MATHEMATICS EXTENDED ESSAY

Transcription

1 MATHEMATICS EXTENDED ESSAY How does the RSA algorithm function and why is it used in modern communication? Candidate Name: Murtuza Kainan Candidate Session Number: Word Count: P a g e

2 ABSTRACT The research question that this extended essay in mathematics address is How does the RSA algorithm function and why is it used in modern communication? I have first started the essay with an introduction to RSA, public and private key cryptography, number theory, and Modular mathematics. I have investigated the RSA algorithm by taking 3 examples with increasingly large values of prime numbers. Using these numbers, I have demonstrated how the algorithm works. Then using modular mathematics and results from number theory, I have formulated a proof that demonstrates that the RSA algorithm works because of a significant relationship d ( m m ( mod n) = e ) between the public ( e ) and private keys ( d ) and the modulus number ( n ). Furthermore, I have investigated the reasons for the use and effectiveness of this algorithm which I have explained by making use of the concepts of computational hardness and non polynomial time. It was concluded that the RSA algorithm functions effectively due to the relationship between the public key, private key, and modulus number and the fact that decryption requires the private key that can be obtained by factorizing the modulus which is a non polynomial time computation. The relationship between RSA and number theory concepts was also emphasized and it also concluded that the effectiveness of the algorithm would continue to increase with an increase in the value of massive primes and semi prime numbers used to generate the modulus number. Its inherent security and availability of a public key it was concluded were vital reasons because of which RSA is used in modern communication. Word count: P a g e

3 TABLE OF CONTENTS INTRODUCTION... 5 SYMMETRIC KEY ENCRYPTION:... 6 ASYMMETRIC KEY ENCRYPTION:... 6 NOTATIONS... 7 MATHEMATICAL CONCEPTS AND PRINCIPALS ESSENTIAL TO RSA:... 8 PRIME NUMBER... 8 SEMI PRIME NUMBER... 9 ALGORITHM... 9 COMPUTATION... Error! Bookmark not defined. MODULAR MATHEMATICS MODULAR CONGRUENCE MODULAR MULTIPLICATIVE INVERSE FERMAT S LITTLE THEOREM TOTIENT FUNCTION CHINESE REMAINDER THEOREM EULER S TOTIENT THEOREM BIG O NOTATION POLYNOMIAL TIME NON POLYNOMIAL TIME INVESTIGATIONS EXAMPLE MATHEMATICAL EXPLANATION OF THE FIRST EXAMPLE P a g e

4 EXAMPLE 2: EXAMPLE FINAL NUMBER THEORY PROOF FOR THE FUNCTIONING OF RSA INITIATING THE PROOF CASE CASE 2: EFFECTIVENESS OF THE RSA ALGORITHM INFORMATION THEORETIC SECURITY COMPUTATIONAL SECURITY THE RSA PROBLEM USE OF RSA IN MODERN COMMUNICATION CONCLUSION FURTHER INVESTIGATION: BIBLIOGRAPHY P a g e

5 INTRODUCTION Neglect of mathematics works injury to all knowledge, since he who is ignorant of it cannot know the other sciences or the things of the world. ~Quoted by Roger Bacon in C B Boyer, A History of Mathematics (New York 1968) Mathematics is required in every subject and field. In the world of cryptography and computer security, number theory has been instrumental in providing solutions. The entirety of the encryption systems used for transactions and security over the internet is based on the mathematics of prime numbers and factorization. This extended essay explores the working of the first public key algorithm, the RSA algorithm, and further explores the cause of effectiveness of the RSA algorithm. As such the research question that this extended essay addresses is: How does the RSA algorithm function and why is it used in modern communication? In doing so, many mathematical concepts and theorem are explored and their relationship to the functioning of RSA is investigated. I chose to investigate the RSA algorithm because of my interests in the fields of number theory, complexity theory, and computer security. In writing this extended essay, I have had an opportunity to explore number theory and modular arithmetic outside of the prescribed I.B syllabus and apply this new found knowledge to explain RSA. 5 P a g e

