[OTR-users] What key size am I using?

Matt D md123 at nycap.rr.com
Tue Dec 17 14:54:16 EST 2013


-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On 12/17/2013 12:38 PM, Brian Morrison wrote:
> On Tue, 17 Dec 2013 10:01:22 -0500 Matt D wrote:
> 
>> I am curious as to why we do not use AES-256 and larger DSA keys,
>> given the likelihood that programs like echelon are eating up all
>> of our data.
> 
> For a symmetric cipher such as AES, 128 bits is still a very large
> key length to break using brute force methods so there is a fairly
> low risk in using that rather than 256 bit. For DH exchange larger
> key sizes could be used provided that the extra CPU cycles required
> are acceptable to the end user. For OTR usage I would not expect
> that to be much of a limitation, it's done infrequently enough that
> any modern processor can do it without significant slow down in
> other processes it's running.
> 
> Of course, the real question is whether the crypto protocols being
> used are properly implemented and whether any key material leaks
> from the implementation when in use. Or indeed if NSA or similar
> has weakened the algorithms or backdoored them.
> 
> People are waking up to the reality of the situation, had we all
> been as paranoid as we should have been then this sort of level of
> security would have become the default long ago.
> 
I don't think its being paranoid, its just being aware of whats going
on.  I work in tax law and the idea of being able to communicate off
the record remotely is appealing.  But I don't like the idea that all
the tax-man needs is a genius with a few racks and a couple of days to
read all my traffic.  I need at least ten years before the information
is irrelevant.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.21 (GNU/Linux)
Comment: MacGPG2 - http://www.gpgtools.org/macgpg2.html
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/

iQEcBAEBAgAGBQJSsKvoAAoJECrdp7MWSIVbIhYH/jt5mwJFR8G/ttCnTOvmPAFS
iW4vPnm7bHDARqCO1+OHm/y6AKZuUvB//dXAcMMtQLOK99nO6KUChAuI1L7j1zt8
vwyJf/lrdJqTUUMuj1Su2KnSOAus/LCJmE1JmY1mkuQV6wgSW8h4Th+TD4wH/wlJ
pbfa8Vm1cp/xrNRcraIoT/Eg+J2eYDHIQYFHYXXfzUSXJWk9oe0+YRk6mL640dYs
MkIuVoPT5g9nOTp3mLjOsgZFdWC2AIKoIVPYYxnckSizklOaZ6QVjRbOLtD4gYp8
cR1+vSRNL3qP7TcSH3uxeMHJ8K0bR/YsKvxxB/tH0cbr2QY84wFPovvoimcGScQ=
=4GXT
-----END PGP SIGNATURE-----



More information about the OTR-users mailing list