Add to collection(s) Add to saved
  1. Arts & Humanities
  2. Communications

MATH 470.502 Examination 2 Solutions November 26, 2014 1.

advertisement 
MATH 470.502
Examination 2 Solutions
November 26, 2014
1.
Alice and Bob are using RSA to communicate.
(a) Alice’s public encryption key is (n, e) = (133, 5). Bob wants to encrypt the
plaintext message ‘8’ to send to Alice. What is the ciphertext that he sends?
(b) What is Alice’s decryption exponent?
Solution: (a) Bob calculates c ≡ 85 ≡ 50 (mod 133), and so c = 50 .
(b) We factor 133 = 7 · 19, and so φ(133) = 6 · 18 = 108. We then calculate 15
mod 108. Since 3 · 108 = 324, we see that 5 · 65 = 325 ≡ 1 (mod 108). So 51 ≡ 65
(mod 108).
2.
Bob’s ElGamal public key is (p, α, β) = (31, 3, 19), and his private key is a = 4.
(a) Alice wants to encrypt the message ‘9’ and send it do Bob. She first picks k = 5.
What does she send to Bob?
(b) In a separate communication, Alice has sent Bob the encrypted ciphertext (r, t) =
(25, 28). What is the decrypted message?
Solution: (a) Alice calculates two quantities: r ≡ αk (mod p), and so r ≡ 35 ≡ 26
(mod 31); and t ≡ β k m (mod p), and so t ≡ 195 · 9 ≡ 14 (mod 31). Therefore
(r, t) = (26, 14) .
(b) To decrypt Bob calculates m ≡ t · r−a (mod p), thus m ≡ 28 · 25−4 ≡ 16
(mod 31).
3.
The following congruences hold:
13343826 ≡ 1
38263826 ≡ 1
(mod 3827)
(mod 3827)
147885 ≡ 6352
1473540 ≡ 6498
(mod 7081)
(mod 7081)
24933826 ≡ 1 (mod 3827)
24953826 ≡ 1592 (mod 3827)
(1)
(2)
1471770 ≡ 366 (mod 7081)
1477080 ≡ 1 (mod 7081)
(3)
(4)
Answer the following primality test questions. Be sure to mention the primality
test you are using and describe how it applies.
(a) What do lines (1)–(2) tell you about the primality of 3827? Explain.
(b) What do lines (3)–(4) tell you about the primality of 7081? Explain.
Solution: (a) We apply the Fermat’s Little Theorem primality test . The first three
pieces of data are not useful, but the last one shows that 24953827−1 ≡ 1592 6≡ 1
(mod 3827). Therefore, 3827 must be composite .
1
(b) Here we apply the Miller-Rabin primality test . In this case 7080 = 8 · 885. From
the data provided, we see that
147885 ≡ 6352 6≡ ±1 (mod 7081),
1472·885 ≡ 366 6≡ −1 (mod 7081),
1474·885 ≡ 6498 ≡
6 −1 (mod 7081).
Therefore, the Miller-Rabin test implies that 7081 is composite . (Note that the final
piece of data, that 1477080 ≡ 1 (mod 7081), is not used, but it also indicates that the
Fermat’s Little Theorem primality test will not apply here.)
4.
The number 2 is a primitive root modulo 13. Use the Pohlig-Hellman algorithm to
find L2 (7).
Solution: Since 13 − 1 = 12 = 22 · 3, we have to apply the algorithm for the primes
2 and 3.
For q = 2, we first find x0 such that 26x0 ≡ 76 ≡ 12 (mod 13). We see that x0 = 1.
We then calculate that β1 ≡ α−x0 β ≡ 2−1 · 7 ≡ 10 (mod 13). We look for x1 so that
26x1 ≡ 103 ≡ 12 (mod 13), and so x1 = 1. From this we see that y1 = 1 + 1 · 2 = 3.
