>> I'm looking to generate a short digital signature, perhaps 192 >> bits or so, using an asymmetrical algorithm. DSA seems to >> have 320 bit signatures regardless of the key size used. Is >> this really the case, or am I missing something? Ignoring for >> the moment the wisdom of using signatures this short, is there >> a way I can accomplish my goal of ~192 bit signatures? > > If you're concerned about detecting corruption but not concerned about >security, just use the SHA1 hash. > > If you're concerned about security but don't need public-key features, you >can use the SHA1 hash of the data preceded by a shared secret. > > If you're concerned about security and need 192-bit signatures with PK >features, AFAIK, you're out of luck. No known PK algorithm can be secure >with bit lengths that small. > > DS
I appreciate that the security of such a short signature is paltry. In my application, the signature length (keeping it short) is as important as the security (odd as that may seem). I've not found a way to generate signatures as short as I'd like using OpenSSL - is there just no way to do it using PK? Thanks ______________________________________________________________________ OpenSSL Project http://www.openssl.org User Support Mailing List openssl-users@openssl.org Automated List Manager [EMAIL PROTECTED]