6 The type of encryption that preceded the RSA algorithm was symmetric key encryption. SYMMETRIC KEY ENCRYPTION: Symmetric key encryption refers to encryption that is achieved using only one key that is used to encrypt and decrypt information. This type of encryption was difficult and impractical to use due to the difficulty involved in the transferring of keys. Since only one key is required for both encryption and decryption, the transfer of the key if intercepted by an adversary could compromise the security of the information. The conception of the RSA algorithm gave rise to asymmetric key encryption. ASYMMETRIC KEY ENCRYPTION: Asymmetric key encryption or public key encryption is encryption achieved using two different keys for the processes of encryption and decryption. The first algorithm to introduce this type of encryption is the RSA algorithm. The use of asymmetric key encryption is favoured over that of symmetric key encryption because of the transfer of the public key eliminates any risk involving the security of data. The RSA algorithm, named after its inventors Ron Rivest, Adi Shamir, and Leonard Adleman, is a public key cryptography algorithm. It is known to be very secure because of the presumed difficulty of factoring very large semi prime numbers. It was the first asymmetric key encryption algorithm of its kind. The functioning of the RSA algorithm is based on results from a branch of pure mathematics known as number theory. 6 P a g e

7 NOTATIONS a b : a divides b a b : a does not divide b a b(mod c) : a is congruent to b modulo c ( ) ab c a b 1 1 mod, = : a is the modular multiplicative inverse of b modulo c gcd( a, b ) : the greatest common divisor of a and b 7 P a g e

8 MATHEMATICAL CONCEPTS AND PRINCIPALS ESSENTIAL TO RSA: PRIME NUMBER: A prime number is a number that has no factors than the number 1 and itself. Prime numbers are unique and any pattern confirming their emergence is not known. Prime numbers are known to be infinite. This can be demonstrated using a simple Euclidean proof 1 : If a list of prime numbers p, p1, p2, p3, p4, p5,... p n is taken, it is possible to show that no matter how large the list, an additional prime number p k which does not appear on the list is has to exist. Let a number P be the product of all the prime numbers in the list: P = p p p... 2 p3 p4 p5 pn Let some number q = P + 1. Then, q is either prime or not: Now, if q is a prime number, it follows that there is one extra prime number apart from those listed as p, p1, p2, p3, p4, p5,... p n 1 S. P. Glasby Central Washington University February P a g e

9 On the other hand, it is possible that q is not a prime number. If that is the case then no prime number on the list p, p1, p2, p3, p4, p5,... pn will be able to divide q. This is because q = P + 1 and the division of q by any of the prime numbers will result in a remainder of 1 since no number divides 1. A prime number that is not on the list will therefore divide q. It thus follows that for any given list of primes, there is always a prime that is not present on the list. The logical conclusion is that the number of prime numbers are infinite. SEMI PRIME NUMBER: A semi prime number is a number that has two prime numbers as its factors other than 1 and the number itself. For example, 6 is a semi prime number since it is the product of the two prime numbers 2 and 3. Semi prime numbers are essential to cryptosystems such as RSA. The modulus n used in RSA is always a semi prime number. ALGORITHM 2 : An algorithm is a specific set of instructions for carrying out a procedure or solving a problem, usually with the requirement that the procedure terminate at some point. Specific algorithms sometimes also go by the name method, procedure, or technique. The word "algorithm" is a distortion of al-khwārizmī, a Persian mathematician who wrote an influential treatise about algebraic methods. 2 Weisstein, Eric W. "Algorithm." From MathWorld--A Wolfram Web Resource. 9 P a g e

