{"id":"https://openalex.org/W2115652664","doi":"https://doi.org/10.1145/972639.972642","title":"The security of all RSA and discrete log bits","display_name":"The security of all RSA and discrete log bits","publication_year":2004,"publication_date":"2004-03-01","ids":{"openalex":"https://openalex.org/W2115652664","doi":"https://doi.org/10.1145/972639.972642","mag":"2115652664"},"language":"en","primary_location":{"is_oa":false,"landing_page_url":"https://doi.org/10.1145/972639.972642","pdf_url":null,"source":{"id":"https://openalex.org/S118992489","display_name":"Journal of the ACM","issn_l":"0004-5411","issn":["0004-5411","1557-735X"],"is_oa":false,"is_in_doaj":false,"is_indexed_in_scopus":true,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false},"type":"article","type_crossref":"journal-article","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5013166918","display_name":"Johan H\u00e5stad","orcid":"https://orcid.org/0000-0002-5379-345X"},"institutions":[{"id":"https://openalex.org/I86987016","display_name":"KTH Royal Institute of Technology","ror":"https://ror.org/026vcq606","country_code":"SE","type":"funder","lineage":["https://openalex.org/I86987016"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Johan H\u00e5stad","raw_affiliation_strings":["Royal Institute of Technology, Stockholm, Sweden"],"affiliations":[{"raw_affiliation_string":"Royal Institute of Technology, Stockholm, Sweden","institution_ids":["https://openalex.org/I86987016"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5037726591","display_name":"Mats N\u00e4slund","orcid":null},"institutions":[{"id":"https://openalex.org/I1306339040","display_name":"Ericsson (Sweden)","ror":"https://ror.org/05a7rhx54","country_code":"SE","type":"company","lineage":["https://openalex.org/I1306339040"]}],"countries":["SE"],"is_corresponding":false,"raw_author_name":"Mats N\u00e5slund","raw_affiliation_strings":["Ericsson Research, Stockholm, Sweden"],"affiliations":[{"raw_affiliation_string":"Ericsson Research, Stockholm, Sweden","institution_ids":["https://openalex.org/I1306339040"]}]}],"institution_assertions":[],"countries_distinct_count":1,"institutions_distinct_count":2,"corresponding_author_ids":[],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":2.043,"has_fulltext":false,"cited_by_count":40,"citation_normalized_percentile":{"value":0.957174,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":91,"max":92},"biblio":{"volume":"51","issue":"2","first_page":"187","last_page":"230"},"is_retracted":false,"is_paratext":false,"primary_topic":{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10237","display_name":"Cryptography and Data Security","score":1.0,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T11693","display_name":"Cryptography and Residue Arithmetic","score":0.9991,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10951","display_name":"Cryptographic Implementations and Security","score":0.999,"subfield":{"id":"https://openalex.org/subfields/1702","display_name":"Artificial Intelligence"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/exponentiation","display_name":"Exponentiation","score":0.6309838},{"id":"https://openalex.org/keywords/discrete-logarithm","display_name":"Discrete logarithm","score":0.50535923}],"concepts":[{"id":"https://openalex.org/C33923547","wikidata":"https://www.wikidata.org/wiki/Q395","display_name":"Mathematics","level":0,"score":0.64669055},{"id":"https://openalex.org/C81539297","wikidata":"https://www.wikidata.org/wiki/Q33456","display_name":"Exponentiation","level":2,"score":0.6309838},{"id":"https://openalex.org/C54732982","wikidata":"https://www.wikidata.org/wiki/Q1415345","display_name":"Modulo","level":2,"score":0.61223674},{"id":"https://openalex.org/C63553672","wikidata":"https://www.wikidata.org/wiki/Q581168","display_name":"Binary logarithm","level":2,"score":0.54673225},{"id":"https://openalex.org/C148730421","wikidata":"https://www.wikidata.org/wiki/Q141090","display_name":"Encryption","level":2,"score":0.5387292},{"id":"https://openalex.org/C118615104","wikidata":"https://www.wikidata.org/wiki/Q121416","display_name":"Discrete