S 3.1.1: Finally there is a risk of cryptanalysis of the key material. The cost of such analysis are correlated to the length of the key and the amount of signed material that is available to the analyst.
This statement is false for RSA and as far as a I know, for any major signature algorithm: RSA is not weakened by the attacker having a large number of plaintext/ciphertext pairs. [Historical note: this used to be a problem with symmetric ciphers but is now mostly just habit. Modern cryptographic algorithms shouldnt exhibit analytic weaknesses with any practical amount of known plaintext.] For reasons of signing speed and DNS packet length one may want to keep keylenght at a minimal responsible length and change the key relatively frequently while not interacting with the parent. This statement is a non-sequiter. Sure, one may want to keep the keylength short to improve signing speed, but since changing the key frequently doesn't significantly improve security against analysis (as has been covered on-list ad nauseum), the last half of the sentence doesn't make any sense. -Ekr On Fri, Feb 26, 2010 at 12:06 AM, Olaf Kolkman <o...@nlnetlabs.nl> wrote: > > > > Colleagues, > > I have just posted RFC4641bis version 2. > > The document contains a number of significant changes which address a number > of the open-issues (see > http://www.nlnetlabs.nl/svn/rfc4641bis/trunk/open-issues/). In some cases > text has been rewritten in such a way that it is not immediately obvious if > some of the open issues are still relevant. Since today was the last > opportunity for me to submit the document before the cut-off and I believe > the text is close enough for review on substance and gathering feedback. > > Although a review on (english) style, nits and spelling would be appreciated > I believe that can wait until the review on substance has taken place. > > > http://www.ietf.org/id/draft-ietf-dnsop-rfc4641bis-02.txt > > Once the document is available through the tools interface you should be able > to study the diffs. > http://tools.ietf.org/html/draft-ietf-dnsop-rfc4641bis > > > --Olaf > > ________________________________________________________ > > Olaf M. Kolkman NLnet Labs > Science Park 140, > http://www.nlnetlabs.nl/ 1098 XG Amsterdam > > _______________________________________________ > DNSOP mailing list > DNSOP@ietf.org > https://www.ietf.org/mailman/listinfo/dnsop > _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop
