Abstract

An encryption method is presented with the novel property that publicly revealing an encryption key does not thereby reveal the corresponding decryption key. This has two important consequences: (1) Couriers or other secure means are not needed to transmit keys, since a message can be enciphered using an encryption key publicly revealed by the intented recipient. Only he can decipher the message, since only he knows the corresponding decryption key. (2) A message can be “signed” using a privately held decryption key. Anyone can verify this signature using the corresponding publicly revealed encryption key. Signatures cannot be forged, and a signer cannot later deny the validity of his signature. This has obvious applications in “electronic mail” and “electronic funds transfer” systems. A message is encrypted by representing it as a number M, raising M to a publicly specified power e, and then taking the remainder when the result is divided by the publicly specified product, n , of two large secret primer numbers p and q. Decryption is similar; only a different, secret, power d is used, where e * d ≡ 1(mod (p - 1) * (q - 1)). The security of the system rests in part on the difficulty of factoring the published divisor, n .

Keywords

EncryptionComputer sciencePublic-key cryptographyDigital signatureKey (lock)Computer securityCryptosystemDECIPHERSignature (topology)Theoretical computer scienceMathematicsHash function

Related Publications

Publication Info

Year
1978
Type
article
Volume
21
Issue
2
Pages
120-126
Citations
12717
Access
Closed

External Links

View on DOI.org

Social Impact

Altmetric
PlumX Metrics

Social media, news, blog, policy document mentions

Citation Metrics

12717
OpenAlex

Cite This

Ronald L. Rivest, Adi Shamir, Leonard M. Adleman (1978). A method for obtaining digital signatures and public-key cryptosystems. Communications of the ACM , 21 (2) , 120-126. https://doi.org/10.1145/359340.359342

Identifiers

DOI
10.1145/359340.359342