Re: OpenSSH authentication key lengthFrom: Richard E. Silverman (firstname.lastname@example.org)
- Next message: deef: "copy the key between machines vs client adding it for you"
- Previous message: Robert Morelli: "ssh + bash"
- In reply to: S. O. Chau: "OpenSSH authentication key length"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: email@example.com (Richard E. Silverman) Date: 29 Mar 2002 02:56:13 -0500
> -b bits
> Specifies the number of bits in the key to create.
> Minimum is 512 bits. Generally 1024 bits is considered
> sufficient, and key sizes above that no longer improve
> security but make things slower. The default is 1024
> But doesn't longer key provide stronger security?
Suppose that, according to the state of the art in computing hardware and
current understanding of practical attacks on a particular cipher, a n-bit
key requires longer than the age of the universe to crack. Then a 2n-bit
key does not increase security in any meaningful way, but simply slows
-- Richard Silverman firstname.lastname@example.org