konklone
commented
10 years ago I'm going to just roll this back to 2048. I don't have a strong enough justification for 4096, and CloudFront's 2048-bit limit adds a frustrating piece of friction if you decide to use CloudFront in the middle or end of the devlopment/deploy process.
The latest version of FIPS-186 says the federal government will use 1024, 2048, or 3072:
I'm actually fine with 3072, and it's what a 256-bit EC curve would be equivalent to anyway.
@NoahKunin, any thoughts?