We are using cryptography to make our transaction secure and also to maintain our data against security breaches. Recently two security researchers released that they have deciphered RSA 4096 bit keys.
RSA is a public key cryptosystem that makes use of two keys and the strength of the keys depends on the strength of the Prime numbers chosen. Factoring prime numbers is where the RSA security lies.
On sunday two researchers announced that they found a RSA key that belongs to Peter Anvin who is the Linux kernel developer. They also proposed that they done it with the tool named as #Phuctor : The RSA super collider.
The theory about the working of #Phuctor can be found in the link provided. They stated that they found the key of Anvin that was created in September 22, 2011, the key may no longer exists.
In response to these Hanno Bock, a freelance journalist stated that the news about RSA breaking is incorrect. He also stated that he analysed many data on servers and there are some vulnerable keys.
That vulnerable keys may due to improper verification of account or may be created due to the internal network error. The keys may also be uploaded by changing the signature and can be uploaded but when the connection has been established on checking the signature the key fails.
As per his opinion, factoring of RSA 4096 bit key can occur only if keys have been generated with some broken entropy source or GPG implementation has been tampered.
Thus RSA algorithm is still safe and secure and can be used without any fear.
P.S : The post is to create awareness and not to create any negative impact.
No comments:
Post a Comment