20 69 74 20 69 |plicatio|ns, it i|
|00005c30| 73 20 63 6f 6d 6d 6f 6e | 20 74 6f 20 63 68 6f 6f |s common| to choo|
|00005c40| 73 65 20 61 20 73 6d 61 | 6c 6c 20 70 75 62 6c 69 |se a sma|ll publi|
|00005c50| 63 20 0a 65 78 70 6f 6e | 65 6e 74 20 66 6f 72 20 |c .expon|ent for |
|00005c60| 74 68 65 20 70 75 62 6c | 69 63 20 6b 65 79 3b 20 |the publ|ic key; |
|00005c70| 69 6e 20 66 61 63 74 2c | 20 65 6e 74 69 72 65 20 |in fact,| entire |
|00005c80| 67 72 6f 75 70 73 20 6f | 66 20 75 73 65 72 73 20 |groups o|f users |
|00005c90| 63 61 6e 20 75 73 65 20 | 0a 74 68 65 20 73 61 6d |can use |.the sam|
|00005ca0| 65 20 70 75 62 6c 69 63 | 20 65 78 70 6f 6e 65 6e |e public| exponen|
|00005cb0| 74 2e 20 54 68 69 73 20 | 6d 61 6b 65 73 20 65 6e |t. This |makes en|
|00005cc0| 63 72 79 70 74 69 6f 6e | 20 66 61 73 74 65 72 20 |cryption| faster |
|00005cd0| 74 68 61 6e 20 64 65 63 | 72 79 70 74 69 6f 6e 20 |than dec|ryption |
|00005ce0| 0a 61 6e 64 20 76 65 72 | 69 66 69 63 61 74 69 6f |.and ver|ificatio|
|00005cf0| 6e 20 66 61 73 74 65 72 | 20 74 68 61 6e 20 73 69 |n faster| than si|
|00005d00| 67 6e 69 6e 67 2e 20 41 | 6c 67 6f 72 69 74 68 6d |gning. A|lgorithm|
|00005d10| 69 63 61 6c 6c 79 2c 20 | 70 75 62 6c 69 63 2d 6b |ically, |public-k|
|00005d20| 65 79 20 0a 6f 70 65 72 | 61 74 69 6f 6e 73 20 74 |ey .oper|ations t|
|00005d30| 61 6b 65 20 4f 28 6b 5e | 32 29 20 73 74 65 70 73 |ake O(k^|2) steps|
|00005d40| 2c 20 70 72 69 76 61 74 | 65 20 6b 65 79 20 6f 70 |, privat|e key op|
|00005d50| 65 72 61 74 69 6f 6e 73 | 20 74 61 6b 65 20 4f 28 |erations| take O(|
|00005d60| 6b 5e 33 29 20 0a 73 74 | 65 70 73 2c 20 61 6e 64 |k^3) .st|eps, and|
|00005d70| 20 6b 65 79 20 67 65 6e | 65 72 61 74 69 6f 6e 20 | key gen|eration |
|00005d80| 74 61 6b 65 73 20 4f 28 | 6b 5e 34 29 20 73 74 65 |takes O(|k^4) ste|
|00005d90| 70 73 2c 20 77 68 65 72 | 65 20 6b 20 69 73 20 74 |ps, wher|e k is t|
|00005da0| 68 65 20 6e 75 6d 62 65 | 72 20 6f 66 20 0a 62 69 |he numbe|r of .bi|
|00005db0| 74 73 20 69 6e 20 74 68 | 65 20 6d 6f 64 75 6c 75 |ts in th|e modulu|
|00005dc0| 73 3b 20 4f 2d 6e 6f 74 | 61 74 69 6f 6e 20 72 65 |s; O-not|ation re|
|00005dd0| 66 65 72 73 20 74 6f 20 | 74 68 65 20 61 6e 20 75 |fers to |the an u|
|00005de0| 70 70 65 72 20 62 6f 75 | 6e 64 20 6f 6e 20 74 68 |pper bou|nd on th|
|00005df0| 65 20 0a 61 73 79 6d 70 | 74 6f 74 69 63 20 72 75 |e .asymp|totic ru|
|00005e00| 6e 6e 69 6e 67 20 74 69 | 6d 65 20 6f 66 20 61 6e |nning ti|me of an|
|00005e10| 20 61 6c 67 6f 72 69 74 | 68 6d 20 5b 32 32 5d 2e | algorit|hm [22].|
