Root computation problem

From Groupprops
Revision as of 00:15, 4 January 2012 by Vipul (talk | contribs) (Created page with "==Definition== The '''root computation problem''' is a problem usually asked in the context of an encoding of a group or multi-encoding of a group. The input is an el...")
(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)

Definition

The root computation problem is a problem usually asked in the context of an encoding of a group or multi-encoding of a group. The input is an element g of the group and an integer m such that we are promised that m is relatively prime to the order of the group. The goal is to find the unique h such that hm=g.

Related problems

Relation with cryptography

The RSA encryption technique is based on the idea that the root computation problem is much harder than the power computation problem if the order of the group is unknown. Specifically, the group is the multiplicative group of invertible elements in the ring of integers mod n where n is the product of two large and secret primes. The order of this group is the Euler totient function of n, and computing this is equivalent to factorizing n, a problem that is believed to not have a polynomial time algorithm.

The public encryption key is based on the power map hhm and the private decryption key is based on the root map that inverts this. The idea is that even though the encryption key is public, the decryption key cannot be obtained from it without knowledge of the factorization of n.

This means that if a black box group algorithm is found that does not rely on the order-finding problem, that would break RSA.

Solution

Solution dependent on power computation and order-finding