[Cryptography] RSA equivalent key length/strength

Stephen Farrell stephen.farrell at cs.tcd.ie
Sun Sep 22 14:00:28 EDT 2013

On 09/22/2013 01:07 AM, Patrick Pelletier wrote:
> "1024 bits is enough for anyone"

That's a mischaracterisation I think. Some folks (incl. me)
have said that 1024 DHE is arguably better that no PFS and
if current deployments mean we can't ubiquitously do better,
then we should recommend that as an option, while at the same
time recognising that 1024 is relatively short.


More information about the cryptography mailing list