|00005e20| 0a 0a 54 68 65 72 65 20 | 61 72 65 20 6d 61 6e 79 |..There |are many|
|00005e30| 20 63 6f 6d 6d 65 72 63 | 69 61 6c 6c 79 20 61 76 | commerc|ially av|
|00005e40| 61 69 6c 61 62 6c 65 20 | 68 61 72 64 77 61 72 65 |ailable |hardware|
|00005e50| 20 69 6d 70 6c 65 6d 65 | 6e 74 61 74 69 6f 6e 73 | impleme|ntations|
|00005e60| 20 6f 66 20 52 53 41 2c | 20 0a 61 6e 64 20 74 68 | of RSA,| .and th|
|00005e70| 65 72 65 20 61 72 65 20 | 66 72 65 71 75 65 6e 74 |ere are |frequent|
|00005e80| 20 61 6e 6e 6f 75 6e 63 | 65 6d 65 6e 74 73 20 6f | announc|ements o|
|00005e90| 66 20 6e 65 77 65 72 20 | 61 6e 64 20 66 61 73 74 |f newer |and fast|
|00005ea0| 65 72 20 63 68 69 70 73 | 2e 20 54 68 65 20 0a 66 |er chips|. The .f|
|00005eb0| 61 73 74 65 73 74 20 63 | 75 72 72 65 6e 74 20 52 |astest c|urrent R|
|00005ec0| 53 41 20 63 68 69 70 20 | 5b 37 36 5d 20 68 61 73 |SA chip |[76] has|
|00005ed0| 20 61 20 74 68 72 6f 75 | 67 68 70 75 74 20 67 72 | a throu|ghput gr|
|00005ee0| 65 61 74 65 72 20 74 68 | 61 6e 20 36 30 30 20 4b |eater th|an 600 K|
|00005ef0| 62 69 74 73 20 0a 70 65 | 72 20 73 65 63 6f 6e 64 |bits .pe|r second|
|00005f00| 20 77 69 74 68 20 61 20 | 35 31 32 2d 62 69 74 20 | with a |512-bit |
|00005f10| 6d 6f 64 75 6c 75 73 2c | 20 69 6d 70 6c 79 69 6e |modulus,| implyin|
|00005f20| 67 20 74 68 61 74 20 69 | 74 20 70 65 72 66 6f 72 |g that i|t perfor|
|00005f30| 6d 73 20 6f 76 65 72 20 | 31 30 30 30 20 0a 52 53 |ms over |1000 .RS|
|00005f40| 41 20 70 72 69 76 61 74 | 65 2d 6b 65 79 20 6f 70 |A privat|e-key op|
|00005f50| 65 72 61 74 69 6f 6e 73 | 20 70 65 72 20 73 65 63 |erations| per sec|
|00005f60| 6f 6e 64 2e 20 49 74 20 | 69 73 20 65 78 70 65 63 |ond. It |is expec|
|00005f70| 74 65 64 20 74 68 61 74 | 20 52 53 41 20 73 70 65 |ted that| RSA spe|
|00005f80| 65 64 73 20 0a 77 69 6c | 6c 20 72 65 61 63 68 20 |eds .wil|l reach |
|00005f90| 31 20 4d 62 69 74 2f 73 | 65 63 6f 6e 64 20 77 69 |1 Mbit/s|econd wi|
|00005fa0| 74 68 69 6e 20 61 20 79 | 65 61 72 20 6f 72 20 73 |thin a y|ear or s|
|00005fb0| 6f 2e 0a 0a 42 79 20 63 | 6f 6d 70 61 72 69 73 6f |o...By c|ompariso|
|00005fc0| 6e 2c 20 44 45 53 20 69 | 73 20 6d 75 63 68 20 66 |n, DES i|s much f|
|00005fd0| 61 73 74 65 72 20 74 68 | 61 6e 20 52 53 41 2e 20 |aster th|an RSA. |
|00005fe0| 49 6e 20 73 6f 66 74 77 | 61 72 65 2c 20 44 45 53 |In softw|are, DES|
|00005ff0| 20 69 73 20 67 65 6e 65 | 72 61 6c 6c 79 20 61 74 | is gene|rally at|
|00006000| 20 0a 6c 65 61 73 74 20 | 31 30 30 20 74 69 6d 65 | .least |100 time|
|00006010| 73 20 61 73 20 66 61 73 | 74 20 61 73 20 52 53 41 |s as fas|t as RSA|
