Generating DSA keys of different length
Dan Kaminsky
dan at doxpara.com
Wed Jul 2 09:16:58 EST 2003
Markus Friedl wrote:
>only 1024 bit dsa/dss keys will interoperate with
>other implementations.
>
>if you want to use more bits, then use rsa, there's
>(almost) no reason to use dsa/dss.
>
>
That seems very strange. Even with the patent expired, SSH is a better
product for being able to support both keying standards. I'm not sure I
can agree with a policy that says "You don't need more bits than that."
See http://www.theinternet.cc/potatoware/PSKB-035.html . Of note is
that the attacks they describe would require the breakage of RSA to be
implemented.
--Dan
More information about the openssh-unix-dev
mailing list