Hints from Mocana Engineering

By JDavis | 3/23/09 4:37 PM

I see you’re using only 2 rounds of Rabin-Miller prime test for 1024 bit primes. Is that sufficient? We are reviewing an alternative product that uses 8 rounds.

According to ANSI X9.80, only two rounds are required if followed by a Lucas prime test to find out if a number is a strong prime. Without a Lucas test, all prime candidates should be tested against 50 rounds of Rabin-Miller prime test to be absolutely certain the number is a strong prime. Therefore, the alternative product that’s using 8 rounds is most likely not using enough rounds for strong prime testing. And if you’re using pseudo primes your device’s security could be compromised through automated attacks on your public key.

Read More >
COMMENTS