[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Fwd: Re: IKEv2 Key Size Conformance Requirements



Paul Hoffman / VPNC <paul.hoffman@vpnc.org> writes:

>Peter is generally the best Keeper Of Interesting Certs around, so I'll trust
>his judgement on this. If no one here says "1536 is important to me", I'm fine
>with taking it out of the MUSTs.

I've grepped the collection and found a single cert with a 1536-bit key.  This
has an OU of 'Bovine Ballistics, Inc', uses md2WithRSA, (deprecated) X.509v2
subject and issuer unique IDs, and some other oddities, so I don't think it's
worth worrying about.  All others were 512, 1024, or 2048 except for one or
two really old certs at 768.

Peter.