blob: 30a7df6176af62ddb8bbe88748cebbc7c7005c0c (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
|
<tt>
I think you are looking at an older FIPS 186 spec.<br>The current one allows 3072 bits for DSA.<br><br>Besides that, DSA is based on a different hard problem than RSA.<br>A 1024 bit DSA signature is somewhat more secure than a 1024 bit RSA signature.<br><br>
<br><div class="gmail_quote">2012/12/12 . <span dir="ltr"><<a href="mailto:dcMhOYBdpZkH@web.de" target="_blank">dcMhOYBdpZkH@web.de</a>></span><br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex"><br>
It is important to consider 1024bit DSA - NIST says this too - not<br><br>
secure anymore, or do you want your messages to be readable within your lifetime?.<br><br>
Since DSA max. key size is 1024bit it's time to think<br><br>
about removing it completely from pycrypto and use RSA or ECC (with your<br><br>
own curves, not NIST's untrustable ones).<br><br>
<br><br>
_______________________________________________<br><br>
pycrypto mailing list<br><br>
<a href="mailto:pycrypto@lists.dlitz.net">pycrypto@lists.dlitz.net</a><br><br>
<a href="http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto" target="_blank">http://lists.dlitz.net/cgi-bin/mailman/listinfo/pycrypto</a><br><br>
</blockquote></div><br><br>
</tt>
|