[openssl-users] PKCS#7

Wouter Verhelst wouter.verhelst at fedict.be
Wed Mar 15 12:01:32 UTC 2017

On 15-03-17 05:13, valéry wrote:
> Hi,
> thank you very much for your response.
> Say someone would be able to gather several clear text AES keys and
> their respective asymmetrically encrypted RSA blocks. Would it weakens
> the security of the RSA key pair ? I mean could it be easier for someone
> using that information to brute force an RSA key pair ?

Think of it this way:

As far as the RSA algorithm is concerned, the AES keys are just data. 
They happen to be AES keys, but they might have been a hash value, an 
image, or somebody's date of birth.

If getting the cleartext as well as the encrypted text for an RSA 
message would allow you to more easily guess the RSA key, then the RSA 
algorithm would be seriously flawed.

There is no known attack against RSA for which this is true, however, as 
Rich pointed out.

Wouter Verhelst

More information about the openssl-users mailing list