We have been asked to add RSA-4096 combos for existing infrastructures where deployed software or policy requires 4096 bit keys.
Suggestion is that since RSA 4096 is not much above 128 bit security (certainly not as much as AES-192 or SHA-384), we should pair it with the same cipher suites as the RSA-3072 combo. Or maybe even replace the 4096 combo?
We have been asked to add RSA-4096 combos for existing infrastructures where deployed software or policy requires 4096 bit keys.
Suggestion is that since RSA 4096 is not much above 128 bit security (certainly not as much as AES-192 or SHA-384), we should pair it with the same cipher suites as the RSA-3072 combo. Or maybe even replace the 4096 combo?