SSH Agent keys >4096 bit?

Robert J. Hansen rjh at
Thu May 3 21:09:42 CEST 2012

On 05/03/2012 01:14 PM, Ali Lown wrote:
> Does anyone know why the limit is set at 4096 bits

The consensus of the cryptographic community is that beyond 3K keys you
really need to be switching to elliptical-curve cryptography.  A 3K RSA
or Elgamal key is roughly as difficult to break by brute-force as
AES128, and that one's so hard that nobody with two brain cells to rub
together is going to try it.

Although I am not a GnuPG developer, I have never heard anything from
the core devs which would make me think they are planning on revisiting
this limit to allow for extraordinarily large keys.

More information about the Gnupg-users mailing list