10 MODULAR MATHEMATICS 3 : Modular mathematics or arithmetic focuses upon modular congruence. Numbers tend to wrap around the modulus number and start over when modular arithmetic is considered. For example, consider the equation 15 0 (mod 3). This means that 15 will continure to wrap around 3. For instance 4 will become 1, 5 will become 2, 6 will become 0, and so on until 15. A consequence is also that the remainder obtained when 15 is divided by 3 is equal to 0. Modular arithmetic is used to tell time by converting from the 24 hour format to the twelve hour format. 3 Insall, Matt and Weisstein, Eric W. "Modular Arithmetic." From MathWorld--A Wolfram Web Resource P a g e

11 MODULAR CONGRUENCE: If two numbers a and b have a difference a-b that is divisible by an integer m such that a b m is a whole number, then the two numbers are said to be congruent to modulo m. This written mathematically as: a b ( mod m) MODULAR MULTIPLICATIVE INVERSE 4 : The modular multiplicative inverse of a number a( mod ) m is an integer x such that ax ( m) 1 mod The modular multiplicative inverse can only exist if the numbers a and m are co-prime. This is simply because if a was divisible by m, then, ax m would leave a remainder of zero. This would contradict the relation ax 1 ( mod m) since ax m needs to leave a remainder of 1. 4 Hobson, Nick; Nichol, Reid; and Weisstein, Eric W. "Modular Inverse." From MathWorld--A Wolfram Web Resource P a g e

12 FERMAT S LITTLE THEOREM 5 : If p is a prime number and a a natural number, then p a a(mod p) (1) Furthermore, if p does not divide a, then there exists some smallest exponent d such that d a ( p) 1 0 mod (2) and d divides p 1. Hence, ( p) p 1 a 1 0 mod (3) The theorem is sometimes also simply known as "Fermat's theorem" 5 Weisstein, Eric W. "Fermat's Little Theorem." From MathWorld--A Wolfram Web Resource P a g e

13 TOTIENT FUNCTION 6 : The totient function θ ( n), also called Euler's totient function, is defined as the number of positive integers n that are relatively prime to (i.e., do not contain any factor in common with) n, where 1 is counted as being relatively prime to all numbers. Since a number less than or equal to and relatively prime to a given number is called a totative, the totient function θ ( n) can be simply defined as the number of totatives of n. Example: the number 15 has the following totatives, 1, 2, 4, 6, 7, 8, 9, 10, 11, 12, 13, 14. These are 12 numbers in total. Therefore, θ (15) = 12 In case of a prime number p, the totient function θ ( p) = p 1. This is because all numbers less than a prime number p are relatively co-prime to p. CHINESE REMAINDER THEOREM 7 : A simplification of the Chinese remainder theorem states that for any two relatively prime numbers p and q and any two integers a and b, There exists a number x such that, x a(mod p) x b(mod q) 6 Weisstein, Eric W. "Totient Function." From MathWorld--A Wolfram Web Resource. 7 Weisstein, Eric W. "Chinese Remainder Theorem." From MathWorld--A Wolfram Web Resource P a g e

14 EULER S TOTIENT THEOREM 8 : Euler s totient theorem is a result that was asserted by Leonard Euler as a generalization of Fermat s little theorem using the totient function. It states: a θ ( n) 1(mod n) Where, θ ( n) is the totient function of n and a is any number that is relatively prime to n. This generalization can be made by manipulating the result of Fermat s little theorem: a p 1 ( p) 1 0 mod Let p be a prime number. Then, its totient function, θ ( p), is p 1since all numbers less than a prime number are co-prime to it. Now, a θ ( p) a 1 0(mod p) θ ( p) 1(mod p) BIG O NOTATION 9 : (with a capital letter O, not a zero), also called Landau's symbol, is a symbolism used in complexity theory, computer science, and mathematics to describe the asymptotic behaviour of functions. Basically, it tells you how fast a function grows or declines. 8 Weisstein, Eric W. "Euler's Totient Theorem." From MathWorld--A Wolfram Web Resource P a g e

