We have summarized our recommendations for key lengths in the referenced chart.
C.f. http://www.spyrus.com/company/cryptomodernization.asp. The Lenstra equations predict that ECC P-521 and AES-256 would be good until the year 2282. I'll be happy to personally guarantee them for that long, but you might have trouble collecting from me if I'm wrong! More realistically, all of these numbers are going to be highly suspect and the existing algorithms completely broken if and when quantum computing becomes a reality. The only problem is that we don't know IF that will ever happen, nor WHEN. If NSA feels that high strength Suite B, meaning AES-256 and ECC P-384, is good enough for Top Secret, then I feel comfortable in saying those ought to be good for 30 to 50 years. Beyond that, no one really knows, but ECC P-521 and AES-256 are the best that is available and standardized today. Will they be robust enough for 100+ years? I hope so, because I believe that certain Personally Identifiable Information ought to be protected for the duration of a person's life, and perhaps even longer in the case of genetic predisposition to certain diseases that might be revealed through DNA testing. Bob -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of [EMAIL PROTECTED] Sent: Sunday, March 09, 2008 11:00 AM To: [email protected] Subject: FDE Digest, Vol 18, Issue 10 Send FDE mailing list submissions to [email protected] To subscribe or unsubscribe via the World Wide Web, visit http://www.xml-dev.com/mailman/listinfo/fde or, via email, send a message with subject or body 'help' to [EMAIL PROTECTED] You can reach the person managing the list at [EMAIL PROTECTED] When replying, please edit your Subject line so it is more specific than "Re: Contents of FDE digest..." Today's Topics: 1. Appropriate key lengths chart (Ali, Saqib) ---------------------------------------------------------------------- Message: 1 Date: Thu, 6 Mar 2008 09:40:38 -0800 From: "Ali, Saqib" <[EMAIL PROTECTED]> Subject: [FDE] Appropriate key lengths chart To: fde <[email protected]> Message-ID: <[EMAIL PROTECTED]> Content-Type: text/plain; charset=ISO-8859-1 http://www.keylength.com/ provides charts for determining key lengths. The key lengths are calculated using methods described by Arjen Lenstra and Eric Verheul in their paper titled "Selecting Cryptographic Key Sizes"[1] 1. http://www.win.tue.nl/~klenstra/key.pdf ------------------------------ _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde End of FDE Digest, Vol 18, Issue 10 *********************************** _______________________________________________ FDE mailing list [email protected] http://www.xml-dev.com/mailman/listinfo/fde
