Skip to main content
SpringerLink
Log in
Book cover

Encyclopedia of Cryptography and Security pp 597Cite as

Strong RSA Assumption

  • Reference work entry

  • 206 Accesses

Let \(1 < \tau \in \mathbb{Z}\) be a security parameter. Let \(N=pq\) be a product of two random τ-bit primes and let s be an element of the group \(\mathbb{Z}_N^*\) (see also modular arithmetic). The strong-RSA problem is defined as follows:

given \((N,s)\) as input, output a pair \(a,b \in \mathbb{Z}\)} such that \(a^b = s \bmod N\) and \(b \neq \pm 1\).

Loosely speaking, the Strong-RSA assumption states that for a sufficiently large τ the strong RSA problem is intractable.

The Strong-RSA assumption was introduced by Baric and Pfitzman [2]. The assumption is used to construct efficient signature schemes that are existentially unforgeable under a chosen message attack without the random oracle model. One such system is described in [4] and another in [3]. The Strong-RSA assumption is also the basis of several efficient group signature schemes [1].

This is a preview of subscription content, log in via an institution.

References

  1. Ateniese, Giuseppe, Jan Camenisch, Marc Joye, and Gene Tsudik (2000). “A practical and provably secure coalition-resistant group signature scheme.” Advances in Cryptology—CRYPTO 2000, August, Lecture Notes in Computer Science, vol. 1880, ed. M. Bellare. Springer-Verlag, Berlin, 255–70.

    Google Scholar 

  2. Baric, N. and B. Pfitzman (1997). “Collision-free accumulators and fail-stop signature schemes without trees.” Proceedings of Eurocrypt, Lecture Notes in Computer Science, vol. 1233, ed. W. Fumy. Springer-Verlag, Berlin, 480–494.

    Google Scholar 

  3. Cramer, Ronald and Victor Shoup (2000). “Signature schemes based on the strong RSA assumption.” ACM Transactions on Information and System Security (ACM TISSEC), 3 (3), 161–185, extended abstract in Proc. 6th ACM Conf. on Computer and Communications Security, 1999.

    Google Scholar 

  4. Gennaro, Rosario, Shai Halevi, and Tal Rabin (1999). “Secure hash-and-sign signatures without the random oracle.” Advances in Cryptology—EUROCRYPT'99, Lecture Notes in Computer Science, vol. 1592, ed. J. Stern. Springer-Verlag, Berlin, 123–139.

    Google Scholar 

Download references

Authors
  1. Dan Boneh
    View author publications

    You can also search for this author in PubMed Google Scholar

Editor information

Editors and Affiliations

  1. Eindhoven University of Technology, Eindhoven, The Netherlands

    Henk C. A. van Tilborg

Rights and permissions

Reprints and permissions

Copyright information

© 2005 International Federation for Information Processing

About this entry

Cite this entry

Boneh, D. (2005). Strong RSA Assumption. In: van Tilborg, H.C.A. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA . https://doi.org/10.1007/0-387-23483-7_414

Download citation

Publish with us

Policies and ethics

Search

Navigation