Storing RSA Private Keys In Your Head

Author

Krivoruchko, Taisya ; Diamond, James ; Hooper, Jeff

Author_Institution

Jodrey Sch. of Comput. Sci., Acadia Univ., Wolfville, NS

fYear

2006

fDate

Dec. 2006

Firstpage

129

Lastpage

138

Abstract

An issue when using the RSA public-key system is that for reasonable levels of security, both the public key and the private key must be quite large. Since few people are capable of memorizing a 1024-bit private key, most people must store this number on a computer hard drive or other digital storage device. There are (at least) three problems with this; the first is that if your computer is even temporarily compromised, your private key could be stolen. The second is that if you are away from your computer (and don´t have your key on a portable storage device) but need your private key to access some resource, you are unable to do so. The third is that your key could be irrevocably lost because of hardware problems. This paper describes a way of generating a public/private RSA key pair from a passphrase to overcome these problems. Although the paper´s focus is on the generation of RSA keys, the process can be applied to any cryptosystem (symmetric or asymmetric) which relies on random data for generating keys

Keywords

private key cryptography; public key cryptography; random number generation; RSA private key system; RSA public-key system; computer hard drive; cryptosystem; digital storage device; portable storage device; public/private RSA key pair; random data key generation; Computer science; Computer security; Drives; Hardware; Mathematics; Portable computers; Public key; Public key cryptography; Statistics; Web pages;

fLanguage

English

Publisher

ieee

Conference_Titel

Dependable Computing, 2006. PRDC '06. 12th Pacific Rim International Symposium on

Conference_Location

Riverside, CA

Print_ISBN

0-7695-2724-8

Type

conf

DOI

10.1109/PRDC.2006.58

Filename

4041897