15 Landau's symbol comes from the name of the German number theoretician Edmund Landau who invented the notation. The letter O is used because the rate of growth of a function is also called its order. POLYNOMIAL TIME 10 : An algorithm is said to be solvable in polynomial time if the number of steps required to k complete the algorithm for a given input is O( n ) for some nonnegative integer k, where n is the complexity of the input. Polynomial-time algorithms are said to be "fast."(fast in what sense?) Most familiar mathematical operations such as addition, subtraction, multiplication, and division, as well as computing square roots, powers, and logarithms, can be performed in polynomial time. Computing the digits of most interesting mathematical constants, including π and e can also be done in polynomial time. NON POLYNOMIAL TIME: An infinitely complex process of computation is said to take place in non polynomial time. k The number of steps required to complete the operation cannot be expressed as O( n ) when non polynomial time is required for computation. 10 Terr, David. "Polynomial Time." From MathWorld--A Wolfram Web Resource, created by Eric W. Weisstein P a g e

16 INVESTIGATIONS EXAMPLE 1: Consider a letter K. Let K be denoted by an integer 65. This letter shall be encrypted and be sent. Step 1: Two prime numbers are chosen, p = 7 q = 11 Step 2: pq is computed to obtain the semi prime number n. n = pq = 7 11 = 77 Step 3: The third step is the computation of the totient function of the semi prime number n. θ ( n) = ( p 1)( q 1) = 6 10 = 60 Step 4: A number e is selected such that 1< e < θ, where e and θ are co prime. Let e = P a g e

17 Step 5: A number d is to be calculated such that de 1(mod θ ) This means that d is the modular multiplicative inverse of e(mod θ ) In this case, d is such that d 23 1(mod 60) This means that d is a number such that 23 d 60 has a remainder of 1. Using a Texas instruments TI-84 calculator a table was generated. The function used to generate the table was a remainder function of the form: Remainder (Dividend, Divisor) = Remainder (23 x, 60) The table generated was: X value Function value (Remainder when divided by 120) P a g e

18 The value of d determined using the table was thus 47. Step 6: The cipher text for a padded integer needs to be generated. For a padded integer P, the cipher text C is such that, m e c ( mod n) 23 The letter K which is denoted by the integer 65 is to be encrypted. 65 c( mod 77) thus calculated to be 32., c is Step 7: Decryption is achieved by computing using the Cipher text and the hidden key d. ( mod ) d c p n, 47 In this case, 32 p( mod 77) Upon computation, it is found that K = 65. Thus the integer that was used to pad the letter K is obtained. 18 P a g e

19 MATHEMATICAL EXPLANATION OF THE FIRST EXAMPLE Consider example 1 for the explanation. ( ). 32 is therefore, the remainder when is divided by mod 77 According to the division algorithm, Dividend = Divisor x quotient + remainder. Thus for some integer k, = k 32 This can be further rewritten as (7 11 k) 32 = +. It can also be determined that = (7 11 k) mod11 This is because both and 32 when divided by 11 will leave the same remainder. Now, by raising both sides the private exponent 47 the following result is obtained: 23 ( ) ( ) mod11 It should be noted that (23 x 47) = 1 + (60 x 18). Using this observation, one can see that: (65 23 ) 47 = 65 (23 x 47) = (60 x 18) = 65 x 65 (60 x 18) = 65 x ( ) 10 Fermat s little theorem states that a P-1 0 (mod P), where, a is a natural number and P is a prime number. Taking as the natural number and 11 as the prime number, it can be stated: 19 P a g e

20 ( ) (mod 11) = ( ) (mod 11) However, by adding 1 to both sides it can be seen that: ( ) 10 1 (mod 11) Using all observations together, it can now be seen that: (65 23 ) 47 = 65 x ( ) x 1 = 65 mod 11 By subtracting 65 from both sides, it can be further seen that: (mod 11) Therefore, 11 divides evenly into This also implies that when divided by 11 yields a remainder of 65. Repeating the same exact steps with the other prime 7 would yield the same result. Since both 7 and 11 leave a remainder of 65, it follows that their multiple 77 will also leave a remainder of 65. This is because of the following result of the following independent lemma: x a(mod p) x a(mod q) x a(mod pq) pq ( x a), where p and q are prime numbers. It therefore needs to be proved that pq ( x a) Now, p multiplied by some integer and added to a gives x. So, for some integer k : x = pk + a 20 P a g e

