RSA/Intuative

The algorithm is based on a Fermat's little theorem

: a^(p−1) ≡ 1 (mod p)

p prime, a & p coprime.

So, if we choose d such that

: ed ≡ 1 (mod p − 1)

i.e.

: ed − 1 = k(p−1)

Then for a message m

: m^{e^d} ≡ m^ed ≡ m^(ed−1) ⋅ m¹ ≡ m^k(p−1)m ≡ 1^km ≡ m (mod p)

So a message that is encrypted by raising m to e can be decrypted by raising the result to d.

In order to provide security, RSA actually calulates

: n = pq

(p, q prime) and then d such that

: ed ≡ 1 (mod (p−1)(q−1))

so

: ed − 1 = k(p−1)(q−1)

We can then continue to calculate

: m^{e^d} ≡ m^ed ≡ m^(ed−1)m ≡ m^{k(p−1)(q−1)}m ≡ 1^k(q−1)m ≡ m (mod p)

And likewise for q

: m^{e^d} ≡ m^ed ≡ m^(ed−1)m ≡ m^{k(p−1)(q−1)}m ≡ 1^k(p−1)m ≡ m (mod q)

Now if a ≡ b (mod p) and a ≡ b (mod q) then a ≡ b (mod pq), p, q coprime.

so

: m^{e^d} ≡ m (mod pq)

An attacker would need to factor n into p and q in order to determine d, and this is a hard problem.

Note that while an attacker could easily calculate f as

: ef ≡ 1 (mod n − 1)

that

: m^{e^f} ≡ m^k(n−1)m ≠ m (mod n)

because n is not prime.

🪦 Wikipedia History

7.5 yearsage

1editors

1edits

Archive Provenance

Created: March 14, 2010

Deleted: October 31, 2017

Article size: 1.5 KB

Technical Metadata

Wikipedia page ID: 25964191

Metadata captured: May 8, 2026 10:19 PM

Metadata updated: May 8, 2026 10:19 PM

Why Deleted

Speedy

Dependent content: Pages that depend on a deleted or non-existent page

Talk page of deleted article

by AnomieBOT III

G8: Broken redirect to :RSA/Intuitive. If this bot is malfunctioning, please report it at AnomieBOT III/shutoff/BrokenRedirectDeleter

Archive Inventory

View stored source record counts

Revision rows stored: 0

Outgoing links stored: 1

External links stored: 0

Templates stored: 2

Talk exports stored: 0

AfD exports stored: 0

Raw API payloads stored: 0

Image records stored: 0

View full source metadata

Outgoing Wikipedia links (1)

Fermat's little theorem

Templates (2)

Lead missingUncategorized