|00006020| 2e 20 49 6e 20 68 61 72 | 64 77 61 72 65 2c 20 44 |. In har|dware, D|
|00006030| 45 53 20 69 73 20 62 65 | 74 77 65 65 6e 20 31 2c |ES is be|tween 1,|
|00006040| 30 30 30 20 61 6e 64 20 | 31 30 2c 30 30 30 0a 74 |000 and |10,000.t|
|00006050| 69 6d 65 73 20 61 73 20 | 66 61 73 74 2c 20 64 65 |imes as |fast, de|
|00006060| 70 65 6e 64 69 6e 67 20 | 6f 6e 20 74 68 65 20 69 |pending |on the i|
|00006070| 6d 70 6c 65 6d 65 6e 74 | 61 74 69 6f 6e 73 2e 20 |mplement|ations. |
|00006080| 52 53 41 20 77 69 6c 6c | 20 70 72 6f 62 61 62 6c |RSA will| probabl|
|00006090| 79 20 6e 61 72 72 6f 77 | 20 0a 74 68 65 20 67 61 |y narrow| .the ga|
|000060a0| 70 20 61 20 62 69 74 20 | 69 6e 20 63 6f 6d 69 6e |p a bit |in comin|
|000060b0| 67 20 79 65 61 72 73 2c | 20 61 73 20 69 74 20 66 |g years,| as it f|
|000060c0| 69 6e 64 73 20 67 72 6f | 77 69 6e 67 20 63 6f 6d |inds gro|wing com|
|000060d0| 6d 65 72 63 69 61 6c 20 | 6d 61 72 6b 65 74 73 2c |mercial |markets,|
|000060e0| 20 62 75 74 20 0a 77 69 | 6c 6c 20 6e 65 76 65 72 | but .wi|ll never|
|000060f0| 20 6d 61 74 63 68 20 74 | 68 65 20 70 65 72 66 6f | match t|he perfo|
|00006100| 72 6d 61 6e 63 65 20 6f | 66 20 44 45 53 2e 0a 0a |rmance o|f DES...|
|00006110| 0a 32 2e 34 20 48 6f 77 | 20 6d 75 63 68 20 65 78 |.2.4 How| much ex|
|00006120| 74 72 61 20 6d 65 73 73 | 61 67 65 20 6c 65 6e 67 |tra mess|age leng|
|00006130| 74 68 20 69 73 20 63 61 | 75 73 65 64 20 62 79 20 |th is ca|used by |
|00006140| 75 73 69 6e 67 20 52 53 | 41 3f 0a 0a 4f 6e 6c 79 |using RS|A?..Only|
|00006150| 20 61 20 76 65 72 79 20 | 73 6d 61 6c 6c 20 61 6d | a very |small am|
|00006160| 6f 75 6e 74 20 6f 66 20 | 64 61 74 61 20 65 78 70 |ount of |data exp|
|00006170| 61 6e 73 69 6f 6e 20 69 | 73 20 69 6e 76 6f 6c 76 |ansion i|s involv|
|00006180| 65 64 20 77 68 65 6e 20 | 75 73 69 6e 67 20 52 53 |ed when |using RS|
|00006190| 41 2e 20 46 6f 72 20 0a | 65 6e 63 72 79 70 74 69 |A. For .|encrypti|
|000061a0| 6f 6e 2c 20 61 20 6d 65 | 73 73 61 67 65 20 6d 61 |on, a me|ssage ma|
|000061b0| 79 20 62 65 20 70 61 64 | 64 65 64 20 74 6f 20 61 |y be pad|ded to a|
|000061c0| 20 6c 65 6e 67 74 68 20 | 74 68 61 74 20 69 73 20 | length |that is |
|000061d0| 61 20 6d 75 6c 74 69 70 | 6c 65 20 6f 66 20 74 68 |a multip|le of th|
|000061e0| 65 20 0a 62 6c 6f 63 6b | 20 6c 65 6e 67 74 68 2c |e .block| length,|
|000061f0| 20 75 73 75 61 6c 6c 79 | 20 36 34 20 62 69 74 73 | usually| 64 bits|
|00006200| 2c 20 73 69 6e 63 65 20 | 52 53 41 20 69 73 20 75 |, since |RSA is u|
|00006210| 73 75 61 6c 6c 79 20 63 | 6f 6d 62 69 6e 65 64 20 |sually c|ombined |
