Key length for integer- and finite-field cryptography

Peter Gutmann pgut001 at
Tue Aug 12 13:41:40 CEST 2014

[Apologies if you've seen this before, it looks like up to a week's worth of
 mail from here has been lost, this is a resend of the backlog]

David Leon Gil <coruus at> writes:

>Take-home: If you are using AES-256, you should max out your key size in

Not quite.  The proper version is:

Take-home: If you believe in NIST's crypto numerology, you should should use
ridiculous key sizes.  For everyone else: Nothing to see here, move along.


More information about the Gnupg-devel mailing list