For q = 3, we look for x0 such that 24x0 ≡ 74 ≡ 9 (mod 13). It follows that x1 = 2,
and so y2 = 2.
We thus use the Chinese remainder theorem to find x so that x ≡ 3 (mod 4) and
x ≡ 2 (mod 3). It follows that x ≡ 11 (mod 12), and therefore L2 (7) = 11 .
5.
Suppose that Eric and Todd are communicating using a modified version of RSA.
Eric’s public key is (n1 , e1 ), and his private key is d1 , both keys set up exactly as in
normal RSA. Similarly Todd’s public key is (n2 , e2 ), and his private key is d2 . To
send the plaintext message m to Todd, Eric first calculates
c1 ≡ md1
(mod n1 ),
c2 ≡ ce12
(mod n2 ).
and then he calculates
He then sends c2 to Todd.
(a) Todd receives the ciphertext c2 . How does he decrypt the message? Explain.
(b) How can Todd know for certain that Eric sent him the message, rather than
someone else posing as Eric?
Solution: (a) To decrypt the message, Todd must perform two congruences. He
calculates cd22 ≡ c1 (mod n2 ) and then he calculates ce11 ≡ m (mod n1 ).
(b) Since Eric used his decryption exponent d1 as part of the encryption process (and
he is presumably the only person who knows d1 ), when Todd calculated ce11 mod n1 ,
he would get a recognizable message only if d1 was used to encrypt.
2
6.
Let n = 10057. We know that 10057 is the product of two distinct primes. Suppose
in carrying out the quadratic sieve that you have found that
812 − n = −3496 = −23 · 19 · 23,
832 − n = −3168 = −25 · 32 · 11,
992 − n = −256 = −28 ,
1002 − n = −57 = −3 · 19,
1032 − n = 552 = 23 · 3 · 23,
1042 − n = 759 = 3 · 11 · 23.
(a) Use this information to find positive integers x and y such that x2 ≡ y 2 (mod 10057)
but x 6≡ ±y (mod 10057).
(b) Use the information in part (a) to factor 10057.
Solution: (a) By inspection, we can find at least two correct solutions. One was
x = 83 · 99 · 103 · 104 = 88020504,
√
y = 3168 · 256 · 552 · 759 = 582912.
The other was
x = 81 · 83 · 99 · 100 · 104 ,
√
y = 3496 · 3168 · 256 · 57 · 552 · 759 .
In both cases x2 ≡ y 2 (mod 10057) and x 6≡ ±y (mod 10057).
On the other hand, it was possible to consider
x = 81 · 100 · 103,
√
y = 3496 · 57 · 552.
In this case x2 ≡ y 2 (mod 10057), but x ≡ −y (mod 10057).
(b) We calculate gcd x − y, 10057 to find a non-trivial factor. In the first case in (a),
we can simplify a little by finding that
x = 88020504 ≡ 1640
y = 582912 ≡ 9663
(mod 10057),
(mod 10057).
We then calculate that
gcd(x − y, 10057) = gcd(1640 − 9663, 10057) = gcd(8023, 10057) = 113.
We then find that 10057 = 113 · 89 . (The solution using the second set of values in
(a) is similar.)
3
Related documents
Applied Algebra
Applied Algebra
MATH 3360 Exam I July 25, 1994
MATH 3360 Exam I July 25, 1994
CMPSYSENG 1&2 PC PRO LESSON PLAN 6TH PER WEEK OF
CMPSYSENG 1&2 PC PRO LESSON PLAN 6TH PER WEEK OF
Document10389957 10389957
Document10389957 10389957
MOONEY N66ET SPECS
MOONEY N66ET SPECS
Math 4330, Homework 7, 3/10/2014 : Due 3/24/2014
Math 4330, Homework 7, 3/10/2014 : Due 3/24/2014
Applied Algebra
Applied Algebra
Variables Assessment
Variables Assessment
Download
advertisement