Best Practices

John Clizbe John at Mozilla-Enigmail.org
Tue Dec 14 23:40:19 CET 2010


Ingo Klöcker wrote:
> On Tuesday 14 December 2010, Robert J. Hansen wrote:
>> Off by about a factor of 100 there.  RSA-2048 is roughly equivalent
>> to a 112-bit symmetric key; RSA-1024 is roughly equivalent to an
>> 80-bit key. 32 bits of difference equals a factor of four billion. 
>> It's way harder than you think.
> 
> Those equivalences have been mentioned a few times. Is there a good 
> (freely available) reference for this? Thanks in advance!

In the "multiple subkeys and key transition" thread, I wrote on 12/9/2010 at
16:28 (US/Central):
+> How do elliptic curves compare to RSA today?
+>
+> From the National Institutes of Science and Technology (one of the gold
+> standards for engineering know-how):
+>
+>  RSA    ECC    Sym
+>  1024   160     80
+>  2048   224    112  <+
+>  3072   256    128
+>  7680   384    192
+> 15360   512    256
+>
+> These recommendations can be found on page 63 of NIST Special
+> Publication 800-57, Recommendations for Key Management, Part I. 2nd Revision,
+> 8 Mar, 2007.
+>
[http://csrc.nist.gov/publications/nistpubs/800-57/sp800-57-Part1-revised2_Mar08-2007.pdf]
> 

-- 
John P. Clizbe                      Inet:John (a) Mozilla-Enigmail.org
FSF Assoc #995 / FSFE Fellow #1797  hkp://keyserver.gingerbear.net  or
     mailto:pgp-public-keys at gingerbear.net?subject=HELP

Q:"Just how do the residents of Haiku, Hawai'i hold conversations?"
A:"An odd melody / island voices on the winds / surplus of vowels"

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 499 bytes
Desc: OpenPGP digital signature
URL: </pipermail/attachments/20101214/9630d012/attachment-0001.pgp>


More information about the Gnupg-users mailing list