[cryptography] RSA Moduli (NetLock Minositett Kozjegyzoi Certificate)

Jon Callas jon at callas.org
Fri Mar 23 09:28:23 EDT 2012


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


On Mar 23, 2012, at 6:03 AM, Peter Gutmann wrote:

> Jeffrey Walton <noloader at gmail.com> writes:
> 
>> Is there any benefit to using an exponent that factors? I always thought low
>> hamming weights and primality were the desired attributes for public
>> exponents. And I'm not sure about primality.
> 
> Seeing a CA put a key like this in a cert is a bit like walking down the
> street and noticing someone coming towards you wearing their underpants on
> their head, there's nothing inherently bad about this but you do tend to want
> to cross the street to make sure that you avoid them.

But Peter, CAs don't *precisely* put keys into certs. CAs certify a key that the key creator wants to have in their cert.

It's far more like someone coming into the DMV with a colander on their head and saying they're a Pastafarian and this is their religious headdress. If you refuse to let them wear the colander it's likely worse than if you do and really, it's their problem at the end of the day.

	Jon


-----BEGIN PGP SIGNATURE-----
Version: PGP Universal 3.2.0 (Build 1672)
Charset: us-ascii

wj8DBQFPbHp9sTedWZOD3gYRAn+jAKCpMrt8HeaY7SueljFDSFZjlvaVnQCeOW0J
FEHY8ekvvkN3bCWYrONi7Mw=
=Apj2
-----END PGP SIGNATURE-----



More information about the cryptography mailing list