Prime and Prejudice: Primality Testing Under Adversarial Conditions
https://eprint.iacr.org/2018/749 [eprint.iacr.org]
2018-10-31 03:40
This work provides a systematic analysis of primality testing under adversarial conditions, where the numbers being tested for primality are not generated randomly, but instead provided by a possibly malicious party. Such a situation can arise in secure messaging protocols where a server supplies Diffie-Hellman parameters to the peers, or in a secure communications protocol like TLS where a developer can insert such a number to be able to later passively spy on client-server data.
Note: Updated to include details on vulnerabilities in Apple crypto libraries.