|Analysis of RSA Public Keys Used in the Mobile-ID Solution|
|Organisatsiooni nimi||Data analysis|
|Kokkuvõte||The cryptographic key pair used in the Estonian Mobile-ID solution was generated and copied into the SIM card by the manufacturer of the SIM cards. The aim of this work is to study the implementations of the RSA key generation algorithm by analyzing the properties of the RSA public keys from Mobile-ID certificates.|
In 2016, Svenda et al. in their paper “The Million-Key Question – Investigating the Origins of RSA Public Keys” described a method which can be used to infer some details about the algorithm used to generate the key from the RSA public key modulus. In particular, it was found that the most significant byte of modulus N allows the establishment of the range from which primes p and q were selected. This range turned out to be different for different implementations of the RSA key generation algorithm.
- Study the state of the art methods (by Svenda et al.) that can be used to deduce information about the RSA key generation algorithm by analyzing the properties of RSA public keys.
- Apply these methods on the RSA public keys from the Mobile-ID certificates to discover different key generation algorithms that have been used by different SIM card manufacturers to generate these keys.
The dataset of Mobile-ID public keys and descriptive fields will be provided for the student.
|Lõputöö kaitsmise aasta||2020-2021|