Open ounsworth opened 1 month ago
@ounsworth I would rather add combinations, and yes, the same as with RSA 3072.
Should we drop the key size from the OID at all?
Yes: Piotr, Scott No: Tim, Sophie, Mike
Group decided to add two new RSA 4096 combinations... one for PKCS 1.5, and PSS...
We have been asked to add RSA-4096 combos for existing infrastructures where deployed software or policy requires 4096 bit keys.
Suggestion is that since RSA 4096 is not much above 128 bit security (certainly not as much as AES-192 or SHA-384), we should pair it with the same cipher suites as the RSA-3072 combo. Or maybe even replace the 3072 combo?