• RSS
  • Twitter
  • FaceBook

Security Forums

Log in

FAQ | Search | Usergroups | Profile | Register | RSS | Posting Guidelines | Recent Posts

Encryption stronger than 4096 RSA / and or GPG

Users browsing this topic:0 Security Fans, 0 Stealth Security Fans
Registered Security Fans: None
Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Cryptographic Software and Hardware

View previous topic :: View next topic  
Author Message
goatsgoatsgoats
Just Arrived
Just Arrived


Joined: 24 Jun 2010
Posts: 0


Offline

PostPosted: Thu Jun 24, 2010 3:51 am    Post subject: Encryption stronger than 4096 RSA / and or GPG Reply with quote

Does there exist any software which allows you to extend the keylength for RSA past that limit? It seems arbitrarily short, is this a limit of the number of primes or is there some justification for limits on size other than long computational time?

I've been using gaim-encrypt and GPG for years and it's never made sense why there are restrictions in keysizes.
Back to top
View user's profile Send private message
Fire Ant
Trusted SF Member
Trusted SF Member


Joined: 27 Jun 2008
Posts: 3
Location: London

Offline

PostPosted: Thu Jun 24, 2010 9:29 am    Post subject: Reply with quote

Key sizes over 4096 are not currently supported in GPG. The reason for this is that 8192 keys are very slow. If you require a key greater than 4096-bit then you should really thing about what you are using that key for? Are you prepared to have everything encrypted at a ridiculously slow manner for little extra security? Encryption is not a panacea, it is well established that governments try avoid breaking encryption if possible by going after the source e.g. your key passphrase!

It is recommended to use key 2048-bit keys (minimum) currently and these should be ok for the next few years. It is accepted that 1024-bit keys are crackable with current technology. 2048-bit keys should be sufficient until about 2030 and 3072-bit keys from then on.

That being said you can always change the GPG source code to allow keys greater than 4096. There is no technical reason why you cannot use a 8192-bit key. Just change the upper key size limit in keygen.c

Quote:
is this a limit of the number of primes
No, there are an infinite number of prime numbers as proved by Euclid (300BC) http://en.wikipedia.org/wiki/Euclid%27s_theorem

In fact public key cryptography uses pseudo primes as real random prime numbers are very difficult to generate so we use numbers which are so large it is not feasible to deduce all the factors.

Many people have spent time studying chaotic systems such waves breaking on a beach to help generate real random numbers.

Hope that helps.

Fire Ant
Back to top
View user's profile Send private message
Display posts from previous:   

Post new topic   Reply to topic   Printer-friendly version    Networking/Security Forums Index -> Cryptographic Software and Hardware All times are GMT + 2 Hours
Page 1 of 1


 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Community Area

Log in | Register