Starting in 1991, RSA Data Security offered a set of “challenges” intended to measure the difficulty of integer factoring. The challenges consisted of a list of 41 RSA Numbers, each the product of two primes of approximately equal length, and another, larger list of Partition Numbers generated according to a recurrence.
The first five of the RSA Numbers, ranging from 100 to 140 decimal digits (330–463 bits), were factored successfully by 1999 (see [2] for details on the largest of these). An additional 512-bit (155-digit) challenge number was later added in view of the popularity of that key size in practice; it was also factored in 1999 [1].
In addition to the formal challenge numbers, an old challenge number first published in August 1977, renamed ‘RSA-129’, was factored in 1994 [1].
The Quadratic Sieve was employed for the numbers up to RSA-129, and the Number Field Sieve for the rest. The work factor in MIPS-years, summarized in Table 1, was roughly in line with expectations for...
References
Atkins, D., M. Graff, A.K. Lenstra, and P.C. Leyland (1995). “The magic words are SQUEAMISH OSSIFRAGE.” Advances in Cryptology—ASIACRYPT'94, Lecture Notes in Computer Science, vol. 917, eds. J. Pieprzyk and R. Safavi–Naini. Springer, Berlin, 263–277.
Cavallar, Stefania, Bruce Dodson, Arjen Lenstra, Paul Leyland, Walter Lioen, Peter L. Montgomery, Brian Murphy, Herman te Riele, and Paul Zimmermann (1999). “Factorization of RSA-140 using the number field sieve.” Advances in Cryptology—ASIACRYPT'99, Lecture Notes in Computer Science, vol. 1716, eds. K.Y. Lam, E. Okamoto, and C. Xing. Springer, Berlin, 195–207.
Cavallar, Stefania, Bruce Dodson, Arjen Lenstra, Paul Leyland, Walter Lioen, Peter L. Montgomery, Brian Murphy, Herman te Riele, et al. (2000). “Factorization of a 512-bit RSA modulus.” Advances in Cryptology—EUROCRYPT 2000, Lecture Notes in Computer Science, vol. 1807, ed. B. Preneel. Springer, Berlin, 1–18.
Contini, Scott (1999). “The Factorization of RSA-140.” RSA Laboratories' Bulletin 10. March 8, 1999. Available from http://www.rsasecurity.com/rsalabs/bulletins/
Editor information
Editors and Affiliations
Rights and permissions
Copyright information
© 2005 International Federation for Information Processing
About this entry
Cite this entry
Kaliski, B. (2005). RSA factoring challenge. In: van Tilborg, H.C.A. (eds) Encyclopedia of Cryptography and Security. Springer, Boston, MA . https://doi.org/10.1007/0-387-23483-7_362
Download citation
DOI: https://doi.org/10.1007/0-387-23483-7_362
Publisher Name: Springer, Boston, MA
Print ISBN: 978-0-387-23473-1
Online ISBN: 978-0-387-23483-0
eBook Packages: Computer ScienceReference Module Computer Science and Engineering