Paper 2001/013

Digitally Watermarking RSA Moduli

Anna M. Johnston

Abstract

The moduli used in RSA (see \cite{rsa}) can be generated by many different sources. The generator of that modulus knows its factorization. They have the ability to forge signatures or break any system based on this moduli. If a moduli and the RSA parameters associated with it were generated by a reputable source, the system would have higher value than if the parameters were generated by an unknown entity. An RSA modulus is digitally marked, or digitally trade marked, if the generator and other identifying features of the modulus can be identified and possibly verified by the modulus itself. The basic concept of digitally marking an RSA modulus would be to fix the upper bits of the modulus to this tag. Thus anyone who sees the public modulus can tell who generated the modulus and who the generator believes the intended user/owner of the modulus is. Two types of trade marking will be described here. The first is simpler but does not give verifiable trade marking. The second is more complex, but allows for verifiable trade marking of RSA moduli. The second part of this paper describes how to generate an RSA modulus with fixed upper bits.

Metadata
Available format(s)
PS
Category
Public-key cryptography
Publication info
Published elsewhere. Unknown where it was published
Keywords
RSAnumber theorykey management
Contact author(s)
ajohnst @ sandia gov
History
2001-02-20: received
Short URL
https://ia.cr/2001/013
License
Creative Commons Attribution
CC BY

BibTeX

@misc{cryptoeprint:2001/013,
      author = {Anna M.  Johnston},
      title = {Digitally Watermarking {RSA} Moduli},
      howpublished = {Cryptology {ePrint} Archive, Paper 2001/013},
      year = {2001},
      url = {https://eprint.iacr.org/2001/013}
}
Note: In order to protect the privacy of readers, eprint.iacr.org does not use cookies or embedded third party content.