Make RSA 4096 combos - Githubissues

lamps-wg / draft-composite-sigs

IETF Internet-Draft about X.509 certificates with composite keys and signatures.

Other

3 stars 1 forks source link

Make RSA 4096 combos #24

Closed ounsworth closed 1 month ago

ounsworth commented 4 months ago

We have been asked to add RSA-4096 combos for existing infrastructures where deployed software or policy requires 4096 bit keys.

Suggestion is that since RSA 4096 is not much above 128 bit security (certainly not as much as AES-192 or SHA-384), we should pair it with the same cipher suites as the RSA-3072 combo. Or maybe even replace the 3072 combo?

janklaussner commented 4 months ago

@ounsworth I would rather add combinations, and yes, the same as with RSA 3072.

RSA 4096 is expensive when I think of our smart card products
RSA 3072 is expected to be secure enough at least till 2030 by BSI
not even RSA 1024 is cracked till now (80 bits security) so I expect it to last 10 more years... without CRQC of course

ounsworth commented 3 months ago

Should we drop the key size from the OID at all?

Yes: Piotr, Scott No: Tim, Sophie, Mike

johngray-dev commented 3 months ago

Group decided to add two new RSA 4096 combinations... one for PKCS 1.5, and PSS...

johngray-dev commented 1 month ago

We decided to add these combinations:

MLDSA65-RSA4096-PKCS15-SHA512 MLDSA65-RSA4096-PSS-SHA512

We decided to keep the RSA keysize in the OID definiton

johngray-dev commented 1 month ago

closes #23

johngray-dev commented 1 month ago

Didn't mean to close

johngray-dev commented 1 month ago

4096 combinations added in pull #51 - Closing this ticket