21 Similarly, for some integer k 1 : x = qk1 + a Therefore, x = pk + a = qk + a ( x a) = pk = qk p qk, q pk Now, since p qk1, and since q is a prime number, p q. Therefore, only k1 is divisible by p p k 1. Therefore, p multiplied by some integer k 2 would be equal to k 1. Since ( x a) qk = 1and k1 pk2 =, ( x a) = pqk2 Similarly, since q pk, and since p is a prime number, p q. Therefore, only k is divisible by p q k. Therefore, q multiplied by some integer k 3 would be equal to k. Since ( x a) = pk and k = qk3, ( x a) = pqk3 Now, ( x a) = pqk = pqk k = k = k ( x a) ( x a) = pqk = k pq pq ( x a) Therefore, x pq will leave a remainder of a. The multiple of the prime numbers 7 and 11, will therefore leave the same remainder of P a g e

22 This example demonstrates the relationship between the padded integer 65, the cipher text 32, the public key 23, the private key 47, and the semi prime number 77. Any padded integer can thus be converted into cipher text and then be retrieved using the private key and the semi prime P a g e

23 The RSA algorithm can thus be generalized: 23 P a g e

24 EXAMPLE 2: Consider a simple random pad: A message Deploy is to be sent using this pad. D has a padded value of 1. E has a padded value of 6. P has a padded value of 5. L has a padded value of 73. O has a padded value of 00. Y has a padded value of 9. The padded integer is thus: P a g e

25 Step 1: Two prime numbers are chosen, p = q = Step 2: pq is computed to obtain the semi prime number n. n = pq = = n = Step 3: The third step is the computation of the totient function of the semi prime number n. ( )( ) ( )( ) θ ( n) = p 1 q 1 = = = Step 4: A number e is selected such that 1< e < θ, where e and θ are co prime. Let e = 1373 Step 5: A number d is to be calculated such that de 1(mod θ ) This means that d is the modular multiplicative inverse of e modθ In this case, d is such that d (mod ) 25 P a g e

26 This means that d is a number such that 1373 d has a remainder of 1. Using a Texas instruments TI-84 calculator a table can be generated. The function used to generate the table was a remainder function of the form: Remainder (Dividend, Divisor) = Remainder (1373 x, ) The table generated was: X value Function value (Remainder when divided by 120) The value of d as determined using the table is P a g e

27 Step 6: The cipher text for a padded integer needs to be generated. For a padded integer P, e the cipher text C is such that, p c( mod n) The message can now be encrypted step by step. As mentioned in the beginning the padded integer is: The cipher text is thus c ( mod ) Since the value of the exponent and numbers was large, the software WX Maxima was used to generate the value of c. The modulus computation function was used: c = P a g e

28 The message Deploy is now encrypted using the RSA algorithm and it now looks like this when it is sent: Step 7: Decryption is achieved by computing using the Cipher text and the hidden key d. d The plain text is related to the cipher text by the following: c p( mod n) For c = , p( mod ) WX maxima was again used for modulus computation. However, due to the presence of large exponents, the application crashed: 28 P a g e

29 The computational engine wolfram alpha was instead used: Upon computation, the value of p obtained was: Upon matching the integer to the appropriate alphabet in the pad, the message Deploy surfaces again. Encryption and decryption is thus achieved. 29 P a g e

30 EXAMPLE 3: Let us assign the following 2 digit numbers to the letters of the English alphabet: A message Begin plan A is to be sent using this pad. B has a padded value of 19. E has a padded value of 63. G has a padded value of 57. I has a padded value of 05. N has a padded value of 41. _ has a padded value of 48. P has a padded value of 08. L has a padded value of 95. A has a padded value of 52. N has a padded value of 41. _ has a padded value of 48. A has a padded value of P a g e

