ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] New Issue: 512 too short?

2006-03-17 09:51:29
from [Russ Housley] [Permanent Link] 
Security AD Advice
512-bit RSA keys are too short. They may be acceptable when the crypto period is very short (say a week). I cannot envision most administrators accepting the management burden associated with such short crypto periods. 

Proposed text:
Since short RSA keys are susceptible off-line attacks, signers MUST use RSA keys of at least 1024 bits for long-lived keys. Receivers MUST be able to validate signatures with keys ranging from 512 bits to 2048 bits, and they MAY be able to validate signatures with larger keys. Security policies may use the length of the signing key as one metric for determining whether a signature is acceptable. 

Russ

_______________________________________________
NOTE WELL: This list operates according to http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] ABNF: Sender = Originator / Operator, Jeff Macdonald
Next by Date:  [ietf-dkim] If not "retailer", then...?, Dave Crocker
Previous by Thread:  Re: [ietf-dkim] New Issue: 512 too short?, Douglas Otis
Next by Thread:  Re: [ietf-dkim] New Issue: 512 too short?, Arvel Hathcock
Indexes:  [Date] [Thread] [Top] [All Lists]