On 02/19/2012 07:36 PM, anthony berglas wrote:
Exactly. So you need about 112 bits of "entropy" / Pass Phrase to
generate a good 2048 bit key. Remember that the vast majority of 2048
bit numbers are not valid key pairs.
My question is, has this been done, or would it be easy to do given
the existing structure.
No, this is NOT true. While it is the case that a good 2048 bit RSA key
gives you only about 112 bits of security, its not at all clear that you
can generate such a good key from less than 2048 bits of entropy.
Indeed, from the recently published Lenstra/Hughes attack, its clear
that using 112 bits of entropy to generate an RSA key (of any length)
cannot possibly give you more that 56 bits of security, and probably
far less.
Chris Dodd
d...@csl.sri.com
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager majord...@openssl.org
