Blum–Micali algorithm

This article is an orphan, as no other articles link to it. Please introduce links to this page from related articles; try the Find link tool for suggestions. (February 2009)

The Blum-Micali algorithm is a cryptographically secure pseudorandom number generator. The algorithm gets its security from the difficulty of computing discrete logarithms.^[1]

Let ${\displaystyle p}$ be an odd prime, and let ${\displaystyle g}$ be a primitive root modulo ${\displaystyle p}$. Let ${\displaystyle x_{0}}$ be a seed, and let

${\displaystyle x_{i+1}=g^{x_{i}}\ {\bmod {\ p}}}$.

The ${\displaystyle i}$th output of the algorithm is 1 if ${\displaystyle x_{i}<{\frac {p-1}{2}}}$. Otherwise the output is 0.

In order for this generator to be secure, the prime number ${\displaystyle p}$ needs to be large enough so that computing discrete logarithms modulo ${\displaystyle p}$ is infeasible.^[1] To be more precise, if this generator is not secure then there is an algorithm that computes the discrete logarithm faster than is currently thought to be possible.^[2]

There are a paper discussing possible examples of the quantum permanent compromise attack to the Blum-Micali construction. This attacks illustrate how a previous attack to the Blum-Micali generator can be extended to the whole Blum-Micali construction, including the Blum-Blum-Shub and Kaliski generators.^[3]

• http://crypto.stanford.edu/pbc/notes/crypto/blummicali.xhtml

This cryptography-related article is a stub. You can help Wikipedia by expanding it.

• v
• t
• e