[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: dpkg-sig support wanted?

On Sun, Nov 27, 2005 at 12:42:42PM +0100, Steinar H. Gunderson wrote:
> On Sun, Nov 27, 2005 at 02:18:00PM +1000, Anthony Towns wrote:

>> My understanding was that there aren't other hash functions that've
>> had remotely similar levels of cryptographic analysis to md5 and
>> sha. IIRC, the elliptic curve cryptography stuff was supposed to be
>> similarly neat, until people started analysing it seriously, at
>> which point it broke.

> To the best of my knowledge, elliptic curve cryptography isn't any
> more broken than RSA or ElGamal is.

It isn't really broken, but the recommended key sizes have grown
significantly. I mean, the factor to divide RSA/DH/ElGamal key sizes
by to get equivalent security in ECC has shrunk. At least, I've heard
so, I don't remember what keys sizes were advertised in the beginnings
of ECC.


Reply to: