{"title":"On pseudoprime RSA moduli","authors":"Florian Luca, Dimbinaina Ralaivaosaona, Jorge Jiménez Urroz","doi":"10.1007/s13370-025-01338-1","DOIUrl":null,"url":null,"abstract":"<div><p>In 2010, Dieulefait and Urroz considered the notion of malleability of an RSA modulus. They proved that, given some information on the factors of numbers coprime to <i>n</i>, where <i>n</i> is an RSA modulus, there exists an algorithm that finds a proper factor of <i>n</i> in time <span>\\(O(\\log n)\\)</span>. As a particular case of their algorithm, just some knowledge of the factors of <span>\\(2^n\\pm 1\\)</span> is enough to factor <i>n</i> except possibly when <i>n</i> is a base-2 pseudoprime. They went on to prove that the set of these exceptional RSA moduli with prime factors between <i>z</i> and 2<i>z</i> has size at most <span>\\(O(z^2/(\\log z)^3)\\)</span>. In the present paper, we improve this bound significantly and show that the counting function for these RSA moduli is bounded above by <span>\\(O(z^{8/5}/(\\log z)^2)\\)</span>. In addition, as a related problem, we prove an upper bound of <span>\\(O(z^{4/5}/(\\log z)^{2/5})\\)</span> for the number of base-2 pseudoprimes up to <i>z</i> that are products of two primes.</p></div>","PeriodicalId":46107,"journal":{"name":"Afrika Matematika","volume":"36 3","pages":""},"PeriodicalIF":0.7000,"publicationDate":"2025-06-10","publicationTypes":"Journal Article","fieldsOfStudy":null,"isOpenAccess":false,"openAccessPdf":"https://link.springer.com/content/pdf/10.1007/s13370-025-01338-1.pdf","citationCount":"0","resultStr":null,"platform":"Semanticscholar","paperid":null,"PeriodicalName":"Afrika Matematika","FirstCategoryId":"1085","ListUrlMain":"https://link.springer.com/article/10.1007/s13370-025-01338-1","RegionNum":0,"RegionCategory":null,"ArticlePicture":[],"TitleCN":null,"AbstractTextCN":null,"PMCID":null,"EPubDate":"","PubModel":"","JCR":"Q2","JCRName":"MATHEMATICS","Score":null,"Total":0}
引用次数: 0
Abstract
In 2010, Dieulefait and Urroz considered the notion of malleability of an RSA modulus. They proved that, given some information on the factors of numbers coprime to n, where n is an RSA modulus, there exists an algorithm that finds a proper factor of n in time \(O(\log n)\). As a particular case of their algorithm, just some knowledge of the factors of \(2^n\pm 1\) is enough to factor n except possibly when n is a base-2 pseudoprime. They went on to prove that the set of these exceptional RSA moduli with prime factors between z and 2z has size at most \(O(z^2/(\log z)^3)\). In the present paper, we improve this bound significantly and show that the counting function for these RSA moduli is bounded above by \(O(z^{8/5}/(\log z)^2)\). In addition, as a related problem, we prove an upper bound of \(O(z^{4/5}/(\log z)^{2/5})\) for the number of base-2 pseudoprimes up to z that are products of two primes.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
