Jerome Baum wrote: > Grant Olson <k...@grant-olson.net> writes: > >> On 03/22/2011 06:06 PM, Jonathan Ely wrote: >>> I really wish 8192 would become available. Not that it would be the end >>> all/be all of key security but according to your theory it sounds much >>> more difficult to crack. >>> >> >> The actual cutting edge solution is to move from RSA to ECC. Even a >> 8192 bit or 16k bit RSA key isn't approved by the NSA or NIST for TOP >> SECRET materials, but ECC-521 is. > > Isn't ECDSA really vulnerable to reused and predictable signature seeds > (don't know what they're called, I'm talking about "k")?
Depends more on the quality of your PRNG. >> ECC actually is up-and-running in the beta for gpg 2.1, but >> realistically it'll be (at least) a few years before it gets mainstream >> adoption. Could be in OpenPGP later this year. Camellia was fairly fast. As I recall, there is some coordination among the OpenPGP ECC author and the maintainers of other FOSS crypto software so they implement things in a compatible manner. I believe they may be waiting for a SHA-3 algorithm to be picked. It was discussed on the IETF-OpenPGP list late last year. > > You loose any interoperability as it's not OpenPGP, right? It certainly > isn't in the commercial PGP. "It certainly isn't in the commercial PGP." Not Yet, although as Rob said, I'd be surprised if PGP (symantec) didn't already have an ECC-enabled branch waiting to release once the ECC OpenPGP Draft is adopted. Two reasons: 1) One of the main initiatives of Suite B is the use of COTS, and the USG represents a VERY large market for PGP. 2) The ECC-OpenPGP draft itself. Andrey Jivsov, the author, is with Symantec Corp (read PGP Corp). https://sites.google.com/site/brainhub/draft-jivsov-openpgp-ecc-07.txt -- John P. Clizbe Inet: John (a) Enigmail DAWT net FSF Assoc #995 / FSFE Fellow #1797 hkp://keyserver.gingerbear.net or mailto:pgp-public-k...@gingerbear.net?subject=HELP Q:"Just how do the residents of Haiku, Hawai'i hold conversations?" A:"An odd melody / island voices on the winds / surplus of vowels"
signature.asc
Description: OpenPGP digital signature
_______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users