Click on the steps of the key generation, encryption of a message, and decryption of a message to see the values of the variables as they are chosen and computed. In the dashed boxes the information known to Alice and Box and the information that can be observed by the eavesdropper Eve is shown.

New Example

Restart

Eve knows:
Alice knows	Bob: Key Generation	Bob chooses p	Bob knows
		Bob chooses g
		Bob chooses b
		Bob computes B=g^b⊗
		Bob publishes his public key (p,g,B)
	Public key directory. .
	Alice wants to send Bob the secret message m
	Alice gets (p,g,B) from public key directory	Alice: Encryption
	Alice chooses a
	Alice computes A=g^a⊗
	Alice computes s=B^a⊗
	Alice encrypts m as X=m⊗s
	Alice sends (A,X)	Bob receives (A,X)
	Bob: Decryption	Bob computes s=A^b⊗
		Bob finds s^-1⊗ with s⊗s^-1⊗=1
		Bob decrypts X to m=X⊗s^-1⊗