Skip to main content
Conference ProceedingsOPEN ACCESS

Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1

Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (1998) 1462 1-12
DOI: 10.1007/BFb0055716
376Citations
Citations of this article
179Readers
Mendeley users who have this article in their library.

This article is free to access.

Abstract

This paper introduces a new adaptive chosen ciphertext attack against certain protocols based on RSA. We show that an RSA private-key operation can be performed if the attacker has access to an oracle that, for any chosen ciphertext, returns only one bit telling whether the ciphertext corresponds to some unknown block of data encrypted using PKCS #1. An example of a protocol susceptible to our attack is SSL V.3.0.

Author supplied keywords

Cite

CITATION STYLE

APA

Bleichenbacher, D. (1998). Chosen ciphertext attacks against protocols based on the RSA encryption standard PKCS #1. In Lecture Notes in Computer Science (including subseries Lecture Notes in Artificial Intelligence and Lecture Notes in Bioinformatics) (Vol. 1462, pp. 1–12). Springer Verlag. https://doi.org/10.1007/BFb0055716

Register to see more suggestions

Mendeley helps you to discover research relevant for your work.

Already have an account?

Save time finding and organizing research with Mendeley

Sign up for free