[Cryptography] Very best practice for RSA key generation

Phillip Hallam-Baker phill at hallambaker.com
Mon Oct 28 12:52:26 EDT 2019

On Sun, Oct 27, 2019 at 6:35 PM Bill Stewart <billstewart at pobox.com> wrote:

> On 10/17/2019 12:23 PM, Phillip Hallam-Baker wrote:
> > The basic idea is that a user has a key which expressed in Base32 looks
> > like this:
> >
> This is a UI suggestion, not a cryptographic one, but in addition to
> supporting keys like that, it might be useful to also allow keys
> to be input in "Correct Horse Battery Staple" dictionary-word form.

That is already a suggestion in the Internet Draft but not one that has
been implemented yet.

The basic idea is to take dictionaries of 32,768 or so words for common
languages, form a Merkle tree out of them and print the apexes out. These
can then be used in combination with a simple Web Service that simply
extracts the proof chain for specific words.

With 65K words (feasible for English), that means 16bits per word. A 2^128
work factor requires ten words including the overhead.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://www.metzdowd.com/pipermail/cryptography/attachments/20191028/b293bfd8/attachment.htm>

More information about the cryptography mailing list