Skip to content

A Python 3 script to describe RSA Common Modulus Attack. Supports various output formats.

License

Notifications You must be signed in to change notification settings

maximmasiutin/rsa-common-modulus

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

24 Commits
 
 
 
 
 
 
 
 

Repository files navigation

RSA Common Modulus

A Python 3 script to describe the RSA Common Modulus Attack. Supports various output formats.

The RSA Common Modulus Attack can be explained in the following way. If a single plaintext has been encrypted to two ciphertexts by keys with the same modulus but different exponent, this plaintext can be recovered if gcd(e1, e2) = 1 and gcd(ct2, n)=1.

This is a script originally written by Andreas Pogiatzis in 2018 https://infosecwriteups.com/rsa-attacks-common-modulus-7bdb34f331a5

Maxim Masiutin ported this script in 2021 to Python 3 and added the option to configure the output format, and the code to check that the plaintexts from both decrypted messages to be the same.

This cript can be used as a CTF (capture the flag) tool.

Copyright 2018 Andreas Pogiatzis

Copyright 2021 Maxim Masiutin

References

  1. John M. Delaurentis, "A further weakness in the common modulus protocol for the RSA cryptoalgorithm", Cryptologia (1984), vol. 8, nr. 3, pag. 253-259, doi 10.1080/0161-118491859060, Taylor & Francis;
  2. Wen-Guey Tzeng "Common modulus and chosen-message attacks on public-key schemes with linear recurrence relations", Information Processing Letters (1999), Volume 70, Issue 3, Pages 153-156, ISSN 0020-0190;
  3. Hinek, M. and Charles C. Y. Lam. “Common modulus attacks on small private exponent RSA and some fast variants (in practice)." J. Math. Cryptol (2010).
  4. Andreas Pogiatzis "RSA Attacks: Common Modulus" https://infosecwriteups.com/rsa-attacks-common-modulus-7bdb34f331a5 InfoSec Write-ups (2018).

Usage

./rsa-common-modulus.py --help
usage: rsa-common-modulus.py [-h] -n MODULUS -e1 E1 -e2 E2 -ct1 CT1 -ct2 CT2 [-q] [-of {decimal,hex,base64,quoted,ascii,utf-8,raw}]

RSA Common modulus attack

optional arguments:
  -h, --help            show this help message and exit
  -q, --quiet
  -of {decimal,hex,base64,quoted,ascii,utf-8,raw}, --outputformat {decimal,hex,base64,quoted,ascii,utf-8,raw}

required named arguments:
  -n MODULUS, --modulus MODULUS
                        Common modulus
  -e1 E1, --e1 E1       First exponent
  -e2 E2, --e2 E2       Second exponent
  -ct1 CT1, --ct1 CT1   First ciphertext
  -ct2 CT2, --ct2 CT2   Second ciphertext

Example

./rsa-common-modulus.py --moduluse1 3 --ct1 677857017311763186860567982654337032650834586690095258338235412812228467611035329090649921205228953198535625711022945876204650198045325847258301676934646614423616990415191913570666093383913463001326454280361403407607686684102465371942022713121890433591998561871665682397006511651344750053237409941064414645886555685688807651570672751381738598840430594975227190501615345745968967821285535616165986198671691377028117465961830219713461759558403414387177246415440645361044504400569481118995297580096967835695317416763301434554234397996433246180679748610090981124894668706889506848323747962564526137972614875972972192302984597297033318488280486242895302087407899762837918262857934652018585335691953378174052229396432060930635228202890687717669316718285891145998140984357560231897920371005520716264899681852382730051852536731165421684996451077286546319712195872602906040467326577101221528456760828093900950948924996262543470972266061604840215505501324963605312049988678793296255515350112037056850966041404320745982460944124895847690169173071342857962130341858069349579000988755992128058090484640749963821143833617833092376598840161724626184224231427547414797678750003926356112407360212430895514105702539975372169078233219887553101433335602 --e2 65537 --ctoutputformat ascii --quiet

About

A Python 3 script to describe RSA Common Modulus Attack. Supports various output formats.

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages