encryption algorithm

Robert J. Hansen rjh at sixdemonbag.org
Tue Dec 17 23:08:38 CET 2013


Quoting Hauke Laging <mailinglisten at hauke-laging.de>:
> element) to get "security". One more wild guess: 99.9% of the  
> systems on which GnuPG is *actively* used do not even provide the  
> "equivalent"
> of a 73-bits key.

This is almost certainly true.  A couple of years ago Vint Cerf  
estimated that somewhere between a sixth and a quarter of all desktop  
PCs were infected with remote-root malware.  The odds are quite high  
that your desktop PC running GnuPG provides *zero* bits of security.

Sobering thought.

Really, all the obsession over key lengths does is distract us.  Pick  
a keylength, be done with it, and then start paying attention to more  
important things...




More information about the Gnupg-users mailing list