[Botan-devel] RSA key size

Jack Lloyd lloyd at randombit.net
Thu Dec 15 16:14:18 EST 2005


Security is the reason for that particular size (though realistically it should
probably be 1024 if I'm actually trying to keep people from shooting themselves
in the foot).

I would not be willing to make a strong bet that the RSA keygen routines work
correctly for very small bitsizes (I've just made a note to myself to check on
this). So if you need smaller keys, I'd recommend leaving the check in, and
changing the constant to something like 128 (I've also made a note to move that
magical 512 from a constant to the Conf:: subsystem, so it can be changed or
disabled without having to actually edit the code).

Jack

On Thu, Dec 15, 2005 at 04:08:44PM -0500, Riva Borbely wrote:

> Is there a reason (other than security considerations) why Botan doesn't
> allow RSA key sizes less than 512?  If I were to comment out the check (bits
> < 512) in the RSA_PrivateKey constructor, would something break somewhere
> down the line?
> 
> Thanks!
> _______________________________________________
> botan-devel mailing list
> botan-devel at randombit.net
> http://www.randombit.net/mailman/listinfo/botan-devel




More information about the botan-devel mailing list