Metamorphic malware changes its internal structure with each infection, while maintaining its core functionality. Detecting such malware is a challenging research problem. Function call graph analysis has previously shown promise in detecting such malware. In this research, we analyze the robustness of a function call graph score with respect to various code morphing strategies. We also consider modifications of the score that make it more robust in the face of such morphing

Bunder, Martin

Nitaj, Abderrahmane

Susilo, Willy

Tonien, Joseph

English

Let $N=pq$ be an RSA modulus with unknown factorization. Some variants of the RSA cryptosystem, such as LUC, RSA with Gaussian primes and RSA type schemes based on singular elliptic curves  use a public key $e$ and a private key $d$ satisfying an equation of the form  $ed- k\left(p^2-1\right)\left(q^2-1\right)=1$. In this paper, we consider the general equation $ex-\left(p^2-1\right)\left(q^2-1\right)y=z$ and  present a new attack that finds the prime factors $p$ and $q$ in the case that  $x$, $y$ and $z$ satisfy a specific condition. The attack combines the continued fraction algorithm and Coppersmith\u27s technique and can be seen as a generalization of the attacks of Wiener and Blömer-May on RSA

Martin Bunder

Abderrahmane Nitaj

Willy Susilo

Joseph Tonien

Cryptology ePrint Archive

A generalized attack on RSA type cryptosystems

Bunder, Martin W

Nitaji, Abderrahmane

Research Online

International audienceLet N = pq be an RSA modulus with unknown factorization. Some variants of the RSA cryptosystem, such as LUC, RSA with Gaussian primes and RSA type schemes based on singular elliptic curves use a public key e and a private key d satisfying an equation of the form ed − k (p^2 − 1)(q^2 − 1) = 1. In this paper, we consider the general equation ex − (p^2 − 1)(q^2 − 1)  y = z and present a new attack that finds the prime factors p and q in the case that x, y and z satisfy a specific condition. The attack combines the continued fraction algorithm and Coppersmith's technique and can be seen as a generalization of the attacks of Wiener and Blömer-May on RSA

HAL - Normandie Université

Rajeswaran, Deebiga

San Jose State University