[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services

To: "tor-dev@xxxxxxxxxxxxxxxxxxxx" <tor-dev@xxxxxxxxxxxxxxxxxxxx>
Subject: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
From: Zack Weinberg <zackw@xxxxxxxxx>
Date: Fri, 17 May 2013 12:37:16 -0400
Delivered-to: archiver@xxxxxxxx
Delivery-date: Fri, 17 May 2013 12:37:30 -0400
In-reply-to: <CAFVRnyoaBYNLMn7NPU29T7UNTAMxxc1qqm0LABZwnSv9bnFHfA@xxxxxxxxxxxxxx>
List-archive: <http://lists.torproject.org/pipermail/tor-dev>
List-help: <mailto:tor-dev-request@lists.torproject.org?subject=help>
List-id: discussion regarding Tor development <tor-dev.lists.torproject.org>
List-post: <mailto:tor-dev@lists.torproject.org>
List-subscribe: <https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=subscribe>
List-unsubscribe: <https://lists.torproject.org/cgi-bin/mailman/options/tor-dev>, <mailto:tor-dev-request@lists.torproject.org?subject=unsubscribe>
References: <1ce4ad2adaab4af523c4be2419e9c5df.squirrel@xxxxxxxxxxxxxxxxxxxxx> <5196481D.90207@xxxxxxxxxx> <CAFVRnyoaBYNLMn7NPU29T7UNTAMxxc1qqm0LABZwnSv9bnFHfA@xxxxxxxxxxxxxx>
Reply-to: tor-dev@xxxxxxxxxxxxxxxxxxxx
Sender: tor-dev-bounces@xxxxxxxxxxxxxxxxxxxx

On Fri, May 17, 2013 at 11:29 AM, David Vorick <david.vorick@xxxxxxxxx> wrote:
> Why are so many bits necessary? Isn't 128bits technically safe against brute
> force?

Not for RSA keys.  A 1024-bit RSA key is considered approximately as
strong as an 80-bit symmetric key; 2048-bit keys are approximately as
strong as a 112-bit symmetric key, and are the present recommended
keysize.  See https://www.rsa.com/rsalabs/node.asp?id=2004

(I imagine we will also be considering other asymmetric algorithms for
this change, some of which provide more like the usual 1:1
keysize-to-security-parameter ratio.)

zw
_______________________________________________
tor-dev mailing list
tor-dev@xxxxxxxxxxxxxxxxxxxx
https://lists.torproject.org/cgi-bin/mailman/listinfo/tor-dev

References:
- [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
  - From: George Kadianakis
- Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
  - From: adrelanos
- Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
  - From: David Vorick

Prev by Author: [tor-dev] [possibly OT] Updated giant inventory of headers available on various OSes
Next by Author: Re: [tor-dev] building from source in a 64-bit windows environment..
Previous by thread: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
Next by thread: Re: [tor-dev] Discussion on the crypto migration plan of the identity keys of Hidden Services
Index(es):
- Author
- Thread