[145946] in cryptography@c2.net mail archive
Re: 2048 bits, damn the electrons! [rt@openssl.org: [openssl.org
daemon@ATHENA.MIT.EDU (Samuel Neves)
Thu Sep 30 21:25:57 2010
Date: Fri, 01 Oct 2010 02:01:55 +0100
From: Samuel Neves <sneves@dei.uc.pt>
To: Thor Lancelot Simon <tls@rek.tjls.com>
CC: cryptography@metzdowd.com
In-Reply-To: <20100930173238.GA19068@panix.com>
X-FCTUC-DEI-SIC-MailScanner-From: sneves@dei.uc.pt
On 30-09-2010 18:32, Thor Lancelot Simon wrote:
> On Thu, Sep 30, 2010 at 05:18:56PM +0100, Samuel Neves wrote:
>> One solution would be to use 2048-bit 4-prime RSA. It would maintain the
>> security of RSA-2048, enable the reusing of the modular arithmetic units
>> of 1024 bit VLSI chips and keep ECM factoring at bay. The added cost
>> would only be a factor of ~2, instead of ~8.
> This is a neat idea! But it means changing the TLS standard, yes?
>
IIRC, multi-prime RSA is already supported in standards, but not in
practice (read: OpenSSL):
http://tools.ietf.org/html/rfc3447
Best regards,
Samuel Neves
---------------------------------------------------------------------
The Cryptography Mailing List
Unsubscribe by sending "unsubscribe cryptography" to majordomo@metzdowd.com
