Analysis of RSA Public Keys Used in the Mobile-ID Solution

Organisatsiooni nimi
Data analysis
The cryptographic key pair used in the Estonian Mobile-ID solution was generated and copied into the SIM card by the manufacturer of the SIM cards. The aim of this work is to study the implementations of the RSA key generation algorithm by analyzing the properties of the RSA public keys from Mobile-ID certificates.

In 2016, Svenda et al. in their paper “The Million-Key Question – Investigating the Origins of RSA Public Keys” described a method which can be used to infer some details about the algorithm used to generate the key from the RSA public key modulus. In particular, it was found that the most significant byte of modulus N allows the establishment of the range from which primes p and q were selected. This range turned out to be different for different implementations of the RSA key generation algorithm.

Potential tasks:
- Study the state of the art methods (by Svenda et al.) that can be used to deduce information about the RSA key generation algorithm by analyzing the properties of RSA public keys.
- Apply these methods on the RSA public keys from the Mobile-ID certificates to discover different key generation algorithms that have been used by different SIM card manufacturers to generate these keys.

The dataset of Mobile-ID public keys and descriptive fields will be provided for the student.
Lõputöö kaitsmise aasta
Arnis Paršovs
inglise keel
Nõuded kandideerijale

Kandideerimise kontakt

Arnis Paršovs
Vaata lähemalt