Hiya,
I guess the recent publications about common factors [1,2]
are something else that this group might want to consider.
I wonder if an rsa modulus checker protocol might help or
something. Not sure if that's something that could be run
quickly enough though, other than for the straight
duplicates or dumbass things with small factors you should
spot yourself. Anyone know?
Or maybe you could register your public key and get a
nonce, then come back periodically to see if any problems
have been detected for your key.
And yes, better prngs are needed, but there'll probably
always be bad ones out there.
S.
[1] http://eprint.iacr.org/2012/064
[2]
http://it.slashdot.org/story/12/02/15/1540212/factorable-keys-twice-as-many-but-half-as-bad
_______________________________________________
therightkey mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/therightkey
