[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: speaking of keys



I disagree.  768 is barely sufficient for single DES.  It's clearly 
insufficient for most everything people ought to be using (and 
whatever's likely to be the default MUST).

Derrell

On Friday, December 13, 2002, at 11:09 AM, Paul Hoffman / VPNC wrote:

> At 10:45 AM -0800 12/13/02, Derrell Piper wrote:
>> So do I.  Require support for 1024, 1536, and 2048.  And forbid 
>> anything less than 1024.  This gives us maximal interoperability and 
>> good security when you want to pay the price.
>
> This would also show that we aren't very good at math. If we allow 
> encryption mechanisms with keys of less than about 80 bits, we have to 
> allow public keys that match those smaller sizes.
>
> --Paul Hoffman, Director
> --VPN Consortium