31 The message when substituted by the numbers on the pad looks like this: Step 1: Two prime numbers are chosen, p = q = The large prime numbers were obtained by factorizing random numbers in WX Maxima. Step 2: pq is computed to obtain the semi prime number n. n = pq = = n = Step 3: The third step is the computation of the totient function of the semi prime number n n ( p )( q ) ( )( ) θ ( ) = 1 1 = = = Step 4: A number e is selected such that 1< e < θ, where e and θ are co prime. Let e = P a g e

32 Step 5: A number d is to be calculated such that de 1(mod θ ) This means that d is the modular multiplicative inverse of e modθ In this case, d is such that d (mod ) This means that d is a number such that has a remainder of d The table for such a large value of θ ( n) could not be generated. The online computational engine wolfram alpha was used instead to compute the value of d: 1%28mod %29 d = P a g e

33 Step 6: The cipher text for a padded integer needs to be generated. For a padded integer P, e the cipher text C is such that, p c( mod n) The message can now be encrypted step by step. There integers assigned to each letter in the pad. The padded integer is thus: The resulting cipher text is thus: ( ) c mod Wolfram alpha was again used for modulus computation: %29 33 P a g e

34 c = The message Begin plan A is encrypted using the RSA algorithm and it now looks like this when it is sent: Step 7: Decryption is achieved by computing using the Cipher text and the hidden key d. d The plain text is related to the cipher text by the following: c p( mod n) For c = , p ( mod ) 34 P a g e

35 The modulus computation for decryption was achieved using wolfram alpha: E %28mod %29 Upon computation, the value of p obtained is: Upon matching the integer to the appropriate alphabet in the pad, the message Begin plan A surfaces again. Encryption and decryption is thus achieved using large prime numbers and modulus. 35 P a g e

36 FINAL NUMBER THEORY PROOF FOR THE FUNCTIONING OF RSA The examples demonstrate a general algorithm that defines RSA. It was found that RSA functions because of a relationship between the semi prime modulus, and keys. The RSA algorithm states the following conditions: 1. Two prime numbers p and q are chosen to compute the semi prime modulus n. 2. The totient function of n is θ ( n) = ( p 1)( q 1) and the public key e is chosen such that it is smaller than and relatively prime to θ ( n). 3. The public key is the modular multiplicative inverse of e mod θ ( n). e 4. The padded integer m is encrypted using the function m c ( mod n) d 5. The cipher text c is decrypted using the function c m( mod n).. Consider, m e c ( mod n) or c = m e ( mod n) d d And c m( mod n) or m = c ( mod n) Now, since c = m e d ( mod n), substituting for c in m c ( mod n) = gives: d ( ) ( ) e m = ( m mod n ) mod n Simplifying the expression, ( ) d d m = m e e ( mod n) = m ( mod n) 36 P a g e

37 This is because the modulus inside and outside the bracket is the same thus resulting in a single modulus. A simple example can demonstrate this property of modular arithmetic. 7 mod 3 = (7 mod 3) = 1 = mod 3 = 49 mod 3 = 1 d So eventually, m = m e ( mod n) d Therefore it needs to be proven that m m ( mod n) = e. 37 P a g e

38 INITIATING THE PROOF: d is the modular multiplicative inverse of e mod θ ( n). That is ed 1(mod θ ( n)). So, ed 1(mod θ( n)) ed 1 0(mod θ ( n)) θ( n) ( ed 1) However, n = pq and, θ ( n) = ( θ ( p))( θ ( q)) θ ( n) = ( p 1)( q 1) So, θ ( n) ( ed 1), ( θ ( p))( θ ( q)) ( ed 1) ( p 1)( q 1)( ed 1) A property of divisors is that, if a number divides a dividend, the factors of the divisors also divide the dividend. Now, by the property of divisors, implies θ ( p) θ ( q) ( ed 1) θ ( p) ( ed 1) and θ ( q) ( ed 1) Now, since θ( p) divides ( ed 1), an integer k exists such that θ ( p) k = ( ed 1). 38 P a g e

