RSA 1024 ridiculous

Andrew Berg bahamut at digital-signal.net
Tue Jun 19 16:36:31 CEST 2007


-----BEGIN PGP SIGNED MESSAGE-----
Hash: RIPEMD160
 
Janusz A. Urbanowicz wrote:
> On Sun, Jun 17, 2007 at 01:02:58PM -0500, Andrew Berg wrote:
>> -----BEGIN PGP SIGNED MESSAGE-----
>> Hash: RIPEMD160
>> 
>> Atom Smasher wrote:
>>> gpg does support RSA-2048/SHA-256 (or even RSA-4096/SHA-512) which
>>>  is what i've been using for a while now. i'll sign this email with
>>>  RSA-2048/SHA-256 (my default on this key) just to show what it
>>> looks like. it's a big signature block, but not ridiculous and on a
>>>  reasonably powerful computer it's hardly a noticeable delay to
>>> work with such keys.
>> Try signing/encrypting files that are tens, hundreds, or thousands of
>> megabytes in size. Sure, your average machine can sign/encrypt
>> messages that don't even fill a cluster without breaking a sweat, but
>> if the sensitive data is large, RSA-4096 isn't a good choice unless a
>> gov't agency wants that data.
>
> Erm... when you use OpenPGP, or really any other modern crypto
> protocol, you don't put actual plaintext through RSA, RSA operates
> only on a hash or random session key for symmetric cipher.y
>
> =alx
I wonder how many more people are going to tell me this, even after
I've demonstrated that I understand the concept (I'm pretty sure I
even signed that message!).

- --
Windows NT 5.1.2600.2180 | Thunderbird 2.0.0.4 | Enigmail 0.95.1 | GPG
1.4.7
Key ID: 0x60A78FCB - available on major keyservers and upon request
Fingerprint: 4A84 CAE2 A0D3 2AEB 71F6 07FD F88E 0340 60A7 8FCB
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (MingW32)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org
 
iQEVAwUBRnfp7viOA0Bgp4/LAQPUzQgAnyT20Djkk74bd4pI7D3Mz+R8Wt1QFjTU
DmWyQc+r+5cwN4EPJ8vGwiUylkpWrSk4Y9FDJnANypX8U8kbWWU37OaJmhBGpNsx
436Jq/Ekw0t4k4OF5sp4lcXsiZUakJb6UzPoJO4G1UMKJsmRPNab306g9rFaLwEm
sR0TQ1+7OvLhUHnBWUcZwQmZg8U3K1abG4P55xjfEnX3BM7oWjMytD21rHAjSiDn
unFV6CwVc0lmiGAQsPGnnYg+NKdRoZQXFYC6zJwyqxmWXfx1G8OCDO9EaKymbAyC
RQ8grkZ6oo2J6qJRHLhPfOfd1GDMxn4X4NPdnw6b98nhndCHZeIWCw==
=iLn9
-----END PGP SIGNATURE-----




More information about the Gnupg-users mailing list