mathematics","level":1,"score":0.523525},{"id":"https://openalex.org/C173259116","wikidata":"https://www.wikidata.org/wiki/Q864003","display_name":"Discrete logarithm","level":4,"score":0.50535923},{"id":"https://openalex.org/C124584101","wikidata":"https://www.wikidata.org/wiki/Q1053266","display_name":"Multiplier (economics)","level":2,"score":0.4951569},{"id":"https://openalex.org/C114614502","wikidata":"https://www.wikidata.org/wiki/Q76592","display_name":"Combinatorics","level":1,"score":0.48270822},{"id":"https://openalex.org/C97137487","wikidata":"https://www.wikidata.org/wiki/Q729138","display_name":"Integer (computer science)","level":2,"score":0.46874598},{"id":"https://openalex.org/C30860621","wikidata":"https://www.wikidata.org/wiki/Q49008","display_name":"Prime factor","level":3,"score":0.45147765},{"id":"https://openalex.org/C14036430","wikidata":"https://www.wikidata.org/wiki/Q3736076","display_name":"Function (biology)","level":2,"score":0.44803756},{"id":"https://openalex.org/C90119067","wikidata":"https://www.wikidata.org/wiki/Q43260","display_name":"Polynomial","level":2,"score":0.44066647},{"id":"https://openalex.org/C94375191","wikidata":"https://www.wikidata.org/wiki/Q11205","display_name":"Arithmetic","level":1,"score":0.40972835},{"id":"https://openalex.org/C184992742","wikidata":"https://www.wikidata.org/wiki/Q7243229","display_name":"Prime (order theory)","level":2,"score":0.38512462},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.22033474},{"id":"https://openalex.org/C203062551","wikidata":"https://www.wikidata.org/wiki/Q201339","display_name":"Public-key cryptography","level":3,"score":0.20426255},{"id":"https://openalex.org/C134306372","wikidata":"https://www.wikidata.org/wiki/Q7754","display_name":"Mathematical analysis","level":1,"score":0.0},{"id":"https://openalex.org/C78458016","wikidata":"https://www.wikidata.org/wiki/Q840400","display_name":"Evolutionary biology","level":1,"score":0.0},{"id":"https://openalex.org/C86803240","wikidata":"https://www.wikidata.org/wiki/Q420","display_name":"Biology","level":0,"score":0.0},{"id":"https://openalex.org/C162324750","wikidata":"https://www.wikidata.org/wiki/Q8134","display_name":"Economics","level":0,"score":0.0},{"id":"https://openalex.org/C139719470","wikidata":"https://www.wikidata.org/wiki/Q39680","display_name":"Macroeconomics","level":1,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C111919701","wikidata":"https://www.wikidata.org/wiki/Q9135","display_name":"Operating system","level":1,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"is_oa":false,"landing_page_url":"https://doi.org/10.1145/972639.972642","pdf_url":null,"source":{"id":"https://openalex.org/S118992489","display_name":"Journal of the ACM","issn_l":"0004-5411","issn":["0004-5411","1557-735X"],"is_oa":false,"is_in_doaj":false,"is_indexed_in_scopus":true,"is_core":true,"host_organization":"https://openalex.org/P4310319798","host_organization_name":"Association for Computing Machinery","host_organization_lineage":["https://openalex.org/P4310319798"],"host_organization_lineage_names":["Association for Computing Machinery"],"type":"journal"},"license":null,"license_id":null,"version":null,"is_accepted":false,"is_published":false}],"best_oa_location":null,"sustainable_development_goals":[],"grants":[],"datasets":[],"versions":[],"referenced_works_count":45,"referenced_works":["https://openalex.org/W107976119","https://openalex.org/W10922151","https://openalex.org/W1429503378","https://openalex.org/W1512263260","https://openalex.org/W1519772188","https://openalex.org/W1543409362","https://openalex.org/W1550770697","https://openalex.org/W1552695147","https://openalex.org/W1564773445","https://openalex.org/W1567930774","https://openalex.org/W1573303085","https://openalex.org/W1577566258","https://openalex.org/W1580599221","https://openalex.org/W1588842526","https://openalex.org/W1588934224","https://openalex.org/W1606412873","https://openalex.org/W1607458528","https://openalex.org/W1608929692","https://openalex.org/W1880955573","https://openalex.org/W1969694673","https://openalex.org/W1977886630","https