On 3/23/2011 5:05 PM, Jeffrey Walton wrote: > Bad judgement or best practice? Some folks must use a key with a 128 > bit security level.
Some do, yes: but your citations don't seem to support that. NIST says that for unclassified purposes, 112 effective bits of security is enough until 2030 (page 65). Your ECRYPT ref says 80-bit keys are secure until 2012. 128-bit crypto is defined as "long-term security", for three decades or more (page 32). Given most people stipulate the need for longer keys for multi-decade use, I don't see that the authorities you cited suggest "best practice" is to use, effective today, 3072-bit keys to provide 128 effective bits of security. _______________________________________________ Gnupg-users mailing list Gnupg-users@gnupg.org http://lists.gnupg.org/mailman/listinfo/gnupg-users
