Public Key Encryption -- Part 5

Public Key Encryption -- Part 5: Cyclic Power

Table of Content

Power-raising in a Cycle
Bifactor Cycle
Key Pair Generation
How good is cyclic power encryption?
Public Key Encryption

We have used cyclic addition or multiplication to generate a pair of keys for encoding and decoding. However, in both cases, the decode key can be easily computed from the encode code, given some knowledge in math. Can raising power in the cyclic world make any improvement?

Raising power means multiplying a number by itself, a certain number of times:

Squaring is raising to the second power: x * x = x².
Cubing is raising to the third power: x * x * x = x³.

If you multiply a number x by itself b times, you are raising the number x to power b, x^b.

In the cyclic world of modulo n, you can raise number a to power b, and then divide by n to have its remainder. Or, since raising to power is repeated multiplication, you can take the remainder for each multiplication, so that you never need to deal with numbers greater than n. The process is written as:

    a^b mod n, or a^b mod n

In the ordinary world, power-raising will get you very large numbers, and undoing that means to take roots (square-root, cube-root, etc.), which is an exceedingly tedious process.

In the cyclic world, power-raising will not give large numbers -- the result, being a remainder, is always less than the modulo. Just as there is no division in cyclic math, there is no root-taking in cyclic math. However, since we can undo cyclic addition by another addition, undo cyclic multiplication by another multiplication, perhaps we can undo cycle power-raising by another power-raising?

Back to table of content

Bifactor Cycle

The math of cyclic power-raising is quite complicated. In fact, given a modulo n, it is not always possible to undo power-raising by another power-raising. However, if the modulo n is a product of distinct primes, this undoing is always possible. This means that, there is a way to generate two powers d and e, such that:

The encode key is (e,n); that is, to encode, perform (raise to power e, mod n) to each number of the message.
The decode key is (d,n); that is, to decode, perform (raise to power d, mod n) to each number of the coded message.

This is asymmetric encryption, since a pair of keys is used. To simplify our discussion, we consider only modulo n which are bifactors, consisting of two distinct primes p and q only (that is, n = pq). How to generate the pair of keys will be discussed next. Accepting that this is possible, and choosing the chop size b to be the integer less than log₂n (since chopping the data stream by chunks of b-bits means you get numbers ranging from 0 to 2^b-1), we are ready to perform cyclic power encryption, or RSA encoding.

Here, you can pick two primes p and q, the product pq will be the modulo. Press the button "Generate" will generate the pair of keys for encoding and decoding. Type in a message, and press the "RSA" button to see cyclic power-raising encoding in action.

You can verify the first step (from symbols to binary) by this ASCII converter.
You can verify the last step (from binary to symbols) by this ASCII decoder.

You can verify the calculations by this Modulo Power Calculator.

Back to table of content

Key Pair Generation

With cyclic power encoding, when a number x is encoded, the coded number is: y = x^e mod n.
To decode the number y, we compute: y^d mod n = (x^e)^d mod n = x^{(e * d)} mod n.
However, for the power-raising to undo each other, it is not that: e * d = 1 mod n.

Instead, from the Fermat-Euler theorem, the correct condition is:

         e * d = 1  mod phi(n)    for n = product of distinct primes

where the symbol phi(n) is called the Euler's phi-function of n: it counts how many numbers less than the modulo n are relatively prime to n.

If the modulo n is a bifactor, that is, n = pq, then phi(n) = phi(pq) = (p-1)(q-1).

Therefore, once two different primes p and q are chosen, we have a bifactor n = pq. Then we can compute m = phi(n) = (p-1)(q-1). Just as in the case of key-pair generation of cyclic multiply encoding, we can choose a number e which is relatively prime to m (that is, gcd(e, m) = 1) as the encode key. Then we can use the extended Euclidean algorithm to compute the decode key d, which is the inverse of e in modulo m (that is, e * d = 1 mod m, or e * d = 1 mod phi(n)).

Back to table of content

How good is cyclic power encryption?

Cyclic power encryption, or RSA encryption, uses a pair of keys e and d derived from the modulo n=pq, a bifactor. The relationship between the keys e and d is: e * d = 1 mod phi(n), so you need to know phi(n) before you can apply standard math procedures to compute d from e.

Given a number n, the only known way to compute phi(n) is through its factorization. For example, if n = pq, then phi(n) = (p-1)(q-1).

The beauty of the RSA encryption is:

Given two primes p and q, it is easy to compute their product n=pq, enabling the generation of a pair of keys (e,n) and (d,n) for encoding and decoding.
Given the product n, it is exceedingly difficult to factorize n and thereby compute phi(n), making it almost impossible to compute (d,n) even if (e,n) is known, for sufficiently large modulo n, a bifactor: product of two primes.

Since the decode key is difficult to find, even if the encode key is known, this scheme will be very secure indeed.

Indeed, RSA encryption is now the basis of several security protocols for message exchange over the Internet. In practical uses of RSA, primes more than 100-digits are routinely used.

Back to table of content

Public Key Encryption

In the RSA scheme, it is very difficult to compute the decode key (d,n) even when the encode key (e,n) is known. Given this characteristics, this means that we can actually make the encode key public, and we just keep the decode key private. We can use the following terms:

public key - the encode key
private key -- the decode key

You can make the public key public by:

sending the key to your partner without any encryption, or
publish the key in a public-key directory, similar to the phone directory.

In this way, anyone trying to send you something secret, be your partner or someone looking up your public key in the public-key directory, they can encode the message by the public key. Only you have the private key, and only you can decode and read the message. This is content security.

Alternatively, if you have something important to tell your partner, or the world, you can encode the message by your private key. Anyone can read your message by decoding that using the public key. Moreover, everyone knows that the message must be from you: since only you holds the private key. This is called authentication.

The RSA encryption can be applied for any modulo n which is a product of distinct primes. Here, you can choose any modulo n, not restricted to a bifactor. In fact, you can put in a product of factors. Click the "Generate" button, and the modulo value will be computed, along with its phi-function value. Then a pair of keys will be generated, as before. You can press "Anthor Pair" button for other pairs of keys. Click the "RSA Again" button and scroll up to see how this pair does encoding/decoding. However, unless your modulo number is a product of distinct primes, you'll find that the encoding/decoding breaks down.

Back to table of content

Back to home.

Public Key Encryption -- Part 5: Cyclic Power

Table of Content

Power-raising in a Cycle

Bifactor Cycle

Key Pair Generation

How good is cyclic power encryption?

Public Key Encryption