://openalex.org/W1981455414","https://openalex.org/W1996360405","https://openalex.org/W2007747613","https://openalex.org/W2009163638","https://openalex.org/W2029089226","https://openalex.org/W2058330889","https://openalex.org/W2066180457","https://openalex.org/W2066706776","https://openalex.org/W2107324709","https://openalex.org/W2108104892","https://openalex.org/W2132801587","https://openalex.org/W2140837528","https://openalex.org/W2154021956","https://openalex.org/W2170389905","https://openalex.org/W2497291046","https://openalex.org/W2561675875","https://openalex.org/W2741749840","https://openalex.org/W289061868","https://openalex.org/W4210300416","https://openalex.org/W4230280967","https://openalex.org/W4232836212","https://openalex.org/W4385773498","https://openalex.org/W50207042","https://openalex.org/W6809324"],"related_works":["https://openalex.org/W4312270235","https://openalex.org/W4301409452","https://openalex.org/W4243425381","https://openalex.org/W4229518224","https://openalex.org/W2612498146","https://openalex.org/W2532989613","https://openalex.org/W2480228229","https://openalex.org/W2122450783","https://openalex.org/W1634118047","https://openalex.org/W1588934224"],"abstract_inverted_index":{"We":[0,17,200],"study":[1],"the":[2,38,77,81,100,104,130,156,188,218,243],"security":[3,247],"of":[4,57,64,99,132,187,192,232,248,250],"individual":[5],"bits":[6,63,131],"in":[7,30,216,234],"an":[8,163,170],"RSA":[9],"encrypted":[10],"message":[11],"E":[12,21],"N":[13,22,61,165,182,195,233,254],"(":[14,23],"x":[15,24,31,65,86,173,198,209,225],").":[16],"show":[18,201],"that":[19,55,129,174,202],"given":[20,162],"),":[25],"predicting":[26,217],"any":[27,143,204],"single":[28],"bit":[29,191],"with":[32,90],"only":[33],"a":[34,44,152,177,179,185,213,229],"nonnegligible":[35,214],"advantage":[36,215],"over":[37,75,96],"trivial":[39],"guessing":[40],"strategy,":[41],"is":[42],"(through":[43],"polynomial-time":[45],"reduction)":[46],"as":[47,49,124],"hard":[48,139],"breaking":[50],"RSA.":[51],"Moreover,":[52],"we":[53,127,222],"prove":[54,128,242],"blocks":[56,249],"O":[58,251],"(log":[59,252],"log":[60,253],")":[62,255],"are":[66,107],"computationally":[67],"indistinguishable":[68],"from":[69,151],"random":[70,97,178],"bits.":[71,256],"The":[72,109,237],"results":[73,106,110,149,244],"carry":[74],"to":[76,120,169,241],"Rabin":[78],"encryption":[79],"scheme.Considering":[80],"discrete":[82],"exponentiation":[83],"function":[84,145],"g":[85],"modulo":[87,136],"p":[88,102,137],",":[89,103,166,183,196,206,226],"probability":[91],"1":[92],"\u2212":[93],"o":[94],"(1)":[95],"choices":[98],"prime":[101],"analog":[105],"demonstrated.":[108],"do":[111],"not":[112],"rely":[113],"on":[114,155,175],"group":[115],"representation,":[116],"and":[117,167],"therefore":[118],"applies":[119],"general":[121,153],"cyclic":[122],"groups":[123],"well.":[125],"Finally,":[126],"ax":[133,193],"+":[134],"b":[135],"give":[138],"core":[140],"predicates":[141],"for":[142,203],"one-way":[144],"f":[146],".All":[147],"our":[148],"follow":[150],"result":[154,238],"chosen":[157],"multiplier":[158],"hidden":[159],"number":[160],"problem:":[161],"integer":[164],"access":[168],"algorithm":[171],"P":[172,208],"input":[176],"\u2208":[180],"Z":[181],"returns":[184],"guess":[186],"i":[189,205,219],"th":[190,220],"mod":[194],"recover":[197,224],".":[199],"if":[207],"has":[210],"at":[211],"least":[212],"bit,":[221],"either":[223],"or,":[227],"obtain":[228],"nontrivial":[230],"factor":[231],"polynomial":[235],"time.":[236],"also":[239],"extends":[240],"about":[245],"simultaneous":[246]},"abstract_inverted_index_v3":null,"cited_by_api_url":"https://api.openalex.org/works?filter=cites:W2115652664","counts_by_year":[{"year":2025,"cited_by_count":1},{"year":2020,"cited_by_count":2},{"year":2019,"cited_by_count":1},{"year":2018,"cited_by_count":1},{"year":2017,"cited_by_count":4},{"year":2016,"cited_by_count":4},{"year":2015,"cited_by_count":1},{"year":2014,"cited_by_count":1},{"year":2013,"cited_by_count":5},{"year":2012,"cited_by_count":1}],"updated_date":"2025-02-17T21:41:44.491657","created_date":"2016-06-24"}