Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

RSA: Encrypting message using multiple keys

Tags:

security

cryptography

rsa

encryption

encryption-asymmetric

Is it possible to get additional security by encrypting a message using 2 or more RSA keys?

EDIT: A few clarifications:

The context I am most interested in doing this for is encrypting a randomly generated symmetric key.

I don't want to limit the question to encrypting twice in a row; the purpose is to avoid the high computational cost of large RSA keys. Using less straightforward tactics such as breaking the message into parts and encrypting them separately should be considered as an option.

It should be assumed that getting only part of the message is acceptable.

If you know of any publications where this is discussed specifically by an expert, or algorithms that use multiple RSA keys, then please contribute.

like image 917
UniCoder Avatar asked Jun 09 '10 05:06

UniCoder

2 Answers

No.

It is not safe to do thought experiments regarding cryptography. You are advised to keep narrowly to the path trodden by the experts.

And when the experts want to protect something better, they use a bigger key-size (at least 2048 bits is required, smaller certificates are insufficient for any peace of mind) or use elliptic curve certificates in preference to RSA.

Incidentally, you're remember that your message body is typically encrypted with a symmetric cipher and a random key, and that just this random key is encrypted with the public key of the recipient. Double-encrypting this secret key won't make this secret key longer, and won't impact an attacker's ability to brute-force that.

Quantum cryptography - I mention it only as an exciting aside, you need not factor this into your choice - promises interesting things for the keysizes: the RSA keys will be wiped out by Shor's algorithm, but the symmetric keys (Grover's) will be only half-lengthed (128-bits will be equiv to 64-bits, so will be crackable). There is of course debate about whether such quantum machines can be implemented etc etc :)

like image 141
Will Avatar answered Nov 22 '22 15:11

Will

No.

If Key A is compromised than encrypted with A+B will protect against the compromise, but outside that special case, you get no additional benefit.

like image 28
msw Avatar answered Nov 22 '22 14:11

msw
Sign in to Comment

Related questions

Symfony 5 : @IsGranted on method annotation doesn't work on inherited role
DDOS in Cloud Run
Spring security deployed app on AWS ThinkPHP request
Finding or building a python security profiler
Is Javascript a proper platform for cryptography? Or, can it be? [closed]
Audit trails and implementing SOX/HIPAA/etc, best practices for sensitive data
Allowing access to specific pages with ASP-MVC and Forms Authentication
When encoding HTML input for security, how do I avoid encoding international characters like Ñ or ñ?
Does Acegi/Spring security support getUserPrincipal()?
working with hashed passwords in ruby
Can i deny access to a jvm class by configuring java.policy file?
Shredding files in .NET
What's the accepted techniques for staying logged on to a web site?
Sanitizing User Regexp
For sending passwords over the wire, which is more secure: Diffie-Helman/AES or RSA? (It bothers me that AES doesn't obscure password length)
Java RMI with no SecurityManager
What's the best way to learn about programming security-related topics? (PHP) [closed]
HttpAddUrl permissions
PAM authentication problem
Authorization security of ASP.NET Forms authentication

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!