tags:

views:

213

answers:

3
+1  Q: 

Generating exactly prime number with Java

Hi, I'm aware of the function BigInteger.probablePrime(int bitLength, Random rnd) that outputs probably prime number of any bit length. I want a REAL prime number in Java. Is there any FOSS library to do so with acceptable performance? Thanks in advance!

EDIT:

I'm looking at 1024 & 2048 bit primes.

A: 

Make a method and wrap it.

BigInteger definitePrime(int bits, Random rnd) {
    BigInteger prime = new BigInteger("4");
    while(!isPrime(prime)) prime = BigInteger.probablePrime(bits,rnd);
    return prime;
}
glowcoder  2010-05-21 12:57:08
Sorry, did you understand what I want?
Viet  2010-05-21 13:05:17
+4  A: 

There are some methods to generate very large primes with acceptable performance, but not with sufficient density for most purposes other than getting into the Guiness Book of Records.

Look at it like this: the likelihood that a number returned by probablePrime() is not prime is lower than the likelihood of you and everyone you know getting hit by lighting. Twice. On a single day.

Just don't worry about it.

Michael Borgwardt  2010-05-21 13:03:03
Thanks but I'm looking for cryptographically secure random prime numbers.
Viet  2010-05-21 13:06:31
@Viet, I'm assuming you want to implement an RSA algorithm? Even the official implementations of these need to use probable primes.
teehoo  2010-05-21 13:08:57
the cryptographic community uses probable prime tests to generate cryptographically secure random prime numbers.
Jason S  2010-05-21 13:09:02
@teehoo: they don't *need* to use probable primes, but in practice they do.
Jason S  2010-05-21 13:09:28
@Jason, I meant if they want to find a prime in an acceptable amount of time they need to :)
teehoo  2010-05-21 13:12:29
So "probable" is an understatement, but they didn't want to name the method `almostAlwaysButOnceInABlueMoonNotPrime()`... ;-)
Jesper  2010-05-21 13:12:59
@Viet: Then use probablePrime(). That's what is for. Nobody in the whole wide world knows a better method. And if they did, it would most likely mean that prime-based cryptography has become useless.
Michael Borgwardt  2010-05-21 13:19:48
Thanks guys! @teehoo: Any proof of that statement? I know that OpenSSL uses probably prime numbers http://www.openssl.org/docs/crypto/BN_generate_prime.html .
Viet  2010-05-21 13:22:03
"there is no software, FOSS or otherwise, that can decide in acceptable time whether a given large number is prime or not." -- not necessarily true
Jason S  2010-05-21 13:25:18
@Jason: right, I learned something from your post and removed that statement, though it still hinges on the definition on "acceptable time".
Michael Borgwardt  2010-05-21 13:40:40
@Viet, check out "Choice of p and q" at http://project.cyberpunk.ru/idb/cryptography.htmlThis article was published by NIST sometime ago.
teehoo  2010-05-21 17:25:04
@Michael: agreed. devil's always in the details. :-)
Jason S  2010-05-21 18:04:22
+2  A: 

edit: Or, if you don't trust the isProbablePrime to be large enough certainty, use the BigInteger constructor BigInteger(int bitLength, int certainty, Random rnd) that lets you tune your certainty threshold:

certainty - a measure of the uncertainty that the caller is willing to tolerate. The probability that the new BigInteger represents a prime number will exceed (1 - 1/2certainty). The execution time of this constructor is proportional to the value of this parameter.

Probabilistic tests used for cryptographic purposes are guaranteed to bound the probability of false positives -- it's not like there's some gotcha numbers that exist that will sneak through, it's just a matter of how low you want the probability to be. If you don't trust the Java BigInteger class to use these (it would be nice if they documented what test was used), use the Rabin-Miller test.

Jason S  2010-05-21 13:08:18
"fast" is very, very relative here, of course.
Michael Borgwardt  2010-05-21 13:24:57
+1 - however, it should be noted that the worst case of AKS is `O((logN)^12)`. That is fast compared with factorizing a prime `N`, but not fast in absolute terms.
Stephen C  2010-05-21 13:34:04
+1 thanks! Adding certainty surely increases security.
Viet  2010-05-24 16:52:26
"Adding certainty surely increases security" -- you can be fairly certain but not absolutely certain. ;-)
Jason S  2010-05-24 19:02:31

related questions

Java Time Zone is messed up
Eclipse on win64
Automate builds for Java RCP for deployment with JNLP
Why are professors or schools picking Java over C++ to teach to students?
Is there a real benefit of using J#?
Public/Popular Websites using JavaServer Faces
Why can't I use a try block around my super() call?
Accessing post variables using Java Servlets
Personal Linux web server
Is this really widening vs autoboxing?
How can I Java webstart multiple, dependent, native libraries?
Why can't I call toString() on a Java primitive?
How do I use Java to read from a file that is actively being written?
What code analysis tools do you use for your Java projects?
IllegalArgumentException or NullPointerException for a null parameter?
How do I configure and communicate with a serial port?
What is the best way to parse strings in Java
Getting started with a custom JXTA PeerGroup
Creating a custom button in Java
How to get started "writing" a code coverage tool?
Which Build-/Configuration Management Tool?
What is the difference between an int and an Integer in Java/C#?
What is the meaning of the type safety warning in certain Java generics casts?
How would you access Object properties from within an object method?
Converting CSV File to XML in Java