Secret key storage question

[Frank Tobin]

Gordon Worley, on 2002-06-18, wrote:

> I'm trying to figure out a couple of things.  For example, if the
> passphrase is being used to keep the secret keys unreadable, then am I
> correct in thinking that your passphrase should be the same length as
> the key it's protecting so that a brute force attack on either would
> take just as long?

Yes, but 'length' is an inappropriate term to use.  'strength' is better.

-- 
Frank Tobin			http://www.neverending.org/~ftobin/