Displaying 2 results from an estimated 2 matches for "keystrength".
2009 Jan 20
1
OpenSSH private key encryption: time for AES?
...3DES, which provides an effective 112 bits of
symmetric encryption strength:
$ head -4 ~/.ssh/id_rsa
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,XXXXXXXXXXXXXXXX
$
According to NIST[1][2], a minimum of 112-bit symmetric / 2048-bit
asymmetric keystrength is recommended for protection up until about
2030. For protection beyond 2030, or for the paranoid, larger keysizes
are recommended. Other recommendations (e.g., those of ECRYPT) vary in
how long 112/2048-bit encryption should last.
With that in mind ... how can i encrypt my 4096-bit SSH RSA key...
2009 Jan 22
8
[Bug 1550] New: Move from 3DES to AES-256 for private key encryption
...3DES, which provides an effective 112 bits of
symmetric encryption strength:
$ head -4 ~/.ssh/id_rsa
-----BEGIN RSA PRIVATE KEY-----
Proc-Type: 4,ENCRYPTED
DEK-Info: DES-EDE3-CBC,XXXXXXXXXXXXXXXX
$
According to NIST[1][2], a minimum of 112-bit symmetric / 2048-bit
asymmetric keystrength is recommended for protection up until about
2030. For protection beyond 2030, or for the paranoid, larger keysizes
are recommended. Other recommendations (e.g., those of ECRYPT) vary in
how long 112/2048-bit encryption should last.
With that in mind ... how can i encrypt my 4096-bit SSH RSA key...