Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. GnuPG>
  3. devel
Support for RSA keys > 4096 bits
nick.papadonis.ml at gmail
Nov 6, 2018, 10:50 PM
Post #1 of 3 (350 views)
Permalink
I read in NIST 800-57 Part 1 Rev. 4 pg 53 that RSA keys length of 15360
bits is equivalent to a 256 bit AES symmetric key. I also read in other
documentation that NIST recommends such key lengths to protect data beyond
2030. As email may be retained for many years it would seem appropriate to
secure such communications with a larger key.

Does this data agree with security experts? Is there a reason why GnuPG
limits RSA key length to 4096 bits?

Thank you,
Nicholas
Re: Support for RSA keys > 4096 bits [ In reply to ]
nick.papadonis.ml at gmail
Nov 6, 2018, 10:53 PM
Post #2 of 3 (350 views)
Permalink
For those interested, link to the NIST document:

https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r4.pdf

On Wed, Nov 7, 2018 at 1:50 AM Nicholas Papadonis <
nick.papadonis.ml@gmail.com> wrote:

> I read in NIST 800-57 Part 1 Rev. 4 pg 53 that RSA keys length of 15360
> bits is equivalent to a 256 bit AES symmetric key. I also read in other
> documentation that NIST recommends such key lengths to protect data beyond
> 2030. As email may be retained for many years it would seem appropriate to
> secure such communications with a larger key.
>
> Does this data agree with security experts? Is there a reason why GnuPG
> limits RSA key length to 4096 bits?
>
> Thank you,
> Nicholas
>
Re: Support for RSA keys > 4096 bits [ In reply to ]
gnupg-devel at gnupg
Nov 6, 2018, 11:14 PM
Post #3 of 3 (350 views)
Permalink
Hi Nicolas,

There is also this site that may be of interest:

https://www.keylength.com/

As for your question, actually that was answered in GnuPG FAQ:

https://www.gnupg.org/faq/gnupg-faq.html#default_rsa2048

Kind regards,
Wiktor

On 07.11.2018 07:53, Nicholas Papadonis wrote:
> For those interested, link to the NIST document:
>
> https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-57pt1r4.pdf
>
> On Wed, Nov 7, 2018 at 1:50 AM Nicholas Papadonis
> <nick.papadonis.ml@gmail.com <mailto:nick.papadonis.ml@gmail.com>> wrote:
>
> I read in NIST 800-57 Part 1 Rev. 4 pg 53 that RSA keys length of
> 15360 bits is equivalent to a 256 bit AES symmetric key.  I also
> read in other documentation that NIST recommends such key lengths to
> protect data beyond 2030.  As email may be retained for many years
> it would seem appropriate to secure such communications with a
> larger key.
>
> Does this data agree with security experts?  Is there a reason why
> GnuPG limits RSA key length to 4096 bits?
>
> Thank you,
> Nicholas
>
>
> _______________________________________________
> Gnupg-users mailing list
> Gnupg-users@gnupg.org
> http://lists.gnupg.org/mailman/listinfo/gnupg-users
>


--
https://metacode.biz/@wiktor

_______________________________________________
Gnupg-devel mailing list
Gnupg-devel@gnupg.org
http://lists.gnupg.org/mailman/listinfo/gnupg-devel

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal