Mailinglist Archive: opensuse-security (520 mails)

< Previous Next >
Re: [suse-security] What's the length of ssh keys?
  • From: Steve <steve@xxxxxxxxxxxxxx>
  • Date: Tue, 2 Jul 2002 08:53:16 -0400
  • Message-id: <auto-000025861792@xxxxxxxxxxxxxxxxxxxx>
On Monday 01 July 2002 12:23 pm, you wrote:
>A friend of mine told me that 1024bit keys were broken, and he advised me to
>use 4096bit keys...
>I think he is confusing ssl with ssh.
>Do you have similar information on this?
>
>Praise

To give you an idea.

June 1997, 56 bit DES key was cracked.

August 1999, 512-bit RSA key was cracked. (At the time, 95% of the keys used
in e-commerce were 512 bits long.)

Recommended public-key key lengths (in bits) [Source: Bruce Schneider,
Applied Cryptography]

Year Individual Corporation Government
1995 768 1280 1536
2000 1024 1280 1536
2005 1280 1536 2048
2010 1280 1536 2048
2015 1536 2048 2048

Summary of Recent Cracking Efforts
Algorithm Key Size Cracked on Duration
RSA 425 1994 240 days
RC4 40 8-95 8.5 days
RC5 40 1-97 3.5 hours
RC5 42 2-97 313 hours
DES 56 6-97 140 days
RC5 56 10-97 265 days
DES 56 2-98 39 days


--

Steve Szmidt
V.P. Information Technology
Video Group Distributors, Inc.

< Previous Next >
Follow Ups
References