[Cryptography-dev] RSA key generation -- minimum key size?
Laurens Van Houtven
_ at lvh.io
Tue Feb 11 17:44:22 CET 2014
Hi,
I don't think anyone disagrees that < 1024 bit keys are insecure. There's
even a good chance 1024 bit keys are factorable if your adversary has
enough dollars.
It should definitely be hard to make such insecure keys. How about an
"allow_insecure_key_sizes" flag; that's long and explicit and it means that
people who really do want insecure RSA keys for whatever reason (good or
bad) can get them.
I'm +0 on making it impossible to do so; +1 on possible upon explicit
request clearly marked as dangerous.
hth
lvh
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mail.python.org/pipermail/cryptography-dev/attachments/20140211/0013b19c/attachment.html>
More information about the Cryptography-dev
mailing list