RE: IPS security draft: SRP groups

To: vince_cavanna@agilent.com
Subject: RE: IPS security draft: SRP groups
From: Paul Koning <ni1d@arrl.net>
Date: Fri, 12 Jul 2002 10:14:58 -0400
Cc: Black_David@emc.com, ips@ece.cmu.edu, tom@arcot.com
Content-Transfer-Encoding: 8bit
Content-Type: text/plain; charset=iso-8859-1
References: <01A7DAF31F93D511AEE300D0B706ED9201BF49EF@axcs13.cos.agilent.com>
Sender: owner-ips@ece.cmu.edu

>>>>> "vince" == vince cavanna <vince_cavanna@agilent.com> writes:

 vince> Hi David, I can't prove so, but Mathematica from Wolfram
 vince> certifies as prime (in a matter seconds) all five moduli
 vince> specified in the iSCSI security draft for use in SRP! I used
 vince> the PrimeQ built-in function. PrimeQ first tests for
 vince> divisibility using small primes, then uses the MillerRabin
 vince> strong pseudoprime test base 2 and base 3, and then uses a
 vince> Lucas test. I have not explored the nature of these tests.

Miller-Rabin is a probabilistic test.  As for "Lucas" -- the Handbook
of Applied Cryptography lists "Lucas-Lehmer primality test for
Mersenne numbers".  That suggests that this test has no meaning for
numbers that aren't Mersenne numbers (such as randomly chosen
numbers). 

So I think you have a probabilistic primality test here, similar to
what Tom did.  That's certainly useful confirmation, but it doesn't
sound like we have the primality proofs yet.  (Unfortunately, HAC is
not sufficiently helpful in pointing to an algorithm to to so...)

    paul

References:
- RE: IPS security draft: SRP groups
  - From: vince_cavanna@agilent.com

Prev by Date: remove
Next by Date: RE: IPS security draft: SRP groups
Prev by thread: RE: IPS security draft: SRP groups
Next by thread: RE: IPS security draft: SRP groups
Index(es):
- Date
- Thread

Home

Last updated: Fri Jul 12 12:18:50 2002
11300 messages in chronological order