Efficient Factoring Based on Partial Information

Rehovot 7 6 1 0 0 , I s r a e l Many r e c e n t l y p r o p o s e d c r y p t o s y s t e m s a r e based on t h e a s s u m p t i o n t h a t f a c t o r i n g l a r g e c o m p o s i t e i n t e g e r s i s c o m p u t a t i o n a l l y d i f f i c u l t. I n t h i s p a p e r w e e x a m i n e t h i s a s s u m p t i o n when t h e c r y p t a n a l y s t h a s " s i d e i n f o r m a t i o n " a v a i l a b l e. I n c r y p t o g r a p h i c a p p l i c a t i o n s , however, t h e c r y p t a n a l y s t may have a v a i l a b l e a d d i t i o n a l " s i d e i n f o r m a t i o n " above and beyond t h e number N i t s e l f. I n p r a c t i c e , o n e o f t h e p a r t i e s t y p i c a l l y knows P a n d Q a l r e a d y , and u s e s t h e s e f a c t o r s e x p l i c i t l y d u r i n g h i s c r y p t o g r a p h i c c o m p u …