Cryptanalysis of RSA with Private Key d Less than N0.292

@inproceedings{Boneh1999CryptanalysisOR,
  title={Cryptanalysis of RSA with Private Key d Less than N0.292},
  author={Dan Boneh and Glenn Durfee},
  booktitle={EUROCRYPT},
  year={1999}
}
We show that if the private exponent d used in the RSA public-key cryptosystem is less than N0:292 then the system is insecure. This is first improvement over an old result of Wiener showing that when d < N0:25 the RSA system is insecure. We hope our approach can be used to eventually improve the bound to d < N0:5.