On Thu, Mar 27, 2014 at 12:13:33PM +0100, Nikos Mavrogiannopoulos wrote: > =====LEGACY===== > systems. It should provide at least 64-bit security and include RC4, but > not MD5 as signature algorithm. > DH params size: 768+ > RSA params size: 768+ > =====DEFAULT====== > A reasonable default for today's standards. For F21 it should provide > 80-bit security and no broken ciphers like RC4. > DH params size: 1024+ > RSA params size: 1024+ > =====FUTURE====== > A level that will provide security on a conservative level that is > believed to withstand any near-term future attacks. That will be > an 128-bit security level, without including protocols with known > DH params size: 2048+ > RSA params size: 2048+ According to http://www.keylength.com/en/compare/ the asymetric sizes do not match the symmetric size according to most sources listed on http://www.keylength.com/en/compare/. Regards Till -- security mailing list security@xxxxxxxxxxxxxxxxxxxxxxx https://admin.fedoraproject.org/mailman/listinfo/security