[gnutls-devel] GnuTLS | Ed448 keys are indicated as having a 456-bit "security level" (#1231)

Read-only notification of GnuTLS library development activities gnutls-devel at lists.gnutls.org
Fri May 7 21:23:28 CEST 2021

Daniel Kahn Gillmor created an issue: https://gitlab.com/gnutls/gnutls/-/issues/1231

It's not clear why a curve448 key might claim to have 456 bits of "security":

0 dkg at alice:~$ certtool --generate-privkey --key-type ed448
Generating a 256 bit EdDSA (Ed448) private key ...
Public Key Info:
	Public Key Algorithm: EdDSA (Ed448)
	Key Security Level: Ultra (456 bits)

curve:	Ed448

I think this should be 448 bits.  (i know that "security levels" in the Ultra range are basically indistinguishable in their overwhelming strength, but this is still a bit of an odd mismatch)

Reply to this email directly or view it on GitLab: https://gitlab.com/gnutls/gnutls/-/issues/1231
You're receiving this email because of your account on gitlab.com.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.gnupg.org/pipermail/gnutls-devel/attachments/20210507/6260fdd2/attachment.html>

More information about the Gnutls-devel mailing list