Re: DSA key sizes
Eric Rescorla wrote: SHA-1 is only 2^80 strong against birthday attack. If you go around using SHA-1 or worse yet MD5 to sign stuff then using a private key of size 1024 is only of limited value. If you want to forge a signature, you will probably not be able to use the birthday attack.
Re: DSA key sizes
Eric Rescorla wrote: Technically, they're both correct. This posting is sent to the list several times. Can someone stop this please? Ciao, Michael. __ OpenSSL Project http://www.openssl.org