39 Since, θ ( p) = ( p 1), k( p 1) = ( ed 1). de de Now, consider that m mod p = m mod p. This is important because it can now be stated that de de m m mod p This can also be written as = de de 1+ 1 de 1 m m mod p ( m ) mmod p But, ( ed 1) = k( p 1) de k( p 1) m ( m ) m(mod p) Now, it was stated previously that p is a prime number. Because of this, two possibilities regarding the relationship between p and m exist. 1. m is either relatively prime to p since p is a prime number 2. Or m is a multiple of p There now exist two cases in relation with p and m. 39 P a g e

40 CASE 1: when m is relatively prime to p p 1 By Fermat s little theorem, a 1 0( mod p) Replacing a with m, the result can be rewritten: m p 1 m p 1 ( p) ( p) 1 0 mod 1 mod By modular congruence, if an exponent is added on one side, it is also carried over to the other side. Therefore, for the integer k, m k ( p 1) ( p) k 1 mod However, 1 raised to any exponential power is 1 itself. Therefore, m k ( p 1) m k ( p 1) ( p) 1( mod p) k 1 mod But, k( p 1) = ( ed 1). So now, using the previously obtained result de k( p 1) ( ) (mod ) and the fact that m m m p k( p 1) = ( ed 1), de m m(mod p) 40 P a g e

41 CASE 2: when m is divisible by p p m p m k For any integer k Let l = k, as previously encountered So if k were to be replaced by de, de m p would leave a remainder of 0 since: p m, p m p m k de This can be rewritten as: m 0(mod p), m de 0(mod p) Now, since m and de m are both congruent to 0(mod p ), they are congruent to each other. de m m (mod p) de Therefore, in both cases, the result m m (mod p) is derived. de Similarly, using the same argument as used in case of p, the result m m (mod q) for the prime number q can be derived. 41 P a g e

42 d The result m m ( mod n) = e now needs to be derived using the aforementioned results. This can be done using the independent lemma previously proved on pages 20 and 21. Consider that, de m m (mod p) de m m (mod q) Since, the two prime numbers p and q both have the same modulus computation, their multiple pq will also have the same modulus computation. de So, m m (mod pq). But pq = n, de So, it is proved that m m (mod n) 42 P a g e

43 EFFECTIVENESS OF THE RSA ALGORITHM INFORMATION THEORETIC SECURITY: Information theoretically secure systems are completely secure with regards to information theory in that an adversary may never have any information about the cryptosystem without the required private key. The information in such systems is thus secure even if the adversary has unlimited computational power. COMPUTATIONAL SECURITY: Computationally secure systems are secure because the computational power required to break the systems is unavailable. A typical example of a computationally intensive task is the prime factorization of very large numbers. THE RSA PROBLEM 11 : e Given an RSA public key ( n, e ) and a cipher text, c m ( mod n), to compute m. 11 RSA Problem ~Ronald L. Rivest, MIT Laboratory for Computer Science and Burt Kaliski, RSA Laboratories. - December 10, P a g e

44 To solve the RSA Problem an adversary, who doesn t know the private key, must nonetheless invert the RSA function. The RSA Assumption is that the RSA Problem is hard to solve when the modulus n is sufficiently large and randomly generated, and the plaintext m (and hence the cipher text c ) is a random integer between 0 and n 1. The inversion of RSA requires the factorization of the modulus number n. If the value of n is that of a small integer, n becomes very easy to factor. For example, if n = 9991, it becomes easy to determine its factors. It can be found out by mental calculation that the factors of 9991 are 97 and 103. However, a large value of n such as that used in example 3 is difficult to factor. This is because prime numbers that are used to create the modulus n occur randomly along the number line and the prime factorization of a large n can be a computationally intensive process. Larger values of n need to be used to ensure that the prime factorization of n takes non polynomial time. USE OF RSA IN MODERN COMMUNICATION: The RSA algorithm is used to transfer data over the internet. Modern communication entails the transmission of data digitally and includes the sending of files and sensitive messages, commercial transactions, and sensitive social or personal information. All of this information is transmitted by secure websites using secure socket layers (SSL) which make use of RSA. The computationally intensive task of factorizing the modulus n makes RSA very secure. At the same time, the availability of a public key that can be exchanged between websites and computers without compromising security makes RSA an optimum choice for computer security. 44 P a g e

