And why do we have to use big numbers for RSA? Is it because of some RSA restrictions like p=q=3 mod 4?
Asked
Active
Viewed 138 times
0
-
3Hint: study the runtime of the best known algorithm against RSA, GNFS; and of the best known algorithm against standard ECC crypto, Pollard's rho. – fgrieu Jan 04 '21 at 16:15
-
Dupe https://crypto.stackexchange.com/questions/3958/besides-key-and-ciphertext-sizes-what-are-other-advantages-of-elliptic-curve- https://crypto.stackexchange.com/questions/25577/ecc-vs-rsa-how-to-compare-key-sizes https://crypto.stackexchange.com/questions/31439/how-do-i-get-the-equivalent-strength-of-an-ecc-key and cross https://security.stackexchange.com/questions/59190/why-do-you-need-a-4096-bit-dsa-key-when-aes-is-only-256-bits – dave_thompson_085 Jan 05 '21 at 02:06
1 Answers
0
There are some more efficient algorithms (still super-polynomial time, not enough to actually break them) to solve discrete logarithm problems and integer factorization problems, hence keys based on these problems are longer than EC based cryptographic keys which provide equivalent security, in which no such algorithms significantly better than birthday attack are known.
Manish Adhikari
- 601
- 5
- 12
-
I know there are algorithms which require more time to solve these problems than other algorithms but my question is, what makes these algorithms take less time than the other? What makes RSA more vulnerable to attacks than EC? – das42r4 Jan 11 '21 at 19:24