|00006220| 77 69 74 68 20 61 20 0a | 73 65 63 72 65 74 2d 6b |with a .|secret-k|
|00006230| 65 79 20 62 6c 6f 63 6b | 20 63 69 70 68 65 72 20 |ey block| cipher |
|00006240| 73 75 63 68 20 61 73 20 | 44 45 53 20 28 73 65 65 |such as |DES (see|
|00006250| 20 51 75 65 73 74 69 6f | 6e 20 32 2e 31 32 29 2e | Questio|n 2.12).|
|00006260| 20 45 6e 63 72 79 70 74 | 69 6e 67 20 0a 74 68 65 | Encrypt|ing .the|
|00006270| 20 44 45 53 20 6b 65 79 | 20 74 61 6b 65 73 20 61 | DES key| takes a|
|00006280| 73 20 6d 61 6e 79 20 61 | 64 64 69 74 69 6f 6e 61 |s many a|dditiona|
|00006290| 6c 20 62 69 74 73 20 61 | 73 20 74 68 65 20 73 69 |l bits a|s the si|
|000062a0| 7a 65 20 6f 66 20 74 68 | 65 20 52 53 41 20 6d 6f |ze of th|e RSA mo|
|000062b0| 64 75 6c 75 73 2e 0a 0a | 0a 46 6f 72 20 61 75 74 |dulus...|.For aut|
|000062c0| 68 65 6e 74 69 63 61 74 | 69 6f 6e 2c 20 61 6e 20 |henticat|ion, an |
|000062d0| 52 53 41 20 64 69 67 69 | 74 61 6c 20 73 69 67 6e |RSA digi|tal sign|
|000062e0| 61 74 75 72 65 20 69 73 | 20 61 70 70 65 6e 64 65 |ature is| appende|
|000062f0| 64 20 74 6f 20 61 20 64 | 6f 63 75 6d 65 6e 74 2e |d to a d|ocument.|
|00006300| 0a 41 6e 20 52 53 41 20 | 73 69 67 6e 61 74 75 72 |.An RSA |signatur|
|00006310| 65 2c 20 69 6e 63 6c 75 | 64 69 6e 67 20 69 6e 66 |e, inclu|ding inf|
|00006320| 6f 72 6d 61 74 69 6f 6e | 20 73 75 63 68 20 61 73 |ormation| such as|
|00006330| 20 74 68 65 20 6e 61 6d | 65 20 6f 66 20 74 68 65 | the nam|e of the|
|00006340| 20 73 69 67 6e 65 72 2c | 20 69 73 20 0a 74 79 70 | signer,| is .typ|
|00006350| 69 63 61 6c 6c 79 20 61 | 20 66 65 77 20 68 75 6e |ically a| few hun|
|00006360| 64 72 65 64 20 62 79 74 | 65 73 20 6c 6f 6e 67 2e |dred byt|es long.|
|00006370| 20 4f 6e 65 20 6f 72 20 | 6d 6f 72 65 20 63 65 72 | One or |more cer|
|00006380| 74 69 66 69 63 61 74 65 | 73 20 28 73 65 65 20 51 |tificate|s (see Q|
|00006390| 75 65 73 74 69 6f 6e 20 | 0a 33 2e 35 29 20 6d 61 |uestion |.3.5) ma|
|000063a0| 79 20 62 65 20 69 6e 63 | 6c 75 64 65 64 20 61 73 |y be inc|luded as|
|000063b0| 20 77 65 6c 6c 3b 20 63 | 65 72 74 69 66 69 63 61 | well; c|ertifica|
|000063c0| 74 65 73 20 63 61 6e 20 | 62 65 20 75 73 65 64 20 |tes can |be used |
|000063d0| 69 6e 20 63 6f 6e 6a 75 | 6e 63 74 69 6f 6e 0a 77 |in conju|nction.w|
|000063e0| 69 74 68 20 61 6e 79 20 | 64 69 67 69 74 61 6c 20 |ith any |digital |
|000063f0| 73 69 67 6e 61 74 75 72 | 65 20 6d 65 74 68 6f 64 |signatur|e method|
+--------+-------------------------+-------------------------+--------+--------+
Only 25.0 KB of data is shown above.
