[OTR-users] What key size am I using?
Matt D
md123 at nycap.rr.com
Tue Dec 17 14:54:16 EST 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
On 12/17/2013 12:38 PM, Brian Morrison wrote:
> On Tue, 17 Dec 2013 10:01:22 -0500 Matt D wrote:
>
>> I am curious as to why we do not use AES-256 and larger DSA keys,
>> given the likelihood that programs like echelon are eating up all
>> of our data.
>
> For a symmetric cipher such as AES, 128 bits is still a very large
> key length to break using brute force methods so there is a fairly
> low risk in using that rather than 256 bit. For DH exchange larger
> key sizes could be used provided that the extra CPU cycles required
> are acceptable to the end user. For OTR usage I would not expect
> that to be much of a limitation, it's done infrequently enough that
> any modern processor can do it without significant slow down in
> other processes it's running.
>
> Of course, the real question is whether the crypto protocols being
> used are properly implemented and whether any key material leaks
> from the implementation when in use. Or indeed if NSA or similar
> has weakened the algorithms or backdoored them.
>
> People are waking up to the reality of the situation, had we all
> been as paranoid as we should have been then this sort of level of
> security would have become the default long ago.
>
I don't think its being paranoid, its just being aware of whats going
on. I work in tax law and the idea of being able to communicate off
the record remotely is appealing. But I don't like the idea that all
the tax-man needs is a genius with a few racks and a couple of days to
read all my traffic. I need at least ten years before the information
is irrelevant.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2.0.21 (GNU/Linux)
Comment: MacGPG2 - http://www.gpgtools.org/macgpg2.html
Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/
iQEcBAEBAgAGBQJSsKvoAAoJECrdp7MWSIVbIhYH/jt5mwJFR8G/ttCnTOvmPAFS
iW4vPnm7bHDARqCO1+OHm/y6AKZuUvB//dXAcMMtQLOK99nO6KUChAuI1L7j1zt8
vwyJf/lrdJqTUUMuj1Su2KnSOAus/LCJmE1JmY1mkuQV6wgSW8h4Th+TD4wH/wlJ
pbfa8Vm1cp/xrNRcraIoT/Eg+J2eYDHIQYFHYXXfzUSXJWk9oe0+YRk6mL640dYs
MkIuVoPT5g9nOTp3mLjOsgZFdWC2AIKoIVPYYxnckSizklOaZ6QVjRbOLtD4gYp8
cR1+vSRNL3qP7TcSH3uxeMHJ8K0bR/YsKvxxB/tH0cbr2QY84wFPovvoimcGScQ=
=4GXT
-----END PGP SIGNATURE-----
More information about the OTR-users
mailing list