45 CONCLUSION The investigation in this extended essay addresses the research question: How does the RSA algorithm function and why is it used in modern communication? and demonstrates the relationship between number theory and RSA cryptography. Modular mathematics is used to create functions that are used for encryption and decryption. The two functions used are inverse functions due to which the padded integer appears from the cipher text after decryption. Because of the result provided by the Chinese remainder theorem, the modulus n yields the same modulus computation as its two prime factors, p d and q. The public key, private key, and modulus are related by m m ( mod n) this relation that is eventually proven to be true. = e and it is Furthermore, the RSA algorithm functions based on the results provided by mathematical theorems such as Fermat s little theorem. Prime numbers are immensely important in the functioning of RSA. Since prime numbers are located at random intervals, it is difficult to locate them in a given interval of numbers. Due to this, the prime factorization of any large number becomes a difficult task, especially if the number in question is a large semi prime number. The modulus n is a semi prime number which needs to be factorized in order to break RSA encryption. As the value of n gets larger, it becomes increasingly difficult to factorize and the task requires streamlined algorithms or mathematical applications and a lot of computational power. 45 P a g e

46 The RSA algorithm is used for the purposes of encryption and security in modern communication. This is chiefly because: 1. The encryption provided by RSA is difficult to break due to the difficulty involved in factoring large modulus numbers as explained previously. 2. The encryption provided by RSA is asymmetric or private key encryption that does not rely on just one key but on two separate keys known as the public and private keys. This makes the distribution of keys for encryption much easier and does not lead to the compromise of the private key that can be kept a secret. FURTHER INVESTIGATION: The fascinating RSA algorithm and the field of number theory offer a great number of possibilities that can be explored and investigated. The RSA algorithm discussed in this essay made use of only 2 prime numbers. Variants of RSA known as multi prime RSA can be investigated wherein more than 2 prime numbers can be used to generate the modulus instead of 2: n = pqr or n = pqrs. This might have an effect on the already computationally complex task of factoring the modulus. Another topic that can be investigated are any potential weaknesses that appear in e d the modular functions p c( mod n) and c p( mod n) and whether there exists any theoretical weakness that can be mathematically exploited to break RSA encryption. 46 P a g e

47 BIBLIOGRAPHY [1] S. P. Glasby Central Washington University February 2002 [2] Weisstein, Eric W. "Algorithm." From MathWorld--A Wolfram Web Resource. [3] Insall, Matt and Weisstein, Eric W. "Modular Arithmetic." From MathWorld--A Wolfram Web Resource. [4] Hobson, Nick; Nichol, Reid; and Weisstein, Eric W. "Modular Inverse." From MathWorld--A Wolfram Web Resource P a g e

48 [5] Weisstein, Eric W. "Fermat's Little Theorem." From MathWorld--A Wolfram Web Resource. [6] Weisstein, Eric W. "Totient Function." From MathWorld--A Wolfram Web Resource. [7] Weisstein, Eric W. "Chinese Remainder Theorem." From MathWorld--A Wolfram Web Resource. [8] Weisstein, Eric W. "Euler's Totient Theorem." From MathWorld--A Wolfram Web Resource. [9] Massachusetts institute of technology 48 P a g e

49 [10] Terr, David. "Polynomial Time." From MathWorld--A Wolfram Web Resource, created by Eric W. Weisstein. [11] RSA Problem ~Ronald L. Rivest, MIT Laboratory for Computer Science and Burt Kaliski, RSA Laboratories. - December 10, P a g e