摘要
2010年,Dieulefait和Urroz考虑了RSA模的延展性的概念。他们证明了,给定一些关于数的素数因子的信息,其中n是RSA模数,存在一种算法可以在时间上找到n的合适因子\(O(\log n)\)。作为他们算法的一个特例,只要知道\(2^n\pm 1\)的因子就足以分解n除非n是一个以2为基底的伪素数。他们继续证明这些素数因子在z和2z之间的特殊RSA模的集合的大小最多为\(O(z^2/(\log z)^3)\)。在本文中,我们显著地改进了这个界,并证明了这些RSA模的计数函数有\(O(z^{8/5}/(\log z)^2)\)的上界。此外,作为一个相关问题,我们证明了两个素数乘积的以2为基数的伪素数的个数的上界\(O(z^{4/5}/(\log z)^{2/5})\)。In 2010, Dieulefait and Urroz considered the notion of malleability of an RSA modulus. They proved that, given some information on the factors of numbers coprime to n, where n is an RSA modulus, there exists an algorithm that finds a proper factor of n in time \(O(\log n)\). As a particular case of their algorithm, just some knowledge of the factors of \(2^n\pm 1\) is enough to factor n except possibly when n is a base-2 pseudoprime. They went on to prove that the set of these exceptional RSA moduli with prime factors between z and 2z has size at most \(O(z^2/(\log z)^3)\). In the present paper, we improve this bound significantly and show that the counting function for these RSA moduli is bounded above by \(O(z^{8/5}/(\log z)^2)\). In addition, as a related problem, we prove an upper bound of \(O(z^{4/5}/(\log z)^{2/5})\) for the number of base-2 pseudoprimes up to z that are products of two primes.
求助内容:
应助结果提醒方式:
京公网安备 11010802042870号
