2

As far as I understand ECDSA keys are smaller than RSA because all of the value of the ECDSA (up to a high number) are valid private keys.

Is there any method of compressing RSA keys, based on some form of description of the key?

e.g. This is the $M^{\text{th}}$ possible value of $n$, given that $e = E$ and $A \leq n < B$.

Raoul722
  • 2,836
  • 2
  • 20
  • 39
fadedbee
  • 916
  • 1
  • 10
  • 29
  • 2
    Are you asking about compressing the public key or the private key? The latter can be compressed to a small seed used in a random number generator. – otus May 04 '16 at 09:14
  • 3
    In addition of otus' comment: for compression of an RSA public key, see this. Compression is not the same as enumeration. – fgrieu May 04 '16 at 11:03
  • @otus Both, ideally. – fadedbee May 04 '16 at 12:25
  • 2
    The easiest trick for creating a small private key is simply to regenerate it with a well seeded PRNG. That way you don't need to compress the key itself. For the public key you'd probably require to compress the modulus. That's not easily done. You might however get away with creating a unique identifier over the modulus (i.e. hashing the value). If you then trust that unique identifier you can ask another party for the modulus when required. – Maarten Bodewes May 04 '16 at